Lead Security Engineer
Monarch Money
πRemote - United States
Please let Monarch Money know you found this job on JobsCollider. Thanks! π
Job highlights
Summary
Join Monarch, a premier financial management platform, as a Security Engineer to ensure the security and privacy of sensitive data. This senior role will take ownership of implementing data encryption standards, designing access controls, and monitoring for potential breaches.
Requirements
- 5+ years of experience in security engineering roles, with a focus on data security, application security, and infrastructure security, ideally in a cloud-first environment
- Proficiency in a programming language (Python preferred) to support execution of security initiatives
- Demonstrated experience implementing data encryption and access controls for sensitive data
- Experience securing cloud environments (AWS preferred) with a deep understanding of IAM, VPCs, and security groups
- Knowledge of secure coding principles and experience with security testing tools (SAST, DAST) within CI/CD pipelines
Responsibilities
- Implement and enforce data encryption standards for data at rest and in transit, ensuring strong key management practices
- Design and maintain data access controls and policies, limiting access to sensitive data (e.g., PII) and enforcing the principle of least privilege
- Monitor and detect data exfiltration risks, unauthorized access, and anomalies around data handling
- Conduct regular audits of PII storage, access, and handling to ensure sensitive data remains secure
- Embed security best practices within the Software Development Lifecycle (SDLC), including secure coding, code review, and application security testing
- Deploy and maintain security tools in the CI/CD pipeline, such as SAST, DAST, and dependency scanning tools, to identify and remediate application vulnerabilities
- Perform threat modeling, vulnerability assessments, and penetration testing to identify and mitigate risks
- Design and enforce security configurations in cloud environments (e.g., AWS), including IAM roles, security groups, and VPC segmentation
- Establish automated monitoring and alerting to detect anomalies or potential breaches across cloud infrastructure
- Foster Cross-Functional Collaboration and Security Culture
Benefits
- Work wherever you want! As a fully remote company with no central office, we want you to work wherever you are happiest and most productive
- Competitive cash and equity compensation in a hyper growth, early stage company
- Stipend to set-up your ideal working environment
- Medical, dental and vision benefits (Full time US only)
- 401k (US only)
- Unlimited PTO
- 3 day weekend every month! We take off the βFirst Fridayβ every month to focus on rest, recuperation, or just having fun!
Share this job:
Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.
Similar Remote Jobs
- πNew Zealand
- πUnited States
- π°$200k-$260kπUnited States
- π°$150k-$300kπWorldwide
- π°$120k-$175kπUnited States, Canada
- πIndia
- π°$180k-$244kπUnited States
- πUnited States
- πUnited States, Canada
Please let Monarch Money know you found this job on JobsCollider. Thanks! π