Senior Staff Security Engineer, Detection & Response

Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families.

With Greenlight, parents can automate allowance, manage chores, set flexible spend controls, and invest for their family's future.

Kids and teens learn to earn, save, spend wisely, and invest.

At Greenlight, we believe every child should have the opportunity to become financially healthy and happy. It's no small task, and that's why we leap out of bed every morning to come to work.

Because creating a better, brighter future for the next generation depends on it.

As a Senior Staff Security Engineer, Detection and Response you will be responsible for the detection strategy, creation, tuning, validation, and correlation to ensure that we have effective detections in place against an ever-changing threat landscape.

This role is hands-on, carrying the responsibility of running the day-to-day security operations tasks including management of SIEM, automation platform, detection engineering platform and helping incident response.

Reporting into the Sr Director, Security Operations, the ideal candidate will maintain and enhance a consistent and reliable operational security environment and take a proactive security monitoring approach.

This role has high visibility and requires a technical individual who can partner with stakeholders and cross-functional teams (Engineering, Product, SRE, IT, Legal, etc) and has the ability to adapt in a dynamic security landscape.

Your day-to-day :

• Responsible for building and expanding detection capabilities across a variety of platforms
• Responsible for security event monitoring, management and response, workflows and tasks
• Improve security monitoring and operational tasks by developing measurement capabilities and metrics to track and communicate performance, coverage and risk
• Evaluate existing SIEM rules, filters, events and use cases and adapt them to meet the business requirements
• Mature security operations; drive integration of new log sources, tools and services
• Create, maintain and manage a library of automated playbooks for security tasks and workflows
• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
• Assist the Security Incident Response Program with related matters resulting from security investigations
• Participate in key security initiatives as the Subject Matter Expert to ensure alignment with strategies and roadmap
• Develop standard operating procedures and other appropriate documentation to enforce quality and consistency of services being delivered
• Support ongoing security compliance, audit, and certification programs (e.g., PCI, HIPAA, SOC2)

What you'll bring to the team :

• Bachelor's degree in Information Security, Computer Science, Computer Engineering, or equivalent work experience
• Minimum 10 years of consistent detection & response experience performing triage / incident response in enterprise SaaS environments
• Expert knowledge of the cyber threat landscape - able to articulate and incorporate into program understanding of major threat categories, motivations, and intent of adversaries against enterprise assets
• Experience in at least one programming language, Python, Go, C, C++ and with an automation platform
• Experienced in driving monitoring and automation in cloud environments, preferably including knowledge of AWS and Azure native capabilities
• Strong understanding of advanced persistent threats, attacker methodologies, attack lifecycle, cyber kill chain, and the MITRE framework
• Exceptional collaboration skills and communication skills, with the ability to engage with partners and stakeholders with a variety of perspectives and technical understanding
• Excellent analytical and problem-solving skills.
• Strong communication and collaboration skills.
• Ability to work independently and as part of a team.
• On-call availability is required.

Nice to have :

• GIAC security certification such as GCIA, GCIH, GREM, GPEN (or equivalent), multiple preferred
• SaaS / FinTech / anti-fraud experience a plus
• Automation first mindset

Work perks at Greenlight :

• Medical, dental, vision, and HSA match
• Paid life insurance, AD&D, and disability benefits
• Traditional 401k with company match and Roth IRA
• Unlimited PTO
• Paid company holidays and pop-up bonus holidays
• Wellness & professional development stipends
• Mental health resources
• 1 : 1 financial planners
• Fertility healthcare
• 100% paid parental and caregiving leave, plus cleaning service and meals during your leave
• Flexible WFH, both remote and in-office opportunities
• Fully stocked kitchen, catered lunches, and occasional in-office happy hours
• Employee resource groups

Our stance on salaries :

Greenlight provides a competitive compensation package with a market-based approach to pay and will vary depending on your location, experience and skill set.

The total compensation package for this position will also include a discretionary performance bonus, equity rewards, medical benefits, 401K match, and more.

Greenlight conducts continuous compensation evaluations across departments and geographies to ensure we are keeping our pay current and competitive.

The estimated base pay range for this position in (NY, CA, WA) : $180,000- 250,000

The estimated base pay range for this position in (CO) : $180,000- 240,000

Who we are :

It takes a special team to aim for a never-been-done-before mission like ours. We're looking for people who love working together because they know it makes us stronger, people who look to others and ask, "How can I help?

and then "How can we make this even better?" If you're ready to roll up your sleeves and help parents raise a financially smart generation, apply to join our team.

Greenlight is an equal opportunity employer and will not discriminate against any employee or applicant based on age, race, color, national origin, gender, gender identity or expression, sexual orientation, religion, physical or mental disability, medical condition (including pregnancy, childbirth, or a medical condition related to pregnancy or childbirth), genetic information, marital status, veteran status, or any other characteristic protected by federal, state or local law.