Senior Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Security Engineer enhancing security for Loancrate's AI-native mortgage workflows. Responsible for application security, infrastructure security, compliance, and security tooling.
Responsibilities:
- Lead and drive Loancrate’s security posture across application security, cloud security, identity, and compliance
- Perform regular threat modeling, vulnerability assessments, and penetration testing
- Build and maintain security tooling and automation: SAST/DAST, dependency scanning, container scanning, SBOM management, and secret detection
- Harden our AWS environment: IAM, VPC boundaries, secrets management, audit logging, GuardDuty, Security Hub, KMS key management, and DDoS protection
- Own our SOC 2 Type II program
- Lead or coordinate incident response for security events
- Establish and maintain a secure SDLC
- Maintain a risk register
- Partner with Operations on endpoint and device security
- Manage third-party and vendor security risk
- Own identity and access infrastructure
- Contribute to security documentation, internal runbooks, and team education
Requirements:
- 5+ years of experience in security engineering or related field
- Deep application security experience: threat modeling, OWASP Top 10 (and beyond), secure code review, SAST/DAST tooling
- Strong AWS security experience across IAM, VPC, GuardDuty, Security Hub, CloudTrail, KMS, Secrets Manager, and WAF
- Terraform and/or Pulumi proficiency
- Hands-on SOC 2 experience
- CI/CD security experience
- Fintech or regulated industry experience
- Collaborative mindset
- Identity and access experience
- Familiarity with data security for sensitive personal and financial data
- Strong written communication
- Scripting and automation skills (Python, Bash, or similar)
Benefits:
- Health insurance
- Professional development opportunities
Report this job
Job expired or something wrong with this job?
Similar Jobs
Product Manager – Cybersecurity
Product Manager developing and delivering cybersecurity solutions at Claro Enterprise Solutions. Driving innovation and customer satisfaction while managing product strategy and roadmap.
Chief Information Security Officer, CISO
CISO leading security program for fintech company Nymbus focused on banking solutions and regulations. Requires strong expertise in risk management and regulatory compliance.
Senior Manager, Product Security – Illicit Trade & Brand Protection
Senior Manager leading Product Security efforts against illicit trade at Amgen. Develop strategies to ensure safety and integrity of biotech products globally.
Program Analyst, Product Security
Role focuses on memorializing and executing the Amgen Product Security Strategy. Supporting threat monitoring and Brand Protection efforts within the biopharma industry.
Cyber Security Architecture
Cyber Security Architecture role at GE HealthCare managing complex projects related to architecture and cyber risk. Collaborating with teams to ensure scalability, availability, and performance.
Senior Security Sales Account Manager
Sr. Security Sales Account Manager developing and executing sales strategies for NETGEAR's cybersecurity portfolio. Engaging MSPs and SMBs to drive revenue growth while managing key partner relationships.
Director of Security – IT
Director of Security & IT at NetBox Labs leading security architecture and compliance initiatives for multi-tenant SaaS platform. Ensuring security across products, AI initiatives, and corporate environment.
Intern, Blue Team – SOC, Offense Monitoring
Estagiário Blue Team supporting cybersecurity operations and incident response at It4us. Involves daily SOC operations and collaboration with technical teams for incident investigation.
Senior Product Security Software Engineer
Senior Software Engineer taking end-to-end ownership of core internal products at Datavant. Collaborating on data solutions for the healthcare ecosystem with strong Golang and JavaScript skills.
Senior Cloud Security Engineer – WAF Specialist
Senior Cloud Security Engineer architecting Edge Defense strategies for Datavant's healthcare data solutions. Collaborating with Engineering teams for scalable edge protection and influencing architectural decisions.
Cloud Security Engineer – WAF Specialist
Cloud Security Engineer operationalizing Datavant’s Edge Defense and WAAP capabilities across various environments. Collaborating with Engineering teams to ensure secure deployments and functionality.
Senior Manager – Incident Response Engineering
Senior Manager leading Incident Response Engineering for Confluent Cloud while ensuring customer-first incident management. Building and evolving a team to handle incidents at scale across cloud platforms.
Information Security Architect
Information Security Architect responsible for designing secure systems at Businessolver. Ensuring compliance with security frameworks and addressing cybersecurity threats while collaborating across IT and business.
Senior Director, Product Management – Cloud Workload Security
Senior Director of Product Management for Isovalent, leading product strategy in cloud workload security innovations and driving customer engagement via innovative eBPF-powered tools.
CIO Program Management – Security Intern
CIO Program Management & Security Intern assisting with communications and supporting security initiatives. Gaining hands-on experience with technology and project management in a real-world enterprise environment.
Director, Information Security
Seeking a hands-on information security leader to drive cybersecurity initiatives at Outset Medical. Responsible for developing security policies and ensuring regulatory compliance in a healthcare technology environment.
Security Team Lead
Security Team Lead for Ubisoft's Security Operations Center overseeing incident responses and digital forensics. Leading the team and coordinating security monitoring efforts for effective incident management.
Information Security GRC Intern
Summer Internship in Governance, Risk and Compliance at Calix, focusing on cybersecurity compliance, risk management, and governance frameworks. Opportunity to develop technical and analytical skills crucial for a successful career in GRC.
Senior Manager, Application Security
Sr Manager, Application Security leading application security initiatives at PayNearMe, ensuring secure coding practices. Collaborating with engineering leaders on security integration in CI/CD pipelines.
Senior Cloud Security Network Engineer
Senior Network Cloud Security Engineer overseeing Copeland's network infrastructure solutions and security services. Leading operations technically and advising business units globally.