Fraud Strategist - Login and Auth

Posted Yesterday
Easy Apply
Be an Early Applicant
8 Locations
Hybrid
115K-216K Annually
Senior level
Fintech • Mobile • Software • Financial Services
SoFi’s mission is to help people reach financial independence to realize their ambitions.
The Role
Design and own login and authentication fraud strategy across web and mobile: detect and mitigate ATO, credential stuffing, MFA bombing, SIM swap, OTP interception, and emulator/bot traffic; drive device forensics and behavioral signals; build step-up auth, account recovery, and high-risk decisioning; coordinate with InfoSec, IAM, Fraud Ops, and partners to translate threat intel into production policies and optimize approval/loss trade-offs.
Summary Generated by Built In

Employee Applicant Privacy Notice

Who we are:

Shape a brighter financial future with us.

Together with our members, we’re changing the way people think about and interact with personal finance.

We’re a next-generation financial services company and national bank using innovative, mobile-first technology to help our millions of members reach their goals. The industry is going through an unprecedented transformation, and we’re at the forefront. We’re proud to come to work every day knowing that what we do has a direct impact on people’s lives, with our core values guiding us every step of the way. Join us to invest in yourself, your career, and the financial world.

The Role:

We are searching for a Fraud Strategist, Login and Auth to own the perimeter of the SoFi platform. This is a sophisticated role at the intersection of adversarial threat intelligence, device forensics, and real-time decisioning. You will design fraud strategy across login, password reset, MFA, step-up, and high-risk session events, calibrated against the full spectrum of perimeter threats: account takeover (ATO), authorized scams, credential stuffing, MFA bombing, OTP interception, SIM swap, adversary-in-the-middle phishing, and emulator-driven bot traffic. The work requires fluency in device intelligence,, behavioral biometrics, network reputation, and the device-graph forensics needed to attribute risk to entities, not just sessions. You will work cross-functionally with EPD, IAM, Fraud Ops, InfoSec, and partner risk teams to translate signals into production policy that scales across Money, Invest, Crypto, Card, and Lending.

By joining SoFi, you'll become part of a forward-thinking company that is transforming financial services for the better. We offer the excitement of a rapidly growing startup with the stability of an industry leading leadership team.


What You'll Do: 

The Fraud Strategist, Login and Auth will help SoFi build a defensible authentication perimeter by:

  • Owning the end-to-end login risk strategy across web and mobile authentication surfaces: signal selection, rule construction, threshold tuning, champion/challenger lifecycle, and rule-level loss attribution.

  • Architecting perimeter-threat defense covering ATO, scam interception (authorized push payment, remote access, impostor, investment), MFA bombing, OTP interception, SIM swap, and adversary-in-the-middle phishing. Translate live campaign telemetry into production rule changes within hours

  • Driving device forensics at depth: device fingerprinting, emulator and VM detection, jailbreak and root signals, residential-proxy detection, and entity-level device-graph analysis to surface coordinated abuse hidden under individually clean sessions.

  • Designing step-up authentication, account recovery, and high-risk transaction decisioning that synthesizes device, behavioral, network, and credential-risk signals into a single decision, with explicit FPR budgets per surface.

  • Leading 3DS, CNP, and tokenization risk decisioning for card-not-present transactions, coordinating with issuer processing and network rules to optimize approval rate without ceding losses.

  • Partnering with InfoSec threat intel on credential-capture campaigns (phishing kits, SEO poisoning, ATO-as-a-service marketplaces) and translating intelligence into rule changes inside the live policy stack.


What You’ll Need:

  • BA/BS in Statistics, Information Systems, Mathematics, Data Science, or related fields, or equivalent work experience, and 5–8 years of work experience in Fraud Analytics, Authentication Risk, or Adversarial Security Engineering.

  • ATO and Scam Defense: Demonstrated track record reducing account takeover and scam losses across banking, card, and crypto surfaces. Comfort across the full kill chain: credential exposure, login compromise, in-session manipulation (remote access, screen share, social engineering), and money movement out.

  • Perimeter Threat Fluency: Operational understanding of credential stuffing, MFA bombing, OTP interception, SIM swap, adversary-in-the-middle phishing, residential-proxy abuse, and emulator-driven automation. You can recognize a campaign in flight from telemetry and respond at the policy layer.

  • Device Forensics: Hands-on experience with device fingerprinting, emulator and VM detection, jailbreak and root signals, behavioral biometrics, and entity-level device-graph analysis.

  • Authentication Stack Depth: Working knowledge of FIDO2/passkeys, OAuth/OIDC, 3DS protocol mechanics, tokenization, and the trade-offs between approval rate and chargeback exposure on CNP flows.

  • Balance Friction and Growth: Deep mastery of evaluating trade-offs between fraud mitigation and UX. You can articulate why a 50 bps lift in challenge rate is or is not worth the loss avoidance, with the data to back it.

  • Architect Scalable Data Systems: Expert-level SQL/Python skills used to build automated, high-volume data architectures and statistical models that serve as the foundation for global risk detection.

  • Drive Strategic Influence: A proactive operator who uses cross-functional persuasion to align EPD, IAM, InfoSec, and Fraud Ops on policy changes, and owns end-to-end execution in fluid environments.

