Security Engineer

Posted 10 Days Ago
Easy Apply
Be an Early Applicant
Chicago, IL
Hybrid
95K-130K
Junior
Cloud • Fintech • Payments • Software
Our digital wealth management lending software democratizes access to flexible liquidity solutions.
The Role
The Security Engineer will focus on application security, vulnerability management, and risk reduction in cloud environments while collaborating with various teams.
Summary Generated by Built In
About Us
Founded in 2014, we offer the industry’s first and only cloud-based, fully-customizable, end-to-end software solution to automate securities-based lending from origination through the life of the loan. By combining thought leadership in suitability and risk management with industry-leading education and the latest technology, Supernova enables advisors to deliver holistic, goals-based advice and to help their clients achieve financial wellness. We partner with the industry’s largest banks, most prominent insurance companies and leading online brokerages to democratize access to securities-based lending and better the entire financial ecosystem.

Why Join Supernova?
At Supernova Technology, we believe that the best results come from a team that is passionate, driven, and supported in all aspects of their professional lives. Here, you’ll work alongside talented and innovative individuals who are committed to driving the future of securities-based lending technology. We foster a culture of collaboration, continuous learning, and growth, where each person’s contributions make a real impact.

Job Overview
We are seeking a highly motivated and detail-oriented Security Engineer to help secure our securities-backed lending SaaS platform. The successful candidate will focus primarily on application security, secure SDLC, and application vulnerability management, while also assisting with the execution and implementation of broader information security initiatives. You’ll partner with engineering, SRE/DevOps, and business teams to embed security into our build and delivery processes, support risk reduction across cloud and endpoint surfaces, and drive measurable remediation outcomes in a regulated financial-services environment.

RESPONSIBILITIES

  • Perform hands-on web/API penetration tests, validate scanner findings, and provide clear PoCs, impact statements, and prioritized remediation aligned with OWASP.
  • Integrate and tune SAST, DAST, SCA, container, and secret-detection tools in CI/CD; define pass/fail gates and PR checklists.
  • Conduct lightweight threat modeling and security design reviews for new features such as authentication, session management, and secrets handling.
  • Manage the full application vulnerability lifecycle (discover → prioritize → fix → retest → close) with SLAs and metrics.
  • Assist in hardening AWS and ECS/Docker workloads (IAM roles, network segmentation, image policies, logging/monitoring) and support patch hygiene across cloud, container, and endpoints.
  • Participate in incident response, including exploit reproduction, log analysis, impact assessment, and lessons learned.
  • Provide evidence for audits (ISO 27001, SOC 2, NIST SSDF), maintain policies and developer guidance, and support vendor/security evaluations.
  • Translate findings into developer-ready tickets, publish secure-coding guidance, and partner with engineering to streamline secure delivery.
  • Prototype automation, explore AI/LLM-assisted workflows to improve triage and code review, and share improvements across teams.
  • Contribute to organization-wide cybersecurity training and awareness efforts.

QUALIFICATIONS

  • Bachelor's degree in security engineering, information assurance, or related field.
  • 2–3 years of experience in security or software engineering (internships, labs, or open-source count), preferably in regulated industries.
  • Strong knowledge of web/API security issues (auth, session management, injections, SSRF, CSRF, access control) and common cloud/web misconfigurations.
  • Experience with SDLC security tools (SAST/DAST/SCA/secret detection/container scanning), CI/CD workflows, and Git.
  • Scripting or coding skills (Python or JavaScript/TypeScript) and ability to read backend code.
  • Familiarity with AWS security basics (IAM least privilege, KMS, logging/monitoring, security groups) and Docker/ECS runtime considerations.
  • Clear communication skills with the ability to translate risk into actionable remediation.
  • Experience using AI/LLM-assisted tools for triage, documentation, or code review preferred. 
  • Exposure to WAF/CDN tuning, API protection, and risk-based remediation SLAs/metrics preferred. 
  • Familiarity with frameworks like OWASP ASVS/SAMM, NIST SSDF, ISO 27001, SOC 2, PCI DSS preferred. 
  • Relevant security certifications preferred.

Our Employee Benefits
At Supernova Technology, we provide a robust benefits package to support the health and well-being of our employees. Our offerings include:

Medical, Dental, and Vision Insurance: Multiple plans with coverage for employees and dependents.
HSA and FSA Accounts: Tax-advantaged accounts for health and dependent care expenses.
Life and Disability Insurance: Employer-paid basic coverage with options for additional voluntary coverage.
Compensation: $95,000 - $130,000
Retirement Savings: 401(k) plan with employer contributions.
Employee Assistance Program (EAP): Confidential support services, including free therapy sessions.
Paid Time Off: Flexible PTO policies.
Additional Perks: Commuter benefits, pet insurance, continuing education assistance, and more.

Note: Actual salary at the time of hire may vary and may be above or below the range based on various factors, including but not limited to, the candidate's relevant qualifications, skills and experience, and the location where this position may be filled.

Our Core Values
Our core values drive everything we do. At Supernova, we...

Form, execute, and communicate new ideas that add value to our employees and customers
Strive through obstacles and failures
Follow-through on promises or commitments to others, accept responsibility, and answer for actions & decisions
Listen to, understand, and support our employees and customers
Act with speed, positive attitude, and flexibility
Exceed expectations and surpass ourselves every day; we embrace a sense of pride and never stop growing

Join us and make an impact while growing your career at Supernova.

Top Skills

AWS
Ci/Cd
Dast
Docker
JavaScript
Python
Sast
Sca
Typescript

What the Team is Saying

Daisy Yang
Jenny Sun
Austin Mead
Jaramee
Kyle
Jay
Tejaswi
Michael
Emma
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Chicago , IL
118 Employees
Year Founded: 2014

What We Do

Supernova is the technology leader in securities-based lending ("SBL") solutions that connect and empower the entire financial ecosystem. We offer the world’s first and only cloud-based, fully-customizable, end-to-end software solution to automate securities-based lending from origination through the life of the loan.

Why Work With Us

At Supernova, we're all about helping investors to achieve financial wellness. And that starts with cultivating an awesome company culture where everyone enjoys working hard and celebrating...together. We envision a world where all people have the highest probability for accomplishing their goals with the least amount of risk.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Supernova Technology Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Employees report to the office at least 4 days a week on which ever days make most sense for them.

Typical time on-site: 4 days a week
HQChicago, IL
Toronto, ON
Learn more

Similar Jobs

Supernova Technology Logo Supernova Technology

Junior Software Engineer

Cloud • Fintech • Payments • Software
Easy Apply
Hybrid
2 Locations
80K-100K

Supernova Technology Logo Supernova Technology

Senior Vice President, Business Development

Cloud • Fintech • Payments • Software
Easy Apply
Hybrid
Chicago, IL, USA
130K-150K

Supernova Technology Logo Supernova Technology

Operations Associate

Cloud • Fintech • Payments • Software
Easy Apply
Hybrid
Chicago, IL, USA
60K-80K

Supernova Technology Logo Supernova Technology

Senior Site Reliability Engineer

Cloud • Fintech • Payments • Software
Easy Apply
Hybrid
Chicago, IL, USA
130K-170K

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account