Corporate Security Engineer - IAM
One
About One
One’s mission is simple - to help customers achieve financial progress. We’re doing this by creating simple solutions to help our customers save, spend, borrow, and grow their money – all in one place.
The U.S. consumer today deserves better. Millions of Americans today can’t access credit, build savings or wealth, and are left to manage their financial lives through multiple disconnected apps. Almost a quarter of U.S. adults are unbanked or underbanked and roughly 80% of fintech users rely on multiple accounts to manage their finances.
What makes us unique? We are backed by a preeminent fintech investor (Ribbit) and the world’s largest retailer (Walmart), maintain the speed and independence of a startup, and employ a strong (and growing) collection of world-class talent.
There’s never been a better moment to build a business that helps people achieve financial progress. Come build with us!
The role
As Corporate Security Engineer you will be responsible for designing, building, and maintaining One’s Information Technology systems and processes with a focus on security. This includes responding to user reports and issues, assisting in deploying controls, and refining processes. You will establish and oversee knowledge and content management, including hands-on updates to critical content; you will identify opportunities to automate and/or provide self-service for our internal customers and lead the projects to deliver on those opportunities. Every member of the team is first and foremost a security professional, and so each task, project and incident must be approached considering security as a critical component.
This role is responsible for
Assisting with the scaled management of the endpoint environment including policy development, alignment with CIS and other benchmarks, managing and monitoring vulnerabilities, as well as contributing to DR and incident planning.
Troubleshooting and resolving technical issues related the corporate SaaS environment, pursuing vendor support when necessary.
Collaborating with other members of the IT & Security teams to develop and implement administrative and technical security controls.
Acting as an escalation point for IT service queue, specifically security concerns from the company’s user base.
Ensuring compliance with corporate policies and standards for security, data privacy, and disaster recovery.
Assisting in the development and maintenance of policies and procedures.
Acting as primary technical owner of several corporate systems, staying up to date on releases, enabling new functionality, and ensuring continued operational effectiveness.
You bring
8+ years of experience in IT with an emphasis on corporate security, ideally 3 or more years of experience dedicated solely to security.
Well-versed in design, build, and operationalizing systems with a focus on SaaS services and tools.
Strong knowledge of macOS management and deployment tools, such as Jamf Pro or similar MDM solutions.
Ability to take ownership of projects or tactical issues, and bring to completion independently.
Willingness to work outside your wheelhouse across domains as the team and business require.
A willingness to document as you go and write up new processes.
Domain knowledge in multiple disciplines including networking, compliance, authentication standards, and frameworks such as MITRE ATT&CK and NIST.
Relevant certifications (such as AWS Certified Solutions Architect, Security+, and/or Apple Certified Support Professional) are a plus.
AWS IAM experience is a plus.
Infrastructure-as-code such as Terraform, Puppet, or Chef is a plus.
In-depth experience with Netskope, Zscaler or similar ZTNA & DLP solutions a plus.
Pay Transparency
The estimated annual base salary for this position ranges from $175,000 to $205,000. Pay is generally based on the level, complexity, responsibility, and job duties/requirements of the specific position. We then source candidates with the requisite skills, expertise, education, training, and experience. If you are selected for an interview, please feel welcome to speak to a Talent Partner about our compensation philosophy and other available benefits.
What it’s like working @ One
Competitive cash
Benefits effective on day one
Early access to a high potential, high growth fintech
Generous stock option packages in an early-stage startup
Remote friendly (anywhere in the US) and office friendly - you pick the schedule
Flexible time off programs - vacation, sick, paid parental leave, and paid caregiver leave
401(k) plan with match
We use Covey as part of our hiring process for jobs in NYC and certain features may qualify it as an AEDT. As part of the evaluation process we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound on May 31, 2024.
Please see the independent bias audit report covering our use of Covey here.
Leveling Philosophy
In order to thoughtfully scale the company and avoid downstream inequities, we’ve adopted a flat titling structure at One. Though we may occasionally post a role externally with a prefix such as “Senior” to reflect the external level of the position, we do not use prefixes in titles like that internally unless in a position which manages a team. Internal titles typically include your specific functional responsibility, such as engineering, product management or sales, and often include additional descriptors to ensure clarity of role and placement within our organization (i.e. “Engineer, Platform”, “Sales, Business Development” or “Manager, Talent”). Employees are paid commensurate with their experience and the internal level within One.
Inclusion & Belonging
To build technology and products that are used and loved by people and solve real-world problems, we need to build a team with many different perspectives and experiences. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We encourage candidates from all backgrounds to apply. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us at talent@one.app.