Security Engineer II

United States
Engineering – Security /
Full Time Exempt /
Remote
Apply for this job
Dave is looking for talented Security Engineers to play an instrumental role in securing products that help millions of people improve their relationship with money. We're seeking passionate security engineers interested in protecting our customers and systems. If you're excited to join a tight-knit collaborative team with a mission of helping others, we'd love to hear from you.

As a Level 2 Security Engineer, you will play a vital role in safeguarding our organization's technology infrastructure and data. You will be instrumental in identifying, analyzing, and mitigating security threats, ensuring the confidentiality, integrity, and availability of our systems and information. This role requires a passion for cybersecurity, a commitment to staying current with the latest security trends and technologies, and the ability to implement practical, scalable security solutions.

What you'll do:

    • Assist in the development and implementation of security controls for our products, including mobile (iOS and Android), web applications, and their supporting web services, under the guidance of senior security engineers.
    • Contribute to fixing common security vulnerabilities within our applications.
    • Build tools and processes for automating security controls and monitoring at scale.
    • Support the integration of security tools into CI/CD pipelines to automate security checks and ensure a secure development process.
    • Handle security incidents, including evidence collection, analysis, and reporting.
    • Assist in developing and maintaining internal incident response guidelines.
    • Prepare and present security reports and findings to various stakeholders.
    • Participate in an on-call rotation to address critical security incidents and uphold security measures around the clock.

What you'll need:

    • Bachelor's degree in a field that requires logical and creative thinking; STEM majors preferred.
    • 2+ years of experience as a security engineer, with proficiency in reading and writing code, particularly in Python, TypeScript, JavaScript, or similar languages, to effectively build.
    • Familiarity with application security testing tools (e.g., IAST, SAST).
    • Knowledge of security monitoring tools and techniques (e.g., SIEM, log analysis, threat hunting).
    • Strong communication, analytical, and problem-solving skills, with the ability to collaborate effectively within a team.
    • Familiarity with Git, GitHub, and public cloud infrastructure, preferably Google Cloud Platform.
    • Knowledge of security best practices, standards, and compliance requirements (e.g., OWASP, PCI-DSS, SOX).

Nice to have:

    • Hands-on experience in penetration testing, incident response, and bug bounty programs.
    • Experience with Google Cloud Platform (GCP) and Infrastructure as Code (IaC) tools such as Terraform.
    • Experience in threat modeling, security architecture review, and secure coding practices.
    • Familiarity with common mobile application vulnerabilities and secure mobile development practices.
    • Relevant industry certifications such as CEH, OSCP, GIAC, or vendor-specific certifications.
$112,000 - $178,000 a year
Dave has established a nationally applicable pay program that recognizes that regardless of where Daves choose to live, their time and effort is of equal value to the company. As such we utilize base salary ranges that are intended to be competitive in all markets and do not differentiate pay based on employee work location.
Apply for this job

Dave Inc. Home Page

Jobs powered by Lever logo