HimalayasHimalayas logo
LoancrateLO

Senior Security Engineer

Loancrate
United States only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

Loancrate is a remote fintech company that builds AI-native tooling to automate mortgage workflows. We're looking for a Senior Security Engineer to lead and drive our security posture, build security tooling and automation, and maintain a secure SDLC.

Requirements

  • Lead and drive Loancrate’s security posture across application security, cloud security, identity, and compliance
  • Perform regular threat modeling, vulnerability assessments, and penetration testing
  • Build and maintain security tooling and automation: SAST/DAST, dependency scanning, container scanning, SBOM management, and secret detection integrated into CI/CD
  • Harden our AWS environment: IAM, VPC boundaries, secrets management (AWS Secrets Manager), audit logging, GuardDuty, Security Hub, KMS key management, and DDoS protection
  • Own our SOC 2 Type II program - design practical controls, automate evidence collection where possible, manage the auditor relationship, and drive continuous improvement
  • Lead or coordinate incident response for security events - runbooks, postmortems, and clear communication to customers and leadership when needed
  • Establish and maintain a secure SDLC - lightweight design reviews, threat modeling in planning, and developer enablement (training, docs, examples) that scales
  • Maintain a risk register - tracking identified threats, ownership, and remediation status so nothing falls through the cracks
  • Partner with Operations on endpoint and device security: laptop hardening, MDM policy, hardware key rollout, and offboarding access revocation
  • Manage third-party and vendor security risk, including due diligence for new integrations and annual reviews of existing vendors
  • Own identity and access infrastructure: SSO, MFA enforcement (including hardware key policies), SCIM provisioning, and access reviews
  • Contribute to security documentation, internal runbooks, and team education - you make the secure path the easy path

Benefits

  • Generous Paid Time Off
  • 401k Matching
  • Retirement Plan
  • Relocation Assistance
  • Four Day Work Week
  • Generous Parental Leave
  • Tuition Reimbursement

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Senior

Location requirements

United States

Hiring timezones

United States +/- 0 hours

Job categories

Senior Cybersecurity EngineerSenior Network Security EngineerSenior Security Support EngineerSenior Security Operations EngineerSenior Principal Security EngineerSenior Security Engineering Manager

Skills

Threat ModelingVulnerability AssessmentPenetration TestingSASTDASTSBOMsSecret DetectionAWS IAMVPCSecrets ManagerGuardDutySecurity HubEvidenceMakeRemoteRolloutSSO Remote

Browse similar jobs

Remote Senior Senior-Cybersecurity-Engineer JobsRemote Full Time Senior-Cybersecurity-Engineer JobsRemote Senior Senior-Cybersecurity-Engineer Jobs in United StatesRemote Full Time Jobs in United StatesRemote Senior-Cybersecurity-Engineer Jobs in United States
Claim this profileLoancrate logoLO

Loancrate

View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

5 remote jobs at Loancrate

Explore the variety of open remote roles at Loancrate, offering flexible work options across multiple disciplines and skill levels.

View all jobs at Loancrate

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan