Senior Security Engineer

Sr. Security Engineer

GreenSky is looking for a seasoned Senior Security Engineer to lead and mature enterprise security capabilities across cloud and hybrid environments. The ideal candidate will have a strong background in security engineering, excellent problem-solving skills, and the ability to work collaboratively with cross-functional teams. This role goes beyond operational execution, driving architecture decisions, influencing secure design patterns, and mentoring engineers to embed security into every layer of our technology.

Duties & Responsibilities

• This engineer operates as a recognized authority in the field, applying deep technical expertise and broad experience to guide initiatives and, when needed, take the lead on complex projects.
• Provide engineering expertise to advance detection, response, vulnerability management and threat intel capabilities.
• Build automation capabilities in the cloud and security tools to gain efficiencies.
• Implement and oversee various security technologies, including Web Application Firewalls (WAF), Static/Dynamic/Interactive Application Security Testing, penetration testing tooling, and other threat detection systems.
• Leverage cloud native, open source and commercial tools to mature operational capabilities and drive automation.
• Build detections and dashboards as needed in the SIEM and assistant in technical investigations when incidents occur.
• Collaborate with product managers, designers, and other engineers to advance security by designing and delivering secure solutions.
• Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.
• Identify gaps in current capabilities and drive efforts to close the gaps including research, proof-of-concept, selection, and implementation on technology solutions.
• Stay informed about current security threats, organizational requirements, industry trends, vulnerabilities, and mitigation strategies to reduce attack surface.

Required Skills/Qualifications

• 5+ years experience as a T-Shaped Engineer with knowledge of Cloud platforms including AWS and Azure.
• Experience in working with cloud native security tools and commercial tools including Splunk, MS Defender, Rapid7, Mimecast, Netskope, Google Secops.
• Ability to code and script (python, PowerShell, JavaScript etc.) to automate and drive efficiencies in security operations.
• Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines.
• Knowledge of operating system configuration (Windows, Unix, Linux) and networking (DNS, DHCP, routing protocols).
• Ability to analyze event and incident logs and work with SOC and IR teams to assess security events related to malware, vulnerabilities, exploits and kill chain methodology.
• Capable of collaborating with internal and external stakeholders to prioritize efforts and work independently towards resolution.

GreenSky is an equal opportunity employer and will not discriminate against any employee or applicant on the basis of age, color, disability, gender, national origin, race, religion, sexual orientation, veteran status, or any classification protected by federal, state, or local law.