Senior Security Engineer at Credit Karma

| East Bay
Sorry, this job was removed at 10:40 p.m. (CST) on Tuesday, December 21, 2021
Find out who's hiring in San Francisco, CA.
See all Developer + Engineer jobs in San Francisco, CA
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Credit Karma is a mission-driven company, focused on championing financial progress for our more than 100 million members in the U.S., Canada and U.K.  While we're best known for pioneering free credit scores, our members turn to us for tips as they work on their  financial goals, including helping them monitor their credit, identity monitoring, searching for credit cards, shopping for loans (car, home and personal), and growing their savings* -- all for free. Credit Karma has grown significantly through the years: we've added more than 70 million members in the last five years alone and now have more than 1,100 employees across our offices in Oakland, Charlotte, Los Angeles and London. 

*Banking services provided by MVB Bank, Inc., Member FDIC

As an Application Security Engineer, you will conduct security reviews, and prototype, design and deliver security architecture across the organization. You will work closely with architects and engineering teams to guide the implementation of secure practices across different areas like cloud, API, applications and mobile devices. You will identify trends and risks across multiple platforms, and engage with senior leadership to provide action plans and strategy.

What You’ll Do: 

  • Provide security expertise for cloud, web and mobile projects, helping teams meet the enterprise and IT security policies, industry regulations, and best practices.
  • Architect company-wide programs that deploy security patterns and controls across applications and computing environments, in concert with business resiliency, privacy, and compliance frameworks.
  • Work closely with security and engineering teams to maintain a security architecture that provides security controls throughout all platforms to mitigate risk, and to meet business objectives and regulatory requirements.
  • Ensure the quality of our applications and products by driving them through the Secure Development Lifecycle (SDL) process.
  • Advocate, research, design, and build new tools and technologies to support our security patterns and standards.
  • Monitor, analyze our exposure to, and assess the impact of, emerging security threats, vulnerabilities and risks.

Minimum Requirements:

  • A B.S. or M.S  in Computer Science, a related technical major, or significant related experience.
  • 4+ years’ experience in the application security industry, solving security problems in large-scale systems.
  • Solid understanding of security design reviews, and threat-modeling exercises.
  • Expertise in verifying, measuring and remediating common security vulnerabilities, and demonstrated ability in communicating these concepts to your partners in engineering. From the OWASP Top Ten to more advanced concepts, you've seen it before, and can describe it with ease.
  • Familiarity with the responsibilities and workflow of software developers. The Application Security team works closely with engineering to meet both business needs and security requirements. You can speak their language, and sympathize with their challenges.
  • Facility with implementing and adhering to standards, e.g., PCI-DSS, ISO, NIST Cyber Security framework.

Preferred Qualifications:

  • Exposure to most of the following technologies: Google Cloud, iOS, IAM, Snyk, Android, CircleCI, Consul, Kubernetes, PKI, Checkmarx, OPA, React, GraphQL, Splunk, InfluxDB.
  • Experience defining security architecture patterns and standards in a large enterprise organization.
  • Knowledge of cryptography including algorithms, standards, and their practical applications such as x.509 certificates.
  • Experience performing threat modeling for Credit Karma applications to identify potential security issues.
  • Experience presenting technical content, preferably in a security context, to a large group and senior leadership. Presentations at security conferences are a plus!
  • You possess vision and an eagerness to challenge the status quo, balanced with a reasonable and helpful approach to effecting change, managing multiple work streams, and comfort with regular changes of context.

Equal Employment Opportunity:

Credit Karma is committed to a diverse and inclusive work environment. We believe that such an environment advances long-term professional growth, creates a robust business, and supports our mission of championing financial progress for everyone. We offer generous benefits and perks with a single eye to nourishing an inclusive environment that recognizes the contributions of all and fosters diversity by supporting our internal Employee Resource Groups. We’ve worked hard to build an intensely collaborative and creative environment, a diverse and inclusive employee culture, and the opportunity for professional growth. As part of the Credit Karma team, your voice will be heard, your contributions will matter, and your unique background and experiences will be celebrated.

Credit Karma is also proud to be an Equal Opportunity Employer. We welcome all candidates without regard to race, color, religion, age, marital status, sex (including pregnancy, childbirth, or related medical condition), sexual orientation, gender identity or gender expression, national origin, veteran or military status, disability (physical or mental), genetic information, or any other protected characteristic. We prohibit discrimination of any kind and operate in compliance with applicable fair chance or similar ordinances.

COVID-19 update: Protecting the health of our employees and the candidates interested in a career at Credit Karma is our top priority. We appreciate your understanding and being open and flexible with any changes related to our interviewing process. Moving forward, all new hires are required to be fully vaccinated against COVID-19 and to share proof of that status prior to their first day of onboarding. If you are unable to be vaccinated for medical or religious reasons, we will explore potential reasonable accommodations; however, Credit Karma may not be able to grant such accommodations in all cases.

