Security Engineer

About The Position

Requirements

• Minimum of 3+ years of hands-on security engineering experience in a cloud-native environment.
• Demonstrated experience with IAM platforms and AWS security services (IAM, CloudTrail, GuardDuty, Security Hub, Secrets Manager).
• Working knowledge of Cloud Security Posture Management (CSPM) tools (e.g., Wiz, Prisma Cloud, Prowler) and CI/CD security integrations (SAST/SCA).
• Ability to produce audit-quality documentation and evidence artifacts.
• Understanding of how AI integrates into the modern security stack and a willingness to implement AI-driven processes.
• Ability to operate with high autonomy and accountability in a high-growth, executive-facing environment.

Nice To Haves

• Experience supporting a full SOC 2 audit lifecycle.
• Familiarity with GRC platforms such as Vanta, Drata, or SecureFrame.
• Proficiency in scripting for security automation.
• Exposure to DLP tooling, AI data governance, or regulatory frameworks (NIST CSF, NYDFS Part 500).
• Professional certifications such as AWS Solutions Architect – Associate, AWS Certified Security – Specialty, or CISSP.

Responsibilities

• Design, deploy, and maintain core security controls across identity, endpoint, cloud, and application layers, including SSO/MFA enforcement, MDM, EDR, CSPM, secrets management, and DLP.
• Lead the technical integration of security tooling, ensuring controls are configured to produce auditor-credible evidence.
• Execute the technical security roadmap under the guidance of the CISO, managing parallel workstreams across infrastructure and daily operations.
• Build and maintain detection coverage across cloud and endpoint systems, validating alert paths through documented test scenarios.
• Monitor security logs for anomalous activity, investigate potential incidents, and provide structured updates to leadership.
• Manage the vulnerability lifecycle, including scanning, triage, SLA-tracked remediation, and patching verification.
• Maintain a comprehensive inventory of non-human identities, including service accounts and API keys, ensuring proper rotation and expiry tracking.
• Implement automation across security controls and evidence collection to reduce manual burden and improve scalability.
• Proactively identify security posture gaps and provide recommendations for enhancement to the CISO.
• Align technical controls with governance requirements and maintain organized artifacts for SOC 2 and other regulatory audits.
• Manage security aspects of the employee lifecycle, including device enrollment, identity provisioning, and access revocation.
• Develop documentation for security configurations and standard operating procedures.

Benefits

• Opportunity to build a security program from the ground up with significant organizational investment.
• Direct mentorship and collaboration with a CISO in a high-growth fintech environment.
• Autonomy to select and implement modern, production-grade security tooling.
• Competitive compensation and the chance to contribute to the foundational infrastructure of an institutional-grade financial platform.