Revolutionize Consumer Finance Security as a Senior Security Engineer
At January, we're not just building a company; we're rebuilding consumer finance. We're on a mission to make credit fair, accessible, and personal by personalizing interactions and optimizing decisions across every stage of the consumer credit journey.
We're looking for a Senior Security Engineer to lead the charge in setting a new gold standard for security in an industry ripe for disruption. This is a unique opportunity to join us at a pivotal moment. We've earned the trust of leading financial institutions, and now we need your expertise to build the security foundation that will scale that trust to tens of millions of consumers.
Imagine architecting dual trust – securing both seamless consumer experiences and robust bank-grade enterprise systems. You'll tackle unique technical challenges like privacy-preserving data systems, multi-jurisdiction compliance automation, and AI-enabled decisioning. You'll directly influence company direction, shaping security strategy and culture from the ground up. Here, your security work isn't just overhead; it's the competitive moat that unlocks enterprise partnerships and fuels market expansion.
Your Mission:
Transform Security into a Competitive Advantage: Build security into product capabilities that are a differentiator for banks, not just a compliance checkbox. Unlock Tier 1 partnerships and enterprise deals that competitors can't touch.
Champion Security-by-Design: Partner with product and engineering to identify and mitigate critical risks early in the development lifecycle. Focus on application security (frontend, Flask services, database), embed security into discovery and design, and establish secure-by-default patterns in development workflows. Accelerate product development with early engagement and clear guidance, not late-stage roadblocks.
Architect Bank-Grade Data Protection: Design and implement data classification, encryption, and access control systems that meet stringent regulatory requirements. Develop automated controls to ensure sensitive data remains within authorized boundaries.
Cultivate a Security-First Engineering Culture: Influence engineering teams to embrace security-first thinking without compromising velocity. Lead incident response with clarity and urgency, ensuring that January emerges stronger from every security event through rigorous post-mortems.
Scale Compliance with Automation: Maintain SOC 2, PCI-DSS, and other financial compliance standards through automated systems. Build infrastructure that auto-generates audit evidence and eliminates compliance bottlenecks.
What You'll Bring:
6+ years of experience in cybersecurity, with 3+ years focused on application/data security or security engineering.
Hands-on experience building application-level security controls in cloud environments (AWS, Terraform, Snowflake).
A proven track record of implementing security measures that accelerate velocity, not hinder it.
Deep technical knowledge of secure coding practices (Python, JavaScript), infrastructure-as-code, and CI/CD security.
Excellent communication and partnership skills, with the ability to influence and make rapid decisions in the face of uncertainty.
The ability to translate complex technical trade-offs into clear business language.
Proficiency in scripting and programming languages such as Python, JavaScript, and Bash (strongly preferred).
Experience with compliance frameworks (SOC 2, PCI-DSS, bank security standards) is a plus.