[Remote] Senior Security Engineer
Note: The job is a remote job and is open to candidates in USA. Kikoff is a profitable, pre-IPO fintech company on a mission to empower everyone to achieve financial security. In this role, you will be responsible for securing cloud infrastructure, protecting customer data, and embedding security practices into engineering workflows.ResponsibilitiesDesign and maintain secure-by-default infrastructure patterns — IaC modules, container configurations, IAM policy baselines, and secrets management — so the secure path is the easy path for developersOwn our cloud security posture across AWS: continuous coverage, guardrails, drift detection, and remediation workflowsHarden our CI/CD pipelines and lead our software supply chain security strategy, including dependency scanning, artifact signing, and pipeline integrityOwn security across our data infrastructure — classification, access controls, encryption, and securing data flows across cloud storage and internal pipelinesBuild detection and audit logging capabilities that give us visibility at scalePartner with product and platform engineers to embed security into the development lifecycle through code review, threat modeling, and reusable secure patternsBuild internal tooling that scales security and our engineering teamsBe the person engineers come to for a clear, practical answersParticipate in incident response and postmortemsTrack and drive remediation of vulnerabilities across infrastructure and applicationsHelp shape our security program as an early, senior hire on the teamSkills5+ years in security engineering with meaningful experience in cloud-native environments (AWS strongly preferred)Hands-on with infrastructure-as-code security — you've written and reviewed Pulumi or Terraform and know where things go wrongStrong command of AWS security primitivesExperience securing containerized workloadsFluency in at least one scripting or programming language for automation (Python, Go, Ruby, or similar)Comfortable in a regulated environment — you've worked through PCI-DSS, SOC 2, or similarExperience with industry leading CNAPP or CSPM toolingSupply chain security depth: dependency confusion mitigations, artifact provenanceData security expertise — tokenization, column-level access controls, audit logging at scaleFintech or consumer financial services backgroundYou've built internal security tooling from scratch, not just deployed vendor productsCompany OverviewKikoff provides credit building services through secured cards and rent reporting. It was founded in 2019, and is headquartered in San Francisco, California, USA, with a workforce of 51-200 employees. Its website is https://kikoff.com/.Company H1B SponsorshipKikoff has a track record of offering H1B sponsorships, with 3 in 2026, 16 in 2025, 8 in 2024, 5 in 2023, 2 in 2022, 2 in 2020. Please note that this does not guarantee sponsorship for this specific role.