Senior Security Engineer

| Greater LA Area
At Aspiration, we created the category of sustainable, socially responsible retail consumer finance. We offer unique financial products to let people save, spend, and invest their money in ways that make them more financially secure and align with their personal values. Unlike other financial institutions, Aspiration is committed to building a relationship with our customers based on trust and aligning the customer’s success with our own. Aspiration has raised over $115M in funding to date, and is growing quickly.
The Senior Security Engineer is responsible for assisting with the implementation and maintenance of the corporate information security program to ensure the confidentiality, integrity, and availability of Aspiration data assets. The program includes: enforce policies, standards, guidelines, and controls to manage and prevent risk to Aspiration. As a senior staff member, this individual will work directly with the business units and outside vendors to review and evaluate security controls to ensure they meet Aspiration’s standards.

What You'll Do

  • Conduct risk assessments against systems and processes to ensure appropriate controls are in place and recommend/implement controls to remediate risk findings.
  • Participate in developing, testing, and improving the incident response program.
  • In coordination with the Information Technology department, ensure new employees are properly onboarded and exiting employees are promptly offboarded.
  • Document information security policies, procedures, and tests.
  • Administer and maintain security systems and tools, including software updates, configuration, and control reviews.
  • Review output from security systems and tools (reports and log data) to ensure normal operations and detection of anomalous behavior.
  • Collaborate with DevOps to ensure cloud security for promoting DevSecOps.
  • Work with vendors and third parties to understand their processes, technology and/or applications to appropriate security controls are in place to protect Aspiration and its data. Review vendors’ SOC reports.
  • Conduct security reviews against new processes, technology, and applications.
  • Research, evaluate, and select security tools to improve the security of Aspiration.
  • Conduct regular vulnerability assessments and lead projects for penetration tests.
  • Safeguard sensitive information by working with business units and vendors/third parties to determine and enforce appropriate access levels.
  • Identify regulatory and legal requirements that may affect data and application security policy, standards, and procedures.
  • Monitor changes in the security industry including new vulnerabilities, viruses, intrusions, fraud scams, and best practices and tools available for system/network protection. Train users and promote security awareness to ensure system security.
  • Exercise appropriate levels of discretion and confidentiality when addressing security-related incidents.
  • Assist in internal and external audit requests. 
  • Ensures Aspiration data is securely protected from internal and external, intentional and unintentional access, alteration and deletion.

What You'll Bring

  • Bachelor's degree in computer science, information security, engineering, or related technology field.
  • 5+ years of relevant experience in IT and Information Security.
  • Relevant security, privacy, or auditing certifications such as: CISSP, CCSP, CISA, CRISC, CIPP, CIPT, or PCI ISA or QSA.
  • Knowledge and understanding of a “cloud-first” architecture and a hybrid or on-premise architectures.
  • Knowledge and understanding of modern security tools for: log management, SIEM, SSO, IDM, IAM, NGAV, MDM, DLP, CASB, etc.
  • Knowledge and understanding of security vulnerabilities and hacking techniques.
  • Knowledge and understanding of DevOps security.
  • Knowledge of regulations and policies pertaining to information security.
  • Ability to document security controls and creating data flow diagrams.

Bonus Points

  • Previous fintech, banking, credit union, investment firm, or mortgage industry knowledge.
  • Knowledge of regulatory and legal requirements (GLBA, California SB 1386, AB 375, etc.)
  • Knowledge of cyber security banking, registered investment advisor, and broker-dealer compliance requirements (FFIEC, OCC, FINRA)Knowledge of PCI requirements.
  • Knowledge of standards including SSAE 18, ISO 27000, NIST, CIS, etc.

