Loancrate

Senior Security Engineer

United States Remote March 2, 2026

Loancrate is a remote fintech company that builds AI-native tooling to automate mortgage workflows. We're looking for a Senior Security Engineer to lead and drive our security posture, build security tooling and automation, and maintain a secure SDLC.

Requirements

  • Lead and drive Loancrate’s security posture across application security, cloud security, identity, and compliance
  • Perform regular threat modeling, vulnerability assessments, and penetration testing
  • Build and maintain security tooling and automation: SAST/DAST, dependency scanning, container scanning, SBOM management, and secret detection integrated into CI/CD
  • Harden our AWS environment: IAM, VPC boundaries, secrets management (AWS Secrets Manager), audit logging, GuardDuty, Security Hub, KMS key management, and DDoS protection
  • Own our SOC 2 Type II program - design practical controls, automate evidence collection where possible, manage the auditor relationship, and drive continuous improvement
  • Lead or coordinate incident response for security events - runbooks, postmortems, and clear communication to customers and leadership when needed
  • Establish and maintain a secure SDLC - lightweight design reviews, threat modeling in planning, and developer enablement (training, docs, examples) that scales
  • Maintain a risk register - tracking identified threats, ownership, and remediation status so nothing falls through the cracks
  • Partner with Operations on endpoint and device security: laptop hardening, MDM policy, hardware key rollout, and offboarding access revocation
  • Manage third-party and vendor security risk, including due diligence for new integrations and annual reviews of existing vendors
  • Own identity and access infrastructure: SSO, MFA enforcement (including hardware key policies), SCIM provisioning, and access reviews
  • Contribute to security documentation, internal runbooks, and team education - you make the secure path the easy path

Benefits

  • Generous Paid Time Off
  • 401k Matching
  • Retirement Plan
  • Relocation Assistance
  • Four Day Work Week
  • Generous Parental Leave
  • Tuition Reimbursement

Originally posted on Himalayas

Apply on company site

How well do you match this role?

Check My Resume