Lead Security Engineer

Summary

Join Monarch, a premier financial management platform, as a Security Engineer to ensure the security and privacy of sensitive data. This senior role will take ownership of implementing data encryption standards, designing access controls, and monitoring for potential breaches.

Requirements

• 5+ years of experience in security engineering roles, with a focus on data security, application security, and infrastructure security, ideally in a cloud-first environment
• Proficiency in a programming language (Python preferred) to support execution of security initiatives
• Demonstrated experience implementing data encryption and access controls for sensitive data
• Experience securing cloud environments (AWS preferred) with a deep understanding of IAM, VPCs, and security groups
• Knowledge of secure coding principles and experience with security testing tools (SAST, DAST) within CI/CD pipelines

Responsibilities

• Implement and enforce data encryption standards for data at rest and in transit, ensuring strong key management practices
• Design and maintain data access controls and policies, limiting access to sensitive data (e.g., PII) and enforcing the principle of least privilege
• Monitor and detect data exfiltration risks, unauthorized access, and anomalies around data handling
• Conduct regular audits of PII storage, access, and handling to ensure sensitive data remains secure
• Embed security best practices within the Software Development Lifecycle (SDLC), including secure coding, code review, and application security testing
• Deploy and maintain security tools in the CI/CD pipeline, such as SAST, DAST, and dependency scanning tools, to identify and remediate application vulnerabilities
• Perform threat modeling, vulnerability assessments, and penetration testing to identify and mitigate risks
• Design and enforce security configurations in cloud environments (e.g., AWS), including IAM roles, security groups, and VPC segmentation
• Establish automated monitoring and alerting to detect anomalies or potential breaches across cloud infrastructure
• Foster Cross-Functional Collaboration and Security Culture

Benefits

• Work wherever you want! As a fully remote company with no central office, we want you to work wherever you are happiest and most productive
• Competitive cash and equity compensation in a hyper growth, early stage company
• Stipend to set-up your ideal working environment
• Medical, dental and vision benefits (Full time US only)
• 401k (US only)
• Unlimited PTO
• 3 day weekend every month! We take off the “First Friday” every month to focus on rest, recuperation, or just having fun!