Senior Cybersecurity Engineer - AppSec & Automation

Steelcase is seeking a highly skilled Senior Cybersecurity Engineer - AppSec & Automation to help build and operate the next iteration of our global security program. This is a hands-on, high-impact role for a practitioner who wants to get their hands dirty securing a massive global ecosystem.

You will design controls, automate defenses, and embed security natively into modern IT, cloud, and global manufacturing (OT) environments. You will drive our application security program and Zero Trust evolution, playing a critical role in advancing our automation, detection, and response capabilities.

The ideal candidate demonstrates deep technical curiosity, a hacker mindset, and a strong sense of ownership, balancing architectural improvements with the operational discipline required to respond to evolving threats.

Helping You Thrive By:

• Offering competitive wages and benefits, that support your life both in and out of work
• Providing a flexible hybrid work schedule, meaning we expect the office to be your primary place of work, balanced with choice and control
• Creating continuous learning opportunities to help you grow and upskill
• Fostering a culture of inclusion where employees feel seen, heard and valued - and living it out every day
• Empowering you to make a meaningful impact on people and the planet through your work and Steelcase's ongoing commitment

You'll Support Meaningful Work By:

• Automation & Response: Building security automation via SOAR tools and custom scripting to eliminate manual work, accelerate incident response, and proactively reduce risk.
• Cloud & DevSecOps: Integrating security natively into CI/CD pipelines, securing cloud infrastructure, and maintaining modern application security tooling (SAST/DAST/SCA/Containers).
• Modernizing the Perimeter: Deploying, engineering, and managing enterprise security technologies, including Zero Trust and SASE frameworks (e.g., Netskope), to protect the endpoint and the edge.
• Threat & Vulnerability Management: Orchestrating assessments and penetration tests across networks, APIs, cloud, and IoT/OT environments, and translating exploitable weaknesses into actionable engineering remediation.
• Emerging Tech & AI: Guiding AI governance and implementing security practices to securely enable the enterprise to use next-generation artificial intelligence tools.

Required Skills:

• 5+ years of experience in relevant enterprise level technical environments.
• Proven hands-on experience in cybersecurity engineering, specifically across cloud, endpoint, or application security domains.
• Practical experience writing custom scripts and building automation (e.g. Python, PowerShell, API integrations, SOAR platforms, etc.).
• Systems-level thinking with the ability to analyze complex architectures, identify weaknesses, and build secure solutions.
• Strong communication skills with the ability to collaborate effectively with infrastructure, development, and business operations teams.
• A high sense of ownership, adaptability, and the operational discipline to execute quickly in mission-critical environments.

Preferred Skills:

• Hands-on experience with DevSecOps and CI/CD pipeline integration.
• Experience securing heavy manufacturing, IoT, or OT/ICS environments.
• Familiarity with modern security frameworks (Zero Trust, SASE) and global compliance requirements.
• Relevant technical certifications across cloud, AppSec, or offensive domains (e.g., CISSP, CISM, CRISC, CISA, CCSP, CSSLP, Microsoft AZ-500/SC-100, OSCP, or GIAC/SANS equivalents).

Note: We care about capability, curiosity, and execution more than a specific degree or an arbitrary number of years in the industry. If you have a hacker mindset, a history of building secure systems, and do not meet every single bullet point, we still want to hear from you.

This position may require work outside of normal business hours including nights, and weekends.

Because this position will be entrusted with sensitive information, high-level system access, and must establish trust and credibility with stakeholders to accomplish their objectives, candidates must maintain the highest ethical standards and integrity in their actions.

Doing better for people and planet

Steelcase is a global design and thought leader in the world of work. Along with our expansive community of brands, we design and manufacture innovative furnishings and solutions to help people do their best work in the many places where work happens.

Why People Choose to Work with Us

At Steelcase, we put people at the center of everything we do. We understand the role of work and believe that it can bring meaning and purpose to the lives of our customers and our employees. We prioritize supporting our employees both in and out of work, in all aspects of their lives. When we bring our talents together, we make a positive lasting impact through our work and communities.

The starting annual base salary range for this position is $110,000 - $130,000. Please note that the salary information is a general guideline only. Steelcase considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as market and business considerations when extending an offer.

Steelcase provides employment opportunities to all qualified employees and applicants without regard to race, color, creed, genetic information, religion, national origin, gender, sexual orientation, gender identity and expression, age, disability, or veteran status and bases all employment decisions only on valid job requirements. If we can make the application process easier through accommodation, please email us at myhr@steelcase.com.

Level: #mid_senior_level

Work Arrangement: #LI-Onsite

Job Functions: #Information_Technology #Cybersecurity