Enterprise Cloud Security Strategist

The Lead Security Engineer plays a pivotal role in advancing and scaling our Application and Cloud Security programs.

• Design and enforce robust security best practices across the codebase, cloud infrastructure, development lifecycle, and production environments.
• Oversee security assessments for the application stack, incorporating threat modeling, code reviews, dynamic scanning, and penetration testing.
• Develop and maintain secure Software Development Lifecycle (SDLC) practices, including integration of security checks into Continuous Integration/Continuous Deployment (CI/CD) pipelines.
• Collaborate with engineering teams to define and implement secure design patterns, emphasizing secure authentication, input validation, access control, session management, and secure storage.
• Continuously monitor and remediate vulnerabilities in source code and dependencies through Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and other relevant tools.
• Partner with engineering teams to establish coding standards aligned with OWASP and CWE guidelines.

• Cloud & Infrastructure Security
• Design and maintain secure configurations for AWS environments, focusing on networking, identity management (IAM), encryption, and logging.
• Implement and manage security services such as GuardDuty, Inspector, Security Hub, and other cloud-native tools.
• Define and enforce infrastructure-as-code (IaC) security controls using tools like Terraform, CloudFormation, or policy-as-code frameworks (e.g., OPA, Sentinel).
• Lead efforts in runtime protection, including workload scanning, intrusion detection, and anomaly alerting.
• Ensure centralized, secure log collection, monitoring, and alerting across all infrastructure components.

• Security Architecture & Best Practices
• Champion a shift-left approach to security—collaborating with developers early in the SDLC and providing actionable feedback during design, build, and review phases.
• Collaborate with product managers and infrastructure leads to ensure security is embedded into architectural decisions, particularly for high-risk features or regulated workflows.
• Define and promote secure defaults, least-privilege access, and zero-trust architectural principles.
• Ensure strong key management and encryption standards are applied across data at rest, in transit, and in use.

• Governance, Risk & Compliance
• Support compliance initiatives by building and documenting enforceable security controls.
• Work with auditors and risk teams to demonstrate maturity of security processes and ongoing improvements.
• Establish internal security policies, operational procedures, and regular audit activities.

This opportunity enables you to lead the adoption of security by design across engineering functions and embed continuous security testing into CI/CD pipelines.

• 6+ years of experience in security engineering with a primary focus on application and cloud security.
• Proficiency with programming languages like Java, Python, JavaScript, and web technologies (HTML, CSS, SQL).
• In-depth knowledge of application security vulnerabilities, threat modeling, and SDLC integrations.
• Deep familiarity with Cloud security architecture and services (AWS - IAM, VPC, KMS, GuardDuty, CloudTrail, etc.).
• Experience with DevSecOps tools and practices, including SAST, DAST, container scanning, and infrastructure scanning.
• Hands-on experience in implementing industry best practices in access control, encryption, and security observability.
• Excellent communication skills, with the ability to collaborate across engineering, product, and compliance teams.
• Bachelor's degree in Computer Science, Information Security, or a related field.

Preferred qualifications include experience in high-compliance industries, familiarity with policy-as-code, secrets management tools, and container security, as well as certifications such as OSCP, AWS Security Specialty, or CISSP.

• Remote-first culture – Work from anywhere, with top-tier colleagues.
• Security is not a checkbox—it is fundamental to our success and product trust.
• You will be empowered to define best-in-class standards that scale across financial AI products, and dynamic customer environments.
• Be at the forefront of AI innovation – Build game-changing products that shape the financial industry.
• High ownership, high impact – Your work will define the future of banking.