  • Founders’ Mentality: You need to have a positive, proactive attitude, being able to identify problems, raise proposals, and be an advocate of your initiatives. Learn, iterate, and excel.

Compensation and Benefits
The base pay range for this role is listed below. Final base pay offer will be determined based on individual factors such as the candidate’s experience, skills, and location. 
 
To view all of our comprehensive and competitive benefits, visit our Benefits at SoFi page!
SoFi provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law.The Company hires the best qualified candidate for the job, without regard to protected characteristics.Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.New York applicants: Notice of Employee RightsSoFi is committed to an inclusive culture. As part of this commitment, SoFi offers reasonable accommodations to candidates with physical or mental disabilities. If you need accommodations to participate in the job application or interview process, please let your recruiter know or email [email protected].Due to insurance coverage issues, we are unable to accommodate remote work from Hawaii or Alaska at this time.
Internal Employees
If you are a current employee, do not apply here - please navigate to our Internal Job Board in Greenhouse to apply to our open roles.

Skills Required

  • BA/BS in Statistics, Information Systems, Mathematics, Data Science, or related field, or equivalent experience, plus 5-8 years in Fraud Analytics, Authentication Risk, or Adversarial Security Engineering
  • Demonstrated track record reducing account takeover and scam losses across banking, card, or crypto products
  • Operational knowledge of credential stuffing, MFA bombing, OTP interception, SIM swap, adversary-in-the-middle phishing, and emulator-driven automation
  • Hands-on experience with device forensics: device fingerprinting, emulator/VM detection, jailbreak/root signals, residential-proxy detection, and entity-level device-graph analysis
  • Working knowledge of authentication protocols and tooling: FIDO2/passkeys, OAuth/OIDC, 3DS protocol mechanics, and tokenization
  • Expert-level SQL and Python skills for building automated, high-volume data architectures and statistical models
  • Experience designing step-up authentication, account recovery, and high-risk transaction decisioning with explicit false-positive budgets
  • Ability to translate threat intelligence into production policy quickly and influence cross-functional stakeholders (EPD, IAM, InfoSec, Fraud Ops)
  • Experience with 3DS, card-not-present (CNP) risk decisioning, and optimizing approval rates versus chargeback exposure

What the Team is Saying

Kari
Niyati
Mike
Suban
Caroline
Mona
Donald
Kari
Yelena
Thomas

SoFi Compensation & Benefits Highlights

  • Healthcare Strength Comprehensive medical, dental, and vision plans are paired with mental-health coaching/therapy, EAP access, and wellness programs, with options noted for low or fully covered premiums. Company-paid life and disability insurance further strengthen core protection.
  • Parental & Family Support Up to 12 weeks fully paid parental leave is complemented by fertility/adoption resources, subsidized back-up child/elder care, caregiver leave, and pet insurance. A 2026 program also matches a new federal $1,000 seed for eligible children’s investment accounts.
  • Leave & Time Off Breadth Exempt employees have flexible/unlimited vacation alongside early-release “SoFi Fridays,” while non-exempt employees receive generous vacation and sick time. Paid volunteer time and role-appropriate leave options extend time-away coverage.

SoFi Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: San Francisco, CA
4,500 Employees
Year Founded: 2011

What We Do

SoFi wasn’t built to be a bank. Or a technology company. We were built for one mission: help people achieve financial independence so they can realize their ambitions. Redefining an entire industry isn’t easy work—and it’s not for the faint of heart. It takes a certain kind of team. People with diverse perspectives and expertise, united by a common sense of purpose. People willing to challenge assumptions but always do the right thing. People proving that innovation and responsibility don’t have to compete, but can come together to create something truly unconventional in the world. For the last eight years, we’ve been charting this new path forward. We call it The SoFi Way. At SoFi, we don’t just talk about culture: we live it. The SoFi Way is how we show up every day, how we make decisions, and how we build for our members, clients, and each other.

Why Work With Us

Together with our members, we’re changing the way people think about and interact with personal finance. We’re a next-generation Fintech company using innovative, mobile-first technology to help our members reach their goals. The industry is going through an unprecedented transformation, and we’re at the forefront.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery

SoFi Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

For the majority of our workforce who work on a hybrid schedule, the in-office requirement is a handful of days per month!

Typical time on-site: Flexible
Company Office Image
HQSan Francisco, CA
Company Office Image
Cottonwood Heights, UT
Company Office Image
Frisco, TX
Company Office Image
Helena, MT
Company Office Image
Jacksonville, FL
Company Office Image
New York, NY
Company Office Image
Seattle, WA
Learn more

Similar Jobs

SoFi Logo SoFi

Mortgage Coach

Fintech • Mobile • Software • Financial Services
Easy Apply
Hybrid
Frisco, TX, USA
4500 Employees
86K-162K Annually

SoFi Logo SoFi

Credit Bureau Business Manager

Fintech • Mobile • Software • Financial Services
Easy Apply
Remote or Hybrid
United States
4500 Employees
86K-162K Annually

SoFi Logo SoFi

Physical Security Manager

Fintech • Mobile • Software • Financial Services
Easy Apply
Remote or Hybrid
United States
4500 Employees
99K-186K Annually

SoFi Logo SoFi

Data Scientist

Fintech • Mobile • Software • Financial Services
Easy Apply
Hybrid
4 Locations
4500 Employees
173K-297K Annually

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account