Job Closed

This listing is no longer active.

Forward Financing logo
Forward Financing

A trusted source of fast, flexible funding for small businesses.

Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteMid LevelTeam 201-500Since 2012H1B No SponsorCompany SiteLinkedIn

Location

Canada

Posted

98 days ago

Salary

0

Seniority

Mid Level

Job Description

Security Engineer

Forward Financing

Forward Financing is a financial technology company based in Boston, Massachusetts with team members throughout the United States, Dominican Republic, and Canada. The company is on a mission to unlock the capital that fuels small businesses across America. Recognized as a Best Place to Work by Built In Boston and certified as a Great Place To Work®, Forward is investing in its employees, technology, and customer experience – with long-term success in mind every step of the way. As an Information Security Engineer, you'll play a vital role in architecting, implementing, and maintaining robust security systems to safeguard our organization's digital infrastructure. You'll design proactive security solutions, resolve complex vulnerabilities, and drive continuous improvement in our security posture. In This Role You Will: - Build and maintain security automation workflows, integrating detection, triage, and response across tools (CrowdStrike, SOAR, Slack, etc.) to reduce analyst response times. - Develop and maintain infrastructure-as-code (Terraform/Terragrunt) for security tooling and configurations. - Participate in incident response and on-call rotation for security events. - Instrument and measure security operations — track metrics like MTTA/MTTR and build dashboards to demonstrate program effectiveness and ROI. - Evaluate and integrate AI-augmented security tools and workflows to enhance detection and response capabilities. Role Requirements:(Even if you don’t check every box, but see yourself contributing, please apply.) - 3+ years of experience in a Security Engineer, Site Reliability Engineer, Software Engineer, DevOps Engineer or similar type role - Experience with infrastructure-as-code tools (Terraform, CloudFormation, or similar). - Familiarity with languages like Python, Go, TypeScript/Node.js, or similar. - Experience integrating and managing EDR/XDR platforms. - Comfort working in a small, fast-moving security team where you own problems end-to-end. Nice To Have: - Experience with browser-based security, SASE, or ZTNA solutions. - Experience with cloud security posture management (CSPM) tools. Total Rewards: Additionally, we offer a comprehensive total rewards package, including but not limited to: medical, dental, vision, commuter benefits, a flexible time-off policy, paid parental leave, 401k match for US employees, wellness reimbursement, volunteering days, annual professional development budget, and charitable donation match. Forward is proud to be a remote-first company, keeping workplace flexibility a top priority for our employees. As a business, we are focused on impact; we are more concerned with your contributions to the success of the company than where you get your work done. To help facilitate in-person collaboration, employees are welcome to work from one of our premiere office locations. When we aren’t collaborating to drive business and support our customers, we’re finding virtual and in-person ways to get to know our colleagues, celebrate team wins, and have fun together! Forward Financing Core Values: - Drive the Mission - We believe in financial opportunity for underserved small businesses. We say “yes” when others say “no.” - Keep It Real - We value direct communication, candid feedback, and authenticity. We are an open book. - Act with Kindness - We create an environment where caring is cool and helping is the norm. We do the right thing. - Shoot for Extraordinary - We are inspired by innovative thinking and continuous improvement. We never settle for yesterday’s best. About Us: Forward Financing is a fintech company based in Boston, Massachusetts with team members throughout the United States, Dominican Republic, and Canada. The company is on a mission to unlock the capital that fuels small businesses across America. Whether facing challenges accessing traditional financing or simply needing a convenient, flexible solution, Forward is committed to funding more of the millions of small businesses nationwide. By simplifying the requirements, streamlining the process, and using advanced proprietary technology, Forward is often able to deliver approvals within hours and funds that same day – giving more businesses the financial opportunity they need to thrive. Plus, with their dedicated teams and award-winning service, customers get personalized support when they need it most. Since 2012, Forward has expanded access to capital by providing over $4.5 billion in funding to more than 87,000 small businesses. The company is A+ rated by the Better Business Bureau with an Excellent / 4.6 stars rating on Trustpilot.com. Recognized as a Best Place to Work by Built In Boston and certified as a Great Place To Work®, Forward is dedicated to empowering both its team and the customers they serve, helping them succeed and thrive. US Equal Opportunity Employment Information Forward Financing is proud to be an equal opportunity employer, and is committed to fostering a fair and inclusive culture built on a foundation of high performance and exceptional customer experience. With a laser focus on employee impact, we’re able to reduce biases and ensure the right people are in the right jobs to contribute to our mission. The varied perspectives of our people fuel innovation and make us a stronger team. By embracing what makes each of us unique, we create a supportive environment where people feel valued, accepted, and empowered to thrive. California Employee Privacy Policy

Benefits

  • 401(K), 401(K) matching, Childcare benefits, Commuter benefits, Company equity, Company-sponsored outings, Company sponsored family events, Continuing education stipend, Customized development tracks, Dental insurance, Disability insurance, Volunteer in local community, Family medical leave, Fitness stipend, Flexible Spending Account (FSA), Flexible work schedule, Generous parental leave, Generous PTO, Company-sponsored happy hours, Health insurance, Job training & conferences, Open door policy, Life insurance, Charitable contribution matching, Paid volunteer time, Online course subscriptions available, Onsite gym, Open office floor plan, Paid holidays, Paid industry certifications, Paid sick days, Onsite office parking, Partners with nonprofits, Performance bonus, Promote from within, Lunch and learns, Remote work program, Free snacks and drinks, Team based strategic planning, OKR operational model, Tuition reimbursement, Unlimited vacation policy, Vision insurance, Wellness programs, Some meals provided, Mental health benefits, Home-office stipend for remote employees, Employee resource groups, Employee-led culture committees, Day off for your birthday, Quarterly engagement surveys, Hybrid work model, In-person all-hands meetings, President's club, Employee awards, Pay transparency, Abortion travel benefits, Mother's room, Personal development training, Virtual coaching services, Flexible time off, Floating holidays, Bereavement leave benefits

