Principal Engineer

: Architect and assist with the implementation of security controls, tools, and technologies to protect information assets from internal and external threats. Collaborate with engineering teams to integrate security into the development and deployment processes.

• Identity and Access Management (IAM): Architecture of the future for Identity. Design and implement strategies for IAM solutions to manage user identities, access rights, and privileges across on-premises and cloud environments. Establish authentication, authorization, and access control mechanisms to enforce security policies effectively. Zero Trust architecture.

• Cloud Security: Architect and implement security controls and best practices (SASE) for cloud infrastructure (e.g., AWS, Azure, Google Cloud) to protect data and workloads in cloud environments. Evaluate and recommend security services and technologies to enhance cloud security posture.

• Application Security: Collaborate with development teams to integrate security into the software development lifecycle (SDLC) and ensure secure coding practices are followed. Conduct security assessments, code reviews, and penetration testing to identify and remediate application security vulnerabilities.

• Security Standards and Compliance: Ensure compliance with industry standards, frameworks, and regulations related to information security (e.g., NIST, ISO/IEC 27001, PCI DSS). Develop and maintain security policies, standards, and procedures to align with regulatory requirements.

Qualifications

• Education: Relevant certifications (e.g., CISSP, CISM, CEH) etc.

• Experience: Minimum of 6 years of experience in information security engineering with experience in identity/authentication, architecture, cloud security, and application security.

• Technical Skills:

  • Proficiency in designing security controls, security tools needs/assessments, and technologies services.
  • In-depth knowledge of IAM solutions and protocols (e.g., LDAP, SAML, OAuth, OpenID).
  • Expertise with cloud security principles, services, and controls in major cloud platforms (e.g., AWS, Azure, GCP).
  • Expertise in application security concepts, tools, and techniques (e.g., secure coding practices, static and dynamic application security testing).

• Analytical Skills: Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop effective solutions.

• Communication Skills: Excellent written and verbal communication skills with the ability to communicate technical concepts to non-technical stakeholders.

• Leadership: Proven ability to lead and influence cross-functional teams and drive security controls. Be a security evangelist with the technology teams.

Preferred:

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.

Additional Information

Achieve well-being with:

• Hybrid work opportunities

• 401 (k) with employer match

• Medical, dental, and vision with HSA and FSA

• Sick time off

• Access to wellness support through Employee Assistance Program, Talkspace, and fitness discounts

• Pet care discounts for your furry family members

• Financial support in times of hardship with our Achieve Care Fund

• A safe place to connect with other employees through our six employee resource groups

Join Achieve, change the future.

At Achieve, we're changing millions of lives.
From the single parent trying to catch up on bills to the entrepreneur needing a loan for the next phase of growth, you'll get to be a part of their journey to a better financial future. We're proud to have over 3,000 employees. A career at Achieve is more than a job-it's a place where you can make a true impact, have a sense of belonging, establish a fulfilling career, and put your well-being first.

Attention Agencies & Search Firms: We do not accept unsolicited candidate resumes or profiles. Please do not reach out to anyone within Achieve to market your services or candidates. All inquiries should be directed to Talent Acquisition only. We reserve the right to hire any candidates sent unsolicited and will not pay any fees without a contract signed by Achieve's Talent Acquisition leader.

#LI-KM1

Company Description

Achieve is a leading digital personal finance company. We help everyday people move from struggling to thriving by providing innovative, personalized financial solutions. By leveraging proprietary data and analytics, our solutions are tailored for each step of our member's financial journey to include personal loans, home equity loans, debt consolidation, financial tools and education. Every day, we get to help our members move their finances forward with care, compassion, and empathetic touch. We put people first and treat them like humans, not account numbers.