- Design the security controls, automations, and infrastructure to support self-service AWS account creation and administration
- Build tools to perform continuous monitoring, reporting, and remediation of cloud security issues
- Design pragmatic baseline security controls to support new business units and rapid prototyping
- Perform security design reviews for critical partnerships and new technologies
- Develop and deploy security controls and measures to protect cloud-based infrastructure and services. This includes defining what good security looks like for cloud infrastructure and executing on initiatives that get us here. Ensure that security measures align with industry best practices and regulatory requirements.
- Serve as a subject matter expert on cloud security matters, providing guidance and support to other engineering teams leveraging various tech stacks. This involves assisting with the design and implementation of secure network/infrastructure architectures and advising on security best practices.
- Develop and implement automation scripts and workflows to streamline security operations and ensure consistent enforcement of security controls across cloud environments. Leverage Infrastructure as Code (IaC) tools such as Terraform to define and deploy security configurations programmatically.
- Assess the security posture of public cloud environments. This involves reviewing configurations, access controls, identity management, encryption mechanisms, and compliance frameworks to identify potential security gaps and risks.
- Monitor cloud environments for security events and anomalies, such as unauthorized access attempts, data breaches, and configuration changes. Utilize cloud-native security tools and SIEM (Security Information and Event Management) platforms to collect and analyze security logs and alerts. Respond promptly to security incidents, investigating root causes and implementing remediation actions.
- A subject matter expert in AWS security controls and industry best practices for building secure cloud environments
- Pragmatic in your approach to reducing risk in a manner that incorporates business and product needs
- Focused on building scalable cloud security solutions that allow for a high degree of engineering autonomy while reducing risk to acceptable levels
- Excited to lead roadmap items outside your core competencies to move the program forward and adapt to prioritize critical tasks as they arise
- An ambassador for fostering a respectful, blameless, and collaborative work environment
- 5+ years of experience in a professional cloud security engineering role with a focus on AWS.
- 2+ years experience writing infrastructure as Code (IaC) for production or environments using Terraform or other IaC tools.
- Experience building in Python and comfortable with learning other programming languages as needed.
- Experience building security integrations into CI/CD pipelines.
- Experience in security monitoring, triage and incident response in cloud and corporate environments.
- Experience building highly-scalable cloud security solutions with a high degree of autonomy while taking informed risks to move the business forward.
- Demonstrated ability to work collaboratively and constructively with cross-functional stakeholders to support the needs of the business while evaluating and addressing risk.
- Can mentor/coach junior engineers and provide them guidance when needed.
- Demonstrated ability to identify and drive process improvements needs.
- Experience driving large-scale security engineering projects across multiple cloud environments.
- This role will be based in San Francisco, CA or remote (based in the U.S. or Canada).
- We believe great work can be done anywhere. No matter where you are based, NerdWallet offers benefits and perks to support the physical, financial, and emotional well being of you and your family.
- Industry-leading medical, dental, and vision health care plans for employees and their dependents
- Rejuvenation Policy – Flexible Time Off + 13 holidays + 4 Mental Health Days Off
- New Parent Leave for employees with a newborn child or a child placed with them for adoption or foster care
- Mental health support through Headspace
- Financial wellness, guidance, and unlimited access to a Certified Financial Planner (CFP) through Northstar
- Paid sabbatical for Nerds to recharge, gain knowledge and pursue their interests
- Health and Dependent Care FSA and HSA Plan with monthly NerdWallet contribution
- Weekly Virtual Bootcamp, Yoga, and Mindfulness Meditation sessions
- Monthly Wellness Stipend, Cell Phone Stipend, and Wifi Stipend
- Nerd-led group initiatives – Intramural Sports, Employee Resource Groups for Parents, Diversity and Inclusion, Women, LGBTQIA, and other communities
- Hackathons, Happy Hours, and team events across all teams and departments
- Company-wide events like Little Nerds Day (aka bring your kids to work day, even if you're remote) and our annual Charity Auction
- Our Nerds love to make an impact by paying it forward – Donate to your favorite causes with a company match
- Work from home equipment stipend and co-working space subsidy
- Anniversary recognition program – choose from different items and experiences
- Commuting stipend
- 401K with company match
- Annual Enrichment Stipend for learning and development
- Be the first to test and benefit from our new financial products and tools
- Access to Rocket Lawyer for online legal support and resources
- E-Verify Participation Poster (English+Spanish/Español)
- Right to Work Poster (English) / (Spanish/Español)
-
Security Engineer
3 weeks ago
HeyGen San Francisco, United StatesAbout HeyGen · HeyGen is a cutting-edge AI-powered platform revolutionizing the world of video creation. · Position Summary: · As a Security Engineer at HeyGen, you will play a critical role in protecting our systems and data from threats. Your expertise will be essential in i ...
