Senior Security Engineer

About The role

SoFi Product Security team assists and partners with engineering, product and design organizations. Our mission is  to build a secure and resilient enterprise that protects our employees, customers, and business operations. By embedding security into our infrastructure, cloud environments, and enterprise systems, we safeguard critical assets while enabling the business to operate efficiently and securely.

As a Senior Security Engineer, you will be responsible for the end-to-end security of our platforms, products, and corporate services. You will work in conjunction with security, compliance, and risk teams to make decisions and help lead initiatives to ensure timely delivery of security solutions that support our business objectives. 

The ideal candidate will be highly collaborative, balancing the right level of security with business objectives, and working to creatively solve complex Corporate Security related problems in an agile environment. 

What you’ll do:

• Conduct security assessments across cloud and corporate IT environments
• Lead SaaS security initiatives, implementing and optimizing security controls to protect corporate applications and data
• Implement AI/ML security best practices, ensuring AI models and pipelines are protected against adversarial threats and data poisoning.
• Deploy product security tools like SAST, DAST, IAST, SCA, etc to help uncover security issues early on in the software development lifecycle.
• Build secure integrations with various internal and external tools to create agile software security solutions.
• Investigate and respond to security incidents, driving remediation efforts and continuous improvement.
• Collaborate with engineering, IT, and executive teams to continuously improve security posture

What you’ll need:

• Hands-on experience with AWS security controls, IAM best practices, GuardDuty, Security Hub, WAF, KMS, and least privilege access models.
• Demonstrate deep understanding of Docker, Kubernetes, and CI/CD pipelines
• Demonstrate deep understanding of Infrastructure, IAM and PAM.
• Experience with AI Security, including securing AI/ML models, preventing adversarial attacks, and ensuring data integrity in AI pipelines.
• Experience in securing SaaS applications and corporate security, with strong experience in email security, endpoint protection, and infrastructure hardening in cloud environments.
• Strong knowledge of Cloud Access Security Broker (CASB), Secure Web Gateway (SWG), and Zero Trust Network Access (ZTNA) solutions within a Secure Access Service Edge (SASE) framework.
• Written and verbal skills for communicating security concepts and solutions

Preferred Qualifications:

• Bachelor's degree in Computer Science or equivalent from a fully-accredited college or university
• 5+ Experience in Infrastructure and corporate security 
• Experience with cloud native products and in-depth understanding of Zero Trust Principle 
• 5+ years of experience with cloud technologies preferably AWS
• Demonstrated ability to think strategically about business, product, and technical challenges
• Ability to manage relationships with other business units, external vendors and stakeholders when IT security risks are present and system or process changes must be made to mitigate risk
• Ability to work in a fast paced and Agile development environment
• Work and play well with others; SoFi is a collaborative environment

Nice to have:

• AWS Certified Security Speciality / Solutions Architect
• Any CNCF Cloud Native Certifications
• Masters or PhD in Computer Science or Engineering
• Financial services experience