Attain FinanceRemote
Senior Security Engineer
United States
Full Time
3 hours ago
$120,000 - $140,000 USD
H1B Sponsor Likely
Key skills
Information Security EngineeringNetwork SecurityCloud SecuritySecurity Tools ProficiencyScriptingAutomationCybersecurity FrameworksSecurity CertificationsAnalytical SkillsZero Trust ArchitectureContainer SecurityIdentityAccess ManagementData EncryptionProblem-Solving SkillsCommunication SkillsPythonBashPowerShellAIAWSAzureGCPKubernetesDockerIAMSSOCI/CDLeadershipCommunicationZero TrustFirewall
About this role
Attain Finance is one of the largest, fastest growing providers of short-term loans and financial services in the United States and Canada. We are seeking a seasoned Senior Security Engineer to strengthen our cybersecurity posture and ensure the protection of sensitive financial data, involving the design, implementation, and maintenance of security solutions that meet regulatory and operational requirements.
Responsibilities:
- Design and implement security controls to protect financial systems, customer data, and transaction platforms
- Design, implement, and maintain security tools and technologies (e.g., SIEM, EDR, firewalls, IDS/IPS, DLP, ZTNA)
- Lead threat detection, incident response, and forensic investigations across enterprise environments
- Ensure compliance with financial regulations and standards such as PCI-DSS and FTC regulations
- Perform threat modeling and vulnerability assessments to identify and mitigate threats
- Collaborate with IT, risk, and compliance teams to integrate security into business processes and technology deployments
- Develop and maintain secure architecture for cloud, on-prem, and hybrid environments
- Monitor security alerts and logs using SIEM/SOAR tools (e.g., Devo, Sentinel, XSOAR) and respond to anomalies
- Mentor junior engineers and contribute to the development of security awareness programs
- Participate in audits and regulatory assessments, providing evidence and remediation plans as needed
- Develop and enforce security policies, standards, and procedures
- Collaborate with IT and DevOps teams to integrate security into CI/CD pipelines and cloud environments
- Stay current with emerging threats, vulnerabilities, and mitigation strategies
- Leverage AI and Large Language model technology to improve efficiency and increase security
Requirements:
- Bachelor's degree in Computer Science, Cybersecurity, or related field (Master's preferred)
- 5+ years of experience in information security engineering
- Strong knowledge of network security, cloud security (AWS/Azure), and endpoint protection
- Hands-on experience with security tools and platforms: firewalls, IDS/IPS, SIEM, endpoint protection, VPN, zero-trust technologies, etc
- Proficiency with scripting and automation (Python, PowerShell, Bash)
- Strong understanding of financial industry regulations and cybersecurity frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
- Certifications such as CISSP, CISM, or GIAC are highly desirable
- Excellent analytical, problem-solving, and communication skills
- Experience with zero trust architecture and micro segmentation
- Experience with firewall technologies (Palo Alto)
- Familiarity with container security (Docker, Kubernetes)
- Knowledge of identity and access management (IAM, SSO, MFA)
- Hands-on experience with SIEM platforms (Devo, Sentinel, etc.)
- Hands-on experience with SOAR platforms (Palo Alto XSOAR, etc.)
- Knowledge of data encryption, PKI, and secure key management
- Experience with cloud security in AWS, Azure, or GCP
- Strong communication skills for interfacing with auditors, regulators, and executive leadership