Nike
Senior Information Security Platform Engineer, ITC
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Nike
Nike, Inc. is a prominent global sportswear and athletic footwear company based in Beaverton, Oregon. Founded in 1964 by Phil Knight and Bill Bowerman, it originally operated as Blue Ribbon Sports before officially becoming Nike, Inc. in 1971. The company started as a distributor for Onitsuka Tiger but soon began designing and manufacturing its own athletic shoes and apparel. Nike offers a diverse range of products, including sports shoes, sportswear, fitness trackers, and sports accessories. Its footwear caters to various sports such as running, basketball, football, tennis, and soccer. The company also provides athletic apparel for men, women, and children, featuring a plus-size line introduced in 2017. Nike owns well-known subsidiaries like Air Jordan and Converse, enhancing its presence in both sports and lifestyle markets. The brand is recognized for its innovative marketing strategies and iconic branding, including the "Swoosh"logo and the slogan "Just Do It."
Security at Nike
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Stated AppSec Mission: "You'll be a key member of the SecureCode team within the Application Security Consulting group."– Nike Careers (Job ID R-71212), Job Posting, , Developer Enablement vs. Gatekeeping: "Working closely with Nike Business and Technical teams to produce secure solutions at the speed of business."– Nike Careers (Job ID R-74142), Job Posting, , Risk Philosophy: "The focus areas for this role are Risk Reduction, Information Security by Design."– Nike Careers (Job ID R-74142), Job Posting, , Stated Pain Points or Goals (Verbatim): "Design and implement cybersecurity metrics (KPIs/KRIs) to measure control effectiveness."– Nike Careers (Job ID R-71212), Job Posting, , Gaps & Contradictions: - Information not publicly available: a single, explicit published AppSec mission statement from Nike leadership (beyond job-role descriptions).”
Key Initiatives
Security Champions Program: Status: No Evidence Found "Information not publicly available.""Shift Left"in Practice (pre-commit / CI/CD / developer tools): "Collaborate with global engineering and DevOps teams to integrate security tooling into CI/CD pipelines."– Nike Careers (Job ID R-71212), Job Posting, , Vulnerability Management Process: Intake / Triage / Remediation: Information not publicly available (no verbatim, public description of triage SLAs, MTTRs, or ticketing practices located in sampled sources). Secure SDLC Artifacts: "Knowledge of threat modeling and secure design review methodologies."– Nike Careers (Job ID R-71212), Job Posting, , "Design and implement cybersecurity metrics (KPIs/KRIs) to measure control effectiveness."– Nike Careers (Job ID R-71212), Job Posting, , Recent Initiatives (Last 6 Months): Status: No Evidence Found "Information not publicly available."(No public blog posts, press releases, or talks found in sampled searches explicitly announcing new AppSec programs or tool rollouts within the last six months.) Gaps & Contradictions: - No public statements found describing a Security Champions program, a formal vulnerability-triage SLA, or named AppSec process owners in Nike public materials sampled.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.