What You'll Get

  • Making an impact for a company with a mission of transforming the financial industry and the lives of millions
  • Competitive salary and equity incentives
  • Robust healthcare plans, 401K and unlimited vacation time
  • Dog-friendly office in beautiful Marina del Rey with an in-office gym
  • Diverse & inclusive culture

Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • GolangLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • ReactLibraries
    • PostgreSQLDatabases
    • RedshiftDatabases
    • Google AnalyticsAnalytics
    • LookerAnalytics
    • SegmentAnalytics
    • AmplitudeAnalytics
    • AdjustAnalytics
    • LucidchartsAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • After EffectsDesign
    • ProcreateDesign
    • ConfluenceManagement
    • JIRAManagement
    • TrelloManagement
    • ClickupManagement
    • SmarshManagement
    • ZenDeskCRM
    • MailChimpEmail
    • IntercomEmail
    • MandrillEmail
    • SendGridEmail
    • IterableEmail
    • Impact RadiusLead Gen

Location

We're located in Marina Del Rey, steps from bars, shops, and restaurants. On Fridays there's a local farmer's market right on our block!

An Insider's view of Aspiration

What’s the vibe like in the office?

Aspiration has some of the smartest, most hard-working, and fun people I have ever worked with. The vibe is very fast-paced and exciting, and management is good at adjusting to different people’s work styles, allowing employees to work remotely and even bring their pups in on Fridays.

Jordan

Data Analyst

What's the biggest problem your team is solving?

We use cutting edge technology to solve both dated financial problems and problems that impact our environment. Aspiration is unique in that we are a financial firm focused on environmentalism while putting people before profits. For every solution we have to a banking problem, we're challenged with having an equal or greater impact on the world.

Chloe

Product Manager

How does the company support your career growth?

I joined Aspiration as an Account Manager. Now, I manage an affiliate program of 80+ accounts and support our direct media partners. In 1 year, I've grown beyond my own expectations. From leading a large product implementation to planning off-site activation events, my need of not being in a complacent position has been met from the moment I joined

Andre

Affiliate Manager

What are Aspiration Perks + Benefits

Culture
Volunteer in local community
Aspiration has participated in several volunteering activities, including Heal the Bay beach clean ups, LA Tech Gives Back beautification projects, and card making for Children's Hospital of LA.
Partners with Nonprofits
Aspiration partners with Accion, a nonprofit specializing in microloans. We give 10% of every dollar we earn to low-income Americans, funding up to $5,000 per person to jumpstart new businesses.
Friends outside of work
Eat lunch together
Intracompany committees
Aspiration has a communication committee that works to organize all-hands meetings, lunch and learns, and team-building events.
Daily stand up
Open door policy
Team owned deliverables
Open office floor plan
Diversity
Documented equal pay policy
Highly diverse management team
Unconscious bias training
Diversity manifesto
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Aspiration employees can contribute up to $2600 annually to their FSA.
Disability Insurance
Disability insurance covers 60% of annual salary up to the maximum plan limit for up to 13 weeks.
Dental Benefits
Our dental plan covers 90% of premiums.
Vision Benefits
Aspiration covers 90% of premiums for vision coverage.
Health Insurance Benefits
Aspiration's health insurance policy covers 90% of medical premiums.
Life Insurance
Aspiration pays for basic life insurance coverage valued at $20,000 Basic Life & AD&D.
Onsite Gym
Retirement & Stock Options Benefits
401(K)
Company Equity
Stock options are available to fulltime employees
Performance Bonus
Child Care & Parental Leave Benefits
Flexible Work Schedule
Aspiration provides employees with a flexible work schedule that includes Flexible start and end times.
Remote Work Program
Family Medical Leave
Employees who have been with the company for 12 months are eligible for 12 weeks of family medical leave.
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Holidays
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Acme Co. hosts company outings Quarterly.
Parking
We offer employees Free on-site garage parking.
Pet Friendly
Aspiration's pet policy is Occasional bring your pet to work days.
Relocation Assistance
Our relocation assistance plan offers a maximum reimbursement of $5000.
Professional Development Benefits
Lunch and learns
Aspiration hosts lunch and learn meetings on occasion.
Promote from within
More Jobs at Aspiration3 open jobs
All Jobs
Data + Analytics
Dev + Engineer
Operations
Developer
new
Los Angeles
Operations
new
Los Angeles
Data + Analytics
new
Los Angeles