-
Security Engineers
1 week ago
NCC Group (Americas), Inc San Francisco, United StatesSecurity Engineers · Company: NCC Group (Americas), Inc · Location: San Francisco, CA · Position Type: Full Time · Experience: 1 year · Education: MS · NCC Group (Americas), Inc. seeks Security Engineers w/MS and min. 1 yr experience sought for positions in San Francisco. Salary ...
-
Security Engineer
3 weeks ago
ShiftCode Analytics San Francisco, United StatesInterview : Video · Visa : All apart from H1b and CPT · This is hybrid from day-1. Candidate must be local. · Description : · Qualifications: · 4+ years of security engineering experience OR equivalent experience in a SWE/DevOps role and an interest in working on security en ...
-
Security Engineer
3 weeks ago
Commit Partnership San Francisco, United StatesAbout the company: Company size: <50 · Industry: Data Analytics, Data Science, AI · Founding year: 2019 · Stage: B · Funding: $100M · Backed by: Top-tier investors including Sequoia Capital, Andreessen Horowitz, and Snowflake · Tech Stack/Key Tech: Kubernetes, AWS, Terrafor ...
-
Security Engineer
3 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy developmen ...
-
Security Engineer
2 weeks ago
Innovaccer San Francisco, United StatesYour Role · We are growing rapidly in the US with acquisitions and in the US Government space. We are looking to expand our US security team with talented people. We at Innovaccer are looking for a · Security Engineer-III · who will be responsible for performing real-time moni ...
-
Security Engineer
6 days ago
Hive San Francisco, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions to understand, search, and generate content, and is trusted by hundreds of the world's largest and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained ...
-
Security Engineer
1 week ago
Russell Tobin San Francisco, United StatesJob Description · Job Description · Job Title: Security Engineer Level V · Job Location: San Francisco, CA · Duration: 11 Months plus · Pay Range: $120/hr-$130/hr on W2 · Duties: · Identify gaps in our infrastructure, and work with business partners to gain visibility throug ...
-
Security Engineer
2 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development ...
-
Security Engineer
6 days ago
Asana San Francisco, United StatesWe're looking for a motivated security engineer interested in maturing Asana's product security posture to expand trust with our growing customer base. As a member of the Product Security team, you will focus on shipping features that are free from critical security bugs, enablin ...
-
Security Engineer
3 weeks ago
Hive San Francisco, CA, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions for content understanding, trusted by the world's largest, fastest growing, and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained AI models, serving ...
-
Security Engineer
1 week ago
Notion, LLC San Francisco, United StatesAbout Us: · We're on a mission to make it possible for every person, team, and company to be able to tailor their software to solve any problem and take on any challenge. Computers may be our most powerful tools, but most of us can't build or modify the software we use on them e ...
-
Security Engineer
2 weeks ago
Anyscale San Francisco, United StatesAbout Anyscale · At Anyscale , we're on a mission to democratize distributed computing and make it accessible to software developers of all skill levels. We're commercializing Ray , a popular open-source project that's creating an ecosystem of libraries for scalable machine lear ...
