[Remote] Lead Security Engineer

Remote Full-time
Note: The job is a remote job and is open to candidates in USA. Benepass is a fintech company focused on making benefits easy for organizations by allowing them to tailor offerings to their workforce's unique needs. As a Lead Security Engineer, you will build and scale security practices to protect sensitive data while collaborating with various teams to implement effective security measures.ResponsibilitiesBuild, operationalize, and scale the security engineering practices that protect our benefits platform and the sensitive employee, benefits, and financial data it processesWork across application security, cloud security, security architecture, supply chain security, detection engineering, and vulnerability managementPartner deeply with the teams building our web and mobile applications, backend services, system integrations, card and banking workflows, infrastructure as code, and data platforms to turn risk reduction into scalable guardrails, automated controls, and clear engineering guidanceSet direction and mature security capabilitiesIntroduce strong standards, ship incremental improvements, and ensure secure paths for engineers without creating a centralized approval queueSkills7+ years in security engineering, application security, cloud security, product security, platform security, or closely related technical security roles, ideally in a high-growth SaaS or technology companyProven ability to lead broad security engineering initiatives as a senior IC, influence cross-functional technical decisions, and move work from strategy to production implementationStrong working knowledge of secure SDLC practices, secure design review, threat modeling, API security, code scanning, SAST, CI/CD security integrations, security testing, defect management, and vulnerability remediation workflowsHands-on experience with AWS-native security patterns and services, including IAM, KMS, CloudTrail, GuardDuty, Security Hub, VPC segmentation, WAF, Secrets Manager, S3/RDS encryption, infrastructure-as-code security, container orchestration security, and cloud posture managementAbility to guide secure system builds involving access control, encryption standards, key and certificate management, vaulting, secrets management, and managed HSM/KMS-backed cryptographic servicesExperience hardening build, test, and deployment workflows through dependency scanning, SBOMs, artifact signing, secret scanning, CI/CD guardrails, least-privilege automation, and container security controlsAbility to use frameworks such as NIST CSF 2.0 and OWASP SAMM pragmatically to assess current state, sequence improvements, define metrics, and mature security practices iterativelyClear communicator who can partner with engineering, product, platform, compliance, and business teams; write practical guidance; teach developers; and create durable security champions programsStrong judgment in prioritizing technical risk reduction, managing ambiguity, documenting decisions, and building lightweight processes that scale with the companyExperience securing fintech, benefits, payroll, payments, or other regulated SaaS platforms that process PII, financial data, HRIS data, transaction data, or customer administrative workflowsFamiliarity with SOC 2, HITRUST, PCI, or similar compliance and audit programs, with the ability to support evidence and control design while staying focused on technical risk reductionExperience with AWS serverless and managed-service architectures, including API Gateway, Cognito, Lambda, ECS/EKS, RDS, S3, Transfer Family, CloudFront, and event-driven security monitoring patternsBackground with mobile application security for iOS and Android, including secure token handling, platform keychain/keystore patterns, OTA update risk, and mobile API abuse preventionExperience with detection-as-code, SIEM/SOAR workflows, security data pipelines, incident response automation, or measurable improvements to alert quality and response readinessHands-on experience with Terraform, CloudFormation, CDK, policy-as-code, CSPM/CWPP tools, container image scanning, runtime security, or Kubernetes/ECS hardeningExperience designing developer education, secure coding workshops, security champions programs, or other scalable practices that improve security outcomes without slowing deliveryExperience defining practical governance for LLMs, AI coding assistants, prompt/data handling, model/tool approval, and sensitive data protection in AI-enabled software development workflowsBenefits95% coverage of medical, dental, and vision$250 WFH setup (one time)$500/year Learning & Development Benefit$150/month cell phone + internet$100/month Wellness$100/month Co-working and Commuter BenefitWe offer several team onsites a yearFlexible PTOCompany OverviewBenepass is a benefits administration platform that helps companies manage and distribute employee perks and benefits. It was founded in 2019, and is headquartered in New York, New York, USA, with a workforce of 51-200 employees. Its website is http://www.getbenepass.com.

Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Field Service Engineer 2 - WKND Shift

Remote

Senior Site Reliability Engineer

Remote

Account Executive, Business Sales - Baton Rouge, LA

Remote

[Remote-Position] Need Youth Dance & Performing Arts Instructor

Remote

**Part-Time Customer Service Gate Agent – Aviation Ground Handling & Passenger Services Professional**

Remote

Chaplain - Canonsburg Hospital - Part Time

Remote

Experienced Finance Rotational Partner – Part-Time Remote Opportunity with Starbucks, Driving Financial Innovation and Growth

Remote

Part-Time Customer Service Representative (Outbound Focus)

Remote

Experienced Full Stack Customer Service Representative – Remote Career Opportunities with Comprehensive Training and Growth Prospects

Remote

100% Remote - Level 3 SOC Analyst (3rd Shift)

Remote
← Back