Security Engineer II

Human Interest is a high-growth fintech company focused on providing accessible retirement benefits to employees of small and medium-sized businesses. The Security Engineer II will design and implement secure software practices, collaborate with various teams, and enhance security controls.

Responsibilities:

• Build practical controls to improve the effectiveness and robustness of our engineering team
• Foster a DevSecOps culture through education, automation, and tooling
• Secure our SDLC process through automation
• Implement checks in pipeline
• Perform security reviews of application code
• Take part in team on call rotation for security events and monitoring alerts
• Advocate and educate security best practices
• Create tooling and automation to efficiently respond to security events
• Partner with stakeholders to respond and mitigate security threats

Requirements:

• Minimum 2 years in a security focused engineering role
• Minimum 5 years in software engineering role
• Proficient coding ability in at least one modern programming language. E.g.Typescript/Javascript, Ruby, Java, Python, Golang
• Practical experience securing cloud environments
• Strong communication skills: you can easily discuss complex technical concepts with both engineers and non-engineers
• Strong ownership and bias for action: You love to roll up your sleeves. You are proactive, drive projects from start to finish, and lead cross-functional projects, while keeping stakeholders informed
• Leader and Mentor: You are a recognized leader in your areas of responsibility, and enjoy sharing knowledge and mentoring others
• Operational Excellence: you raise the bar on the quality of the software and infrastructure that you work on
• Familiarity with securing Node.js and GraphQL
• Applied knowledge of a threat modeling framework like STRIDE or MITRE
• Experience performing security testing for cloud hosted applications