Credit Karma is strongly committed to protecting personal data. Please take a look below to review our privacy policies:

  • GDPR Privacy Policy
  • California Consumer Privacy Act (CCPA)
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PythonLanguages
    • RLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • Objective-CLanguages
    • TypescriptLanguages
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • Backbone.jsFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • KubernetesFrameworks
    • KafkaFrameworks
    • GraphQLFrameworks
    • HiveDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • Google AnalyticsAnalytics
    • FigmaDesign

What are Credit Karma Perks + Benefits

Credit Karma Benefits Overview

Health and Wellness
Our employees’ physical and mental well-being is important to us. We offer competitive benefits to make sure employees are taken care of inside and outside of the office. We offer medical, dental, vision, mental health and life insurance coverage. We also offer a 401(k) matching plan, paid time off, holidays (including your birthday), and generous paid bonding for all new parents within the first year of birth. In addition to gym subsidy, we offer yoga, meditation sessions and a spa to relax. And because the belief is that all employees should share in the success of Credit Karma, every one receives stock options.

Professional Development
Credit Karma is committed to learning and development programs for employees, both professionally and personally. We offer a generous annual stipend for continued education, training workshops, conference opportunities, etc. We also have mentorship, coaching for developing leaders and a people manager onboarding program. Our Internal mobility program is designed to help our employees take ownership of their career and make progress within Credit Karma.

Perks
The fun and relaxed office environment means a casual dress code, ping-pong breaks, arcade games, and regular company events, such as happy hours, field day, and sporting events. Employees never go hungry with a fully stocked kitchen, filled with breakfast foods, drinks, and endless snacks. There is even an onsite barista.

Culture
Volunteer in local community
Friends outside of work
Intracompany committees
Open door policy
Team owned deliverables
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Team workouts
Mental Health Benefits
Retirement & Stock Options Benefits
401(K) Matching
Company Equity
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Child Care Benefits
Generous Parental Leave
Family Medical Leave
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Game Room
Stocked Kitchen
Happy Hours
Recreational Clubs
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Time allotted for learning
More Jobs at Credit Karma77 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR + Recruiting
Internships
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Developer
new
Charlotte, NC
Marketing
new
East Bay
Finance
new
Charlotte, NC
Project Mgmt
new
Charlotte, NC
HR + Recruiting
new
Charlotte, NC
Marketing
new
Charlotte, NC
Product
new
Charlotte, NC
Marketing
new
Charlotte, NC
Design + UX
new
Charlotte, NC
Developer
new
Charlotte, NC
Product
new
Charlotte, NC
HR + Recruiting
new
Charlotte, NC
Finance
new
East Bay
Marketing
new
Charlotte, NC
Product
new
East Bay
Marketing
new
Charlotte, NC
Product
new
Culver City
Data + Analytics
new
Charlotte, NC
Marketing
new
East Bay
Marketing
new
Charlotte, NC
Operations
new
Charlotte, NC
Developer
new
East Bay
Developer
new
Charlotte, NC
Data + Analytics
new
East Bay
Data + Analytics
new
Charlotte, NC
Project Mgmt
new
Charlotte, NC
HR + Recruiting
new
Charlotte, NC
Design + UX
new
Culver City
Finance
new
Charlotte, NC
Design + UX
new
East Bay
Data + Analytics
new
East Bay
Developer
new
Charlotte, NC
HR + Recruiting
new
Charlotte, NC
Developer
new
Charlotte, NC
Operations
new
Charlotte, NC
Data + Analytics
new
Culver City
Product
new
Charlotte, NC
Data + Analytics
new
Charlotte, NC
Developer
new
Charlotte, NC
Developer
new
Charlotte, NC
Data + Analytics
new
East Bay
Developer
new
East Bay
Developer
new
Charlotte, NC
Developer
new
Charlotte, NC
Data + Analytics
new
Charlotte, NC
Data + Analytics
new
Charlotte, NC
Design + UX
new
Charlotte, NC
Design + UX
new
Charlotte, NC
Finance
new
Charlotte, NC
Content
new
Charlotte, NC
Data + Analytics
new
Charlotte, NC
Project Mgmt
new
Charlotte, NC
Internships
new
Charlotte, NC
Internships
new
Charlotte, NC
Design + UX
new
Charlotte, NC
Project Mgmt
new
Charlotte, NC
Developer
new
Charlotte, NC
Product
new
East Bay
Design + UX
new
Charlotte, NC
Developer
new
Charlotte, NC
Operations
new
Charlotte, NC
Developer
new
Charlotte, NC
Data + Analytics
new
Charlotte, NC
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Credit Karma's full profileSee more Credit Karma jobs