-
Security Engineer
1 week ago
Retool San Francisco, United StatesABOUT RETOOL: · Nearly every company in the world runs on custom software: Gartner estimates that up to 50% of all code is written for internal use. This is the operational software for refunding orders, underwriting loans, onboarding employees, analyzing transactions, and prov ...
-
Security Engineer
2 weeks ago
Retool San Francisco, United States Full timeABOUT RETOOL: · Nearly every company in the world runs on custom software: Gartner estimates that up to 50% of all code is written for internal use. This is the operational software for refunding orders, underwriting loans, onboarding employees, analyzing transactions, and prov ...
-
Security Engineer
3 weeks ago
Saxon Global San Francisco, CA, United StatesUSC,GC Title: Security Engineer Location: San Francisco, CA (hybrid) and travel as needed Duration: 6 Months + Client: WWT/PG&E Interview: Phone/Video Rate: $60-65/hr on c2c Required Skills: Security Engineering Contractor with experience deploying the Elastic Endgame-REQUIRED ( ...
-
IT Security Engineer
4 weeks ago
Gunderson Dettmer San Francisco, United StatesGunderson Dettmer · is the only business law firm of its kind - exclusively serving the global venture capital and emerging technology marketplace. With 400 attorneys in eleven offices - from Silicon Valley to Singapore - we innovate for innovators, accelerate entrepreneurship, ...
-
Security Engineer
2 weeks ago
Insight Global San Francisco, United StatesRole: Security EngineerPR: $50 -70/hrLocation: hybrid phx azContract: 12 month contract (possible extensions) · * 2-4 Years of professional experience as a Security Engineer or equivalent position.* Professional experience utilizing Palo Alto.* Professional Experience working wi ...
-
Security Engineer
1 week ago
HonorVet Technologies San Francisco, United StatesTitle: Security EngineerLocation: RemoteDuration: 12+ months · Position DescriptionA Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or opera ...
-
Security Engineer
3 weeks ago
Retool San Francisco, CA, United StatesWHY WE'RE LOOKING FOR YOU · Retool aspires to be the single best way companies build internal tools, bringing good software to everyone. Central to this vision is an unwavering commitment to security. Retool both handles our clients' most sensitive data and offers a Turing-compl ...
Staff Infrastructure Security Engineer - San Francisco, United States - NerdWallet
Description
The Infrastructure Security Engineer will work to ensure the privacy and integrity of our users' sensitive information. Their objective will be to build core security tooling for platforms that perform the collection, computation, aggregation, and storage of personal financial data and partner with technical teams across the company, advising them on secure design patterns for cloud and corporate infrastructure. They will lead strategic initiatives to remediate and mitigate infrastructure security risk across the organization.
Projects you may be working on in this position include:
Where you can make an impact:
You are:
Your experience:
We recognize not everyone will meet all of the criteria. If you meet most of the criteria below and you're excited about the opportunity and willing to learn, we'd love to hear from you.
Where:
What we offer:
Work Hard, Stay Balanced (Life's a series of balancing acts, eh?)
Have Some Fun (Nerds are fun, too)
Lifestyle (Be your best self - we'll take care of the details)
Plan for your future (And when you retire on your island, remember the little people)
If you are based in California, we encourage you to read this important information for California residents linked here.
NerdWallet is committed to pursuing and hiring a diverse workforce and is proud to be an equal opportunity employer. We prohibit discrimination and harassment on the basis of any characteristic protected by applicable federal, state, or local law, so all qualified applicants will receive consideration for employment.
NerdWallet participates in the Department of Homeland Security U.S. Citizenship and Immigration Services E-Verify program for all US locations. For more information, please see:
#LI-DNP#LI-Remote#LI-4
Base pay offered may vary within the posted range based on several factors, including but not limited to education, job-related knowledge, skills, experience, and location.
The pay range for this role is
$152,000—$282,000 USD