cover image
Skechers

Skechers

about.skechers.com

2 Jobs

13,595 Employees

About the Company

Skechers is a Fortune 500(r) company -- a growth-oriented brand that designs, develops, and markets a diverse product portfolio of lifestyle and performance footwear, apparel and accessories for men, women and children around the globe. Skechers is focused on designing products that deliver style, comfort, innovation, and quality at a reasonable price.

Listed Jobs

Company background Company brand
Company Name
Skechers
Job Title
Cloud Engineer
Job Description
Manhattan beach, United states
Hybrid
Junior
08-10-2025
Company background Company brand
Company Name
Skechers
Job Title
Cybersecurity Risk Analyst
Job Description
**Job Title:** Cybersecurity Risk Analyst **Role Summary:** Analyze, evaluate, and remediate technical security risks across enterprise systems and third‑party environments. Use NIST 800‑53, CIS Controls, and the NIST Cybersecurity Framework to assess real‑world threat effectiveness, prioritize risks by likelihood and business impact, and drive quantitative security improvement metrics. **Expectations:** - Deliver actionable risk assessments that translate technical vulnerabilities into business risk scenarios. - Collaborate with security, development, and IT operations to implement prioritized controls. - Maintain an up‑to‑date cyber risk register and risk‑based metrics. - Support compliance audits (PCI‑DSS, SOX, GDPR) and integrate findings into risk management. - Provide consistent risk advisory to cross‑functional and executive stakeholders. **Key Responsibilities:** - Conduct NIST 800‑53 and CIS Control security control evaluations, focusing on practical posture rather than checklist compliance. - Analyze threat intelligence (MITRE ATT&CK, industry advisories) to prioritize risks by technical likelihood and business impact. - Own the cyber risk register: craft accurate risk descriptions, threat scenarios, and metrics reflecting security improvement. - Assess third‑party risk through technical questionnaires, penetration test reviews, and architecture assessment. - Work with security operations to merge incident, vulnerability, and threat intel into risk prioritization. - Drive the development and maturation of risk‑based security metrics that track threat reduction. - Participate in internal/external audits, documenting compliance status and remedial actions. - Advise global IT and business partners on security best practices and risk mitigation strategies. **Required Skills:** - Strong foundation in network and system hardening, vulnerability management, and enterprise security architectures. - Hands‑on experience implementing NIST Cybersecurity Framework, NIST 800‑53, or CIS Controls in production environments. - Proficiency interpreting MITRE ATT&CK, threat intelligence, and attack methodologies relevant to retail/enterprise. - Analytical ability to quantify risk likelihood and business impact, and communicate findings to technical and non‑technical audiences. - Proven collaboration with security engineers, system administrators, and developers to implement controls. - Excellent written and oral communication; capable of presenting complex concepts to executive leadership. - Self‑motivated, problem‑solving mindset; thrives in cross‑functional teams. - Experience in retail/e‑commerce security (PCI‑DSS, data protection, supply chain) a plus. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Minimum 4–5 years of cybersecurity experience with hands‑on technical work. - Industry certifications preferred: CISSP, CISA, CEH, CompTIA Security+, or equivalents demonstrating knowledge of NIST, CIS, PCI‑DSS, and threat frameworks.
Manhattan beach, United states
On site
Junior
06-11-2025
Company background Company brand
Company Name
Skechers
Job Title
Application Security Engineer
Job Description
**Job title**: Application Security Engineer **Role Summary**: Drive security integration across the software development lifecycle, reducing production vulnerabilities and fostering a security‑first culture among development teams. **Expectations**: - Deliver measurable decline in production security issues. - Act as a mentor and champion for secure coding practices. - Scale the application security program and maintain high coverage of security tooling. **Key Responsibilities**: - Integrate security controls into development pipelines. - Perform security‑focused code reviews and provide actionable remediation. - Establish processes for triaging, prioritizing, and tracking findings with clear SLAs. - Lead proactive developer security awareness initiatives. - Manage and tune SAST, DAST, OSS scanning, and WAF tools to maximize coverage and reduce false positives. - Support incident response, contributing to rapid resolution of security events. **Required Skills**: - Proficiency with SAST, DAST, dependency scanning, and WAF technologies. - Expert knowledge of OWASP Top 10 vulnerabilities and secure coding best practices. - Hands‑on experience in at least one programming language (Java, Python, JavaScript, C#, or equivalent). - Understanding of API security, authentication, and authorization frameworks. - Familiarity with DevSecOps, CI/CD pipeline integration, and continuous monitoring. - Strong communication and mentorship abilities. **Required Education & Certifications**: - Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field. - Industry certifications such as CEH, OSCP, CISSP, CompTIA Security+, or equivalent are preferred.
Manhattan beach, United states
Hybrid
Junior
05-12-2025