Share this Job

IT Security Analyst II - CyberArk

Apply now »

Date: Aug 14, 2019

Location: Marlborough, MA, US

Company: TJX Companies, Inc.

Success is always in style at TJX, a Fortune 100 company and the leading off-price apparel and home fashion retailer in the U.S. and worldwide. Our retail chains include TJ Maxx, Marshalls, HomeGoods, Sierra, Winners and Homesense.


TJX Identity and Access Management is responsible for governance of for over 270,000 identities across retail stores, multiple data centers and corporate offices. The team recognizes and values individual contributions, curiosity, and adaptability of our security professionals. The Identity and Access Management team is responsible for our security tools, which include Azure, SiteMinder, CyberArk, SailPoint Compliance IQ, IBM’s Tivoli Identity Manager, RSA ACE server and others.

• Have technical knowledge and understanding of at least one area within IT Security (such as Privileged Access Security, SSO, etc.) to ensure that the user community understands and adheres to necessary procedures to maintain security.
• Work with the business and other IT resources to implement IT Security controls by leveraging existing IAM tools.
• Interface with user community to understand their security needs.
• Assist with projects in support of the enterprise information security program.
• Provide valuable input to improve processes surrounding day-to-day operations and security control execution.
• Perform all procedures of basic to medium complexity necessary to ensure the core objectives of IT Security.
• Serve as technical contributor on functional teams or projects and serves as a best practice / quality resource.
• Recommend course of action for low to moderately complex situations.
• Assist in evaluations of the level of security required for highly complex systems.
• Perform root cause analysis of moderately complex security issues and determines the best course of action to remedy the problem.
• Identify security risks and exposures, determine the causes of security violations, design and implement procedures to prevent and mitigate future incidents.
• Create and execute short to medium term strategies.
• Investigate and resolve security issues as needed.
• Provide occasional on-call support.
• Collaborate on special projects as assigned.
• Perform other duties as required.


• Strong aptitude for IT Security and ability to act as a trusted security professional that can provide strategic and technical direction in leading activities in computer security concepts including identity & access management, network security, application security, and risk & compliance.
• Knowledge of Identity and Access Governance principles.
• Experience with rights and permissions on Active Directory, Mainframe ACF2, UNIX, and databases.
• Basic understanding of operational and security requirements and translation of those requirements into technical IAM capabilities. We’re a particular interest in candidates with hands-on experience with PAM (CyberArk a plus), SSO solutions, and RADIUS server.
• Knowledge and understanding of information technology trends and emerging technologies and an ability to relate them to cyber security, the company, and its objectives.
• Aptitude to learn technical security configuration delivery for implementation of enterprise-wide IAM ecosystem.
• Knowledge of Sarbanes Oxley and PCI policies and controls, IT Regulations, and MA privacy laws.
• Solid understanding of applications and system IAM architectures and best practices.
• Ability to effectively communicate and advocate key security requirements and control implementation to key stakeholders.
• Prior experience with server/infrastructure support a plus.


Minimum Experience and Education:
• 2 years in IT and/or Cyber Security environment; the more years of direct Identity and Access Management experience, the better.
• Associate’s degree or a minimum of 18 months in an IT organization with over 10,000 employees.
• Relevant security industry certifications preferred, including but not limited to Security+ and Network+.
• Experience with a scripting language nice to have (Python, PowerShell, etc).
• Understanding of DevOps concepts and tools nice to have.
• Understanding of agile concepts and participation in agile product team a plus.

At TJX, we are proud that, for 40 years, we have been providing amazing value to our customers, but the merchandise we sell is just part of our story. We believe our Associates bring our business to life, and we aim to support you by making TJX a terrific place to work. We are committed to leveraging our differences, and believe that the diverse skills, experiences and background that you bring into the organization will help us continue to succeed.

Discover Different. Apply today!

In addition to our open door policy and supportive work environment, we also strive to provide a competitive salary and benefits package. TJX considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status, or based on any individual's status in any group or class protected by applicable federal, state, or local law. TJX also provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.

Posting Notes: Marlborough  || MA || TJX Corporate 

Nearest Major Market: Boston

Job Segment: Corporate Security, Merchandising, Mainframe, Fashion Retail, Security, Retail, Technology, Fashion