Infrastructure Engineer Security
Share
Job Location:
San Francisco, CA - USA
Monthly Salary:
$ 175 - 230
Posted on:
21 hours ago
Vacancies:
1 Vacancy
Department:
Job Summary
About Slash:
Slash is building the future of business banking one industry at a time. We believe businesses deserve financial infrastructure tailored to how they actually operate. Thats why were creating a new category of business banking. We combine the reliability of traditional banking (high yields competitive rewards and comprehensive security) with industry-specific features that make businesses more efficient more competitive and more profitable.
Started in 2021 Slash is one of the fastest growing fintechs in the world and we power over three billion dollars a year in business purchasing across numerous industries. Were backed by some of the best investors in the world including Menlo Ventures NEA Y Combinator Stanford University and the founders of Tinder and Plaid. Slash is headquartered in San Francisco and has a strong in-person culture.
About the Role:
Slash handles billions of dollars in business spend security isnt a feature its the foundation. Were looking for a Infrastructure Security Engineer to own security across our platform from cloud infrastructure to application code.
Youll be our first dedicated security hire which means youll have the autonomy to define how we think about and implement security at Slash. But this isnt a checkbox compliance role youll need to get your hands dirty. Youll be diving into our AWS infrastructure hardening Kubernetes configs reviewing code and shipping fixes yourself. We need someone who can identify a vulnerability and also patch it.
Youll work closely with our infrastructure and product engineering teams to bake security into everything we build while ensuring we stay ahead of the evolving threat landscape in fintech.
What Youll Be Doing:
- Own Slashs security posture end-to-end from threat modeling to incident response
- Harden our cloud infrastructure (AWS Kubernetes Terraform) with secure configurations and least-privilege access controls
- Implement and maintain security tooling: vulnerability scanning SIEM intrusion detection secrets management
- Lead security reviews of code architecture and third-party integrations
- Own and execute against PCI-DSS SOC 2 and other compliance frameworks not just audits but actually building the controls
- Build automated security guardrails into our CI/CD pipeline
- Monitor investigate and respond to security events; run incident response when needed
- Partner with engineering to fix vulnerabilities and ship secure code youll write patches not just tickets
- Define and iterate on our security roadmap as we scale
Were Looking for Someone Who:
- Has 4 years of experience in security engineering with hands-on infrastructure experience (AWS Kubernetes Linux)
- Can read code write code and isnt afraid to ship fixes in a production environment
- Has experience with security tooling: SIEM vulnerability scanners WAFs secrets management etc.
- Understands modern attack vectors and how to defend against them in cloud-native environments
- Has worked with compliance frameworks (PCI-DSS SOC 2) and knows how to implement controls that actually work
- Is comfortable with ambiguity youll be building the security function from the ground up
- Communicates well and can work cross-functionally with engineers who arent security experts
- Gets things done. Were a small team moving fast; we need someone who ships not someone who just writes reports.
Whats in it for You:
- Opportunity for high growth Series B Fintech start-up
- High autonomy ownership culture
- Comprehensive health benefits plan
- Working out of our new San Francisco office space
- Unlimited Vacation
Required Experience:
IC
Key Skills
- Jenkins
- Ruby
- Python
- Active Directory
- Cloud
- PowerShell
- Windows
- AWS
- Linux
- SAN
- Java
- Troubleshoot
- Backup
- Puppet
- hardware
About Company
Slash is a better business banking platform for entrepreneurs. High cashback, unlimited virtual cards, free wires, and more.
