Senior Security Engineer

About Us:

Monarch is a powerful, all-in-one personal finance platform designed to help make the complexity of finances feel simple again. Since launching in 2021, we’ve become the top-recommended personal finance app by users and experts. Our goal? To take the stress out of finances so our members can focus on what truly matters.

We are a team of do-ers led by experienced entrepreneurs who are passionate about helping our members reach their financial goals. We are hyper focused on building a product people love and continuing to evolve based on user feedback.

As a fully remote company (even before COVID!), we welcome applicants from almost anywhere. Our team collaborates synchronously mostly from 9 AM – 2 PM PT and embraces asynchronous work to stay connected across time zones.

Join us on our mission to transform lives by simplifying money, together.

The Role:

Monarch handles a lot of sensitive and valuable information. As we continue to grow, we want to maintain our focus on security and privacy. We are seeking an experienced Security Engineer who is passionate about cybersecurity and has extensive experience in the field.

This is designed to be a senior role since it is taking ownership of a new area with a lot of technical / product complexity (ie you've probably done this sort of work for years). But if you think you're equipped for the job, please apply!

Seniority Level: Senior

What You'll Do:

1. Data Security and PII Protection

   • Implement and enforce data encryption standards for data at rest and in transit, ensuring strong key management practices.

   • Contribute to the design and enforcement of access controls for sensitive data (e.g., PII), supporting the principle of least privilege.

   • Monitor for unauthorized access, data exfiltration risks, and unusual data activity.

   • Participate in audits of PII storage and access patterns to ensure continued compliance and protection.

2. Application and Product Security

   • Support secure development practices throughout the Software Development Lifecycle (SDLC), including secure coding and code review.

   • Help integrate and operate application security tools within the CI/CD pipeline (e.g., SAST, DAST, dependency scanning

   • Assist in threat modeling, vulnerability assessments, and security testing of applications

3. Infrastructure Security

   • Contribute to the definition and implementation of secure configurations across cloud infrastructure (e.g., AWS IAM roles, VPC segmentation).

What You'll Bring:

• Professional Experience: 3-5+ years of experience in security engineering roles, with a focus on data security, application security, and infrastructure security, ideally in a cloud-first environment.

• Programming Knowledge: Proficiency in a programming language (Python preferred) to support execution of security initiatives.

• Data Security and PII Protection: Demonstrated experience implementing data encryption and access controls for sensitive data. OpenSSL, AWS KMS, HashiCorp Vault, database encryption (Postgres, MySQL), TLS/SSL protocols, data masking and tokenization tools

• Cloud Infrastructure Security: Experience securing cloud environments (AWS preferred) with a deep understanding of IAM, VPCs, and security groups. AWS Security Hub, AWS IAM, AWS Key Management Service (KMS), OPA for Terraform

• Application Security: Knowledge of secure coding principles and experience with security testing tools (SAST, DAST, SonarQube, Checkmarx, OWASP ZAP) within CI/CD pipelines.

• Monitoring and Detection: SIEM solutions (Splunk, Elastic Security, Wazuh), AWS CloudWatch, cloud-native monitoring tools, and alerting systems

• Identity and Access Management: AWS IAM, Okta

• Communication Skills: Ability to explain complex security concepts clearly to both technical and non-technical stakeholders.

Benefits :

• Work wherever you want! As a fully remote company with no central office, we want you to work wherever you are happiest and most productive. Whether that’s out of your home, a co-working space, or elsewhere.

• Competitive cash and equity compensation in a hyper growth, early stage company 🚀.

• Stipend to set-up your ideal working environment.

• Competitive Benefit Plans for employees based on your location (e.g. in the US we offer: Medical, dental and vision benefits and the ability to contribute to a 401k plan).

• Unlimited PTO.

• 3 day weekend every month! We take off the “First Friday” every month to focus on rest, recuperation, or just having fun!

We are an equal opportunity employer and value diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.