Remote Information Security Engineer

Description:

• Prepared is seeking an Information Security Engineer to establish their Information Security function.
• The role involves building and managing security programs to safeguard customer information, protect internal systems, and ensure compliance as the company scales.
• The engineer will partner with platform engineers and product teams to integrate security into every stage of development.
• Key responsibilities include leading compliance and risk management, managing SOC2 compliance, handling customer security questionnaires, and developing a risk management framework.
• The engineer will assess vulnerabilities identified via SAST/DAST tools, work with engineering teams on mitigation, and drive security best practices.
• Responsibilities also include implementing automated security scans, coordinating penetration tests, and ensuring security best practices across AWS, GitHub, and CI/CD pipelines.
• The engineer will partner with external auditors and compliance vendors to maintain certifications and improve security postures.

Requirements:

• Candidates must have 6+ years of experience in InfoSec, AppSec, or Security Engineering with a focus on compliance, risk management, and vulnerability remediation.
• Hands-on experience with SOC2 compliance, security audits, and governance tools such as Vanta, SecureFrame, and Drata is required.
• A deep understanding of SAST and DAST security tools and the ability to triage vulnerabilities is essential.
• Candidates should have a strong grasp of cloud security best practices, particularly with AWS and GitHub security events.
• The ability to collaborate cross-functionally, educate engineers on security, and establish security processes from scratch is necessary.
• A proactive, automation-first mindset is important, with a focus on streamlining security workflows and reducing manual overhead.
• Experience in heavily regulated industries such as FinTech, HealthTech, or GovTech is a bonus.

Benefits:

• The position offers a remote-first culture, allowing for flexible work arrangements.
• A competitive salary range of $200,000 - $220,000 per year, along with company equity, is provided.
• Employees are eligible for a 401k plan and comprehensive medical, dental, and vision benefits.
• A Flexible Spending Account (FSA) is available for employees.
• Free membership to One Medical is included as a benefit.
• The company offers flexible paid time off plus 12 U.S. holidays.
• Employees receive 12 weeks of paid parental leave for both birthing and non-birthing parents.
• A WeWork membership is provided for all employees.
• Annual company offsite events are part of the benefits package.