Senior Security Engineer

Job Description

Highnote, founded in 2020 by leaders from Braintree, PayPal, and Lending Club, is seeking a Senior Security Engineer to spearhead its overall security initiatives. This role offers the opportunity to leverage prior security experience, collaborate with engineering leadership, and champion security across the company.Responsibilities:

• Refine and execute the overall security strategy.
• Drive and maintain security policies and processes.
• Own compliance programs such as PCI-DSS, SOC1/2, and GDPR.
• Drive application and web security initiatives.
• Serve as a security consultant in design discussions and reviews.
• Drive secure coding and SDLC initiatives.
• Manage penetration testing efforts and bug bounty programs.
• Evaluate technologies for improving security defenses and monitoring.
• Integrate security controls across cloud-native and third-party tools.
• Own infrastructure and vendor security audits.
• Work with the infrastructure team on securing GCP, AWS, and On-Premise Colos.
• Implement security best practices across Kubernetes and Istio.
• Own security incident response and related systems.

Requirements:

• 7+ years of experience in information security.
• Experience in leading overall security efforts.
• Experience with scripting/programming languages.
• Experience with cloud platforms (GCP or AWS).
• Knowledge of cryptography, PKI, TLS.
• Familiarity with static and dynamic code analysis tools.
• Experience with APIs.
• Ability to work autonomously in a fast-paced environment.

Benefits:

• Flexible Paid Time Off.
• 100% healthcare coverage + 75% for dependents.
• 401k program.
• Up to 16 weeks of Maternity leave + up to 6 weeks of Paternity leave.
• Equity in Highnote.
• Stipend for home office setup; internet and phone reimbursement.