Security Engineer
Snap Finance · Colorado, United States · 1 wk ago
Information TechnologyFull-time
About the role
The Security Engineer will own the day-to-day security of our multi-region AWS environment, including security tooling, incident response, vulnerability management, and automation. They will also support security metrics, compliance, and executive/board reporting.
Responsibilities
- Secure and Operate the Cloud Environment
- Operate the full security toolset: CSPM, SIEM, vulnerability management, network security, ZTNA, DLP, EDR, and endpoint management
- Drive the vulnerability management lifecycle end to end: scan cadence, prioritization, remediation SLAs, and reporting
- Manage identity and access infrastructure in collaboration with IT, spanning MFA, IAM, IGA, privileged access, and credential management
- Lead the buildout of a Privileged Access Management (PAM) program
- Support ongoing cloud migration security workstreams
- Maintain risk registers and GRC platforms; ensure findings are triaged and resolved within SLA
- Coordinate audit evidence collection for SOC 2 Type II, PCI DSS 4.0, and CyberEssentials+
- Contribute to executive and board-level security reporting — translate operational data into clear program narratives
- Own the Security Program Within Your Domain
Requirements
- 5+ years in security engineering, security operations, or a combined SecOps/program role
- Must be authorized to work in the United States and be US-based
- Hands-on experience operating cloud security tooling in AWS environments
- Proficiency in at least one scripting or programming language — Python strongly preferred
- Strong working knowledge of vulnerability management and incident response lifecycles
- Experience supporting compliance frameworks: SOC 2, PCI DSS, or equivalent
- Demonstrated use of AI and ML tooling in a professional security context
- Track record of mentoring or upskilling peers in technical disciplines
- Strong written communication skills — equally effective writing for engineers and executives
- Comfortable with occasional after-hours availability for critical security incidents
Qualifications
- Experience with GRC platforms: compliance automation, risk management, or audit evidence tooling
- Exposure to IGA and PAM concepts and tooling
- Security certifications: CISSP, CISM, AWS Security Specialty, or GIAC (GCIH, GCED, or similar)
- Background in fintech, lending, or regulated financial services
- Contributions to security tooling, open-source projects, or internal platform engineering
- Experience with SOAR platforms or automated response workflows
Skills
- Experience with AI and ML tooling in a professional security context
- Strong written communication skills
- Ability to lead and respond to incidents
- Experience with GRC platforms
- Experience with SOAR platforms or automated response workflows
Benefits
- Generous paid time off
- Competitive medical, dental & vision coverage
- 401K with company match for US
- Company-paid life insurance
- Company-paid short-term and long-term disability
- Access to mental health and wellness resources
- Company-paid volunteer time to do good in your community
- Legal coverage and other supplemental options
- A value-based culture where growth opportunities are endless
Pay
Compensation is commensurate with experience.
Schedule
Full-time position.