Related Categories

Related Job Pages

More Security Engineer Jobs

InternshipRemoteTeam 1,001-5,000Since 2017H1B No Sponsor

• Work on real security challenges in a large-scale digital media company • Build hands-on experience in security operations, AI security, cloud security, and security governance • Learn directly from experienced security professionals • Contribute to projects that impact the entire enterprise • Investigate real security alerts • Support incident response efforts under expert guidance • Participate in threat hunting activities across the organization • Gain exposure to multi-cloud environments (AWS, GCP, Azure)

Canada
Job Closed
OnePay logo

Security and Threat Operations Engineer

OnePay

The all-in-one financial platform trusted by millions of consumers to make money better.

Full TimeRemoteTeam 501-1,000H1B Sponsor

• Build and tune detections, alerts, and monitoring workflows across cloud, application, identity, and edge environments. • Review traffic patterns across APIs, authentication flows, and WAF telemetry to identify malicious activity, abuse patterns, and anomalous behavior. • Use AI responsibly as a force multiplier for triage, analysis, and workflow automation, while helping define guardrails for AI-enabled systems. • Help operate OnePay’s vulnerability management program by triaging, prioritizing, and driving remediation for findings from Wiz, vulnerability scanning, and related workflows. • Develop Python-based tooling and automation to improve investigations, enrichment, response, and operational scale. • Partner with Product Security to translate threat models, security reviews, and product risks into production detections and response playbooks. • Investigate security events end to end, including triage, scoping, containment support, and follow-through on remediation. • Support vulnerability management and operational security practices in ways that align with PCI and SOC 2 expectations. • Participate in proactive threat hunting, detection improvement, and a 24x7 security incident response on-call rotation.

United States
$140K - $190K / year
Job Closed
Runlayer logo

Member of Technical Staff – Security

Runlayer

The Simpler, Safer Way to Connect MCPs

Full TimeRemoteTeam 11-50H1B No Sponsor

• Build and improve Watch products: static and dynamic scanning for MCP servers, skills, plugins, and agent behavior detection on endpoints. • Develop shadow detection: identify unregistered MCP servers, skills, plugins, and agents running outside governance across the enterprise. • Own AppSec for the platform: penetration testing, vulnerability management, dependency scanning, and security hardening of the control plane. • Build automated version scanning: CI/CD-integrated security checks that run on each new MCP server version, skill update, or plugin release. • Extend detection coverage to CLI agents (Codex, OpenCode) and browser-based agents.

California + 1 moreAll locations: California | New York
Job Closed
Lilly logo

Security Architect

Lilly

Lilly is a global biotechnology and pharmaceuticals healthcare company. Founded by Colonel Eli Lilly in 1876, the company is based in Indianapolis, Indiana, and maintains a strong

At Lilly, we unite caring with discovery to make life better for people around the world. We are a global healthcare leader headquartered in Indianapolis, Indiana. Our employees around the world work to discover and bring life-changing medicines to those who need them, improve the understanding and management of disease, and give back to our communities through philanthropy and volunteerism. We give our best effort to our work, and we put people first. We’re looking for people who are determined to make life better for people around the world. What You'll Be Doing As a Security Architect, you will serve as a technical lead for security consulting engagements, threat modeling initiatives, and third-party security assessments. You will develop threat models, security architectures, and reference patterns — including for cloud and hybrid environments — while providing guidance on secure design principles. This role involves close collaboration across teams to integrate security into the development lifecycle and evaluate vendor security posture. You will also leverage AI-powered tools to enhance the efficiency and depth of security assessments. How You'll Succeed - Technical expertise: Deep domain knowledge across security engineering, threat modeling, cloud architectures, application security, and third-party risk management. Ability to use AI tooling to accelerate and improve security work. - Strategic thinking: Ability to develop reference architectures and integrate complex systems across on-premises and cloud environments, balancing security risk with business enablement. - Consultative approach: Provide expert security guidance to teams, stakeholders, and external vendors throughout assessment engagements, including evaluating and advising on the secure use of AI platforms. - Leadership: Lead technical initiatives and architecture reviews while mentoring junior security professionals. - Innovation: Actively promote cloud-native security patterns and the responsible adoption of AI technologies across teams. - Communication: Translate complex security concepts and technical risk findings into clear, business-friendly language for executive stakeholders and audiences with different technical backgrounds. Key Responsibilities - Develop and conduct threat modeling exercises across application, infrastructure, and cloud environments using established frameworks (MITRE ATT&CK, STRIDE, NIST 800-53, ISO 27001) - Create and maintain security architectures and design patterns, including cloud and hybrid reference architectures - Conduct security architecture reviews for internal initiatives, new technologies, and third-party vendors. - Perform third-party security assessments, including vendor questionnaire reviews, SOC 2 evaluations, and risk acceptance documentation - Leverage AI tools and technologies to streamline assessment workflows, analyze vendor documentation, identify risk patterns, and improve assessment quality and consistency - Provide security consulting services across the organization, enabling business objectives while clearly communicating risk - Develop and document security best practices, standards, and guidance — including responsible AI tool usage in security workflows - Lead security briefings and workshops; mentor junior security engineers and drive adoption of security standards Your Basic Qualifications - High Schol Diploma/GED - Expertise in threat modeling and security architecture across cloud (AWS, Azure, GCP), SaaS, and hybrid environments - Experience in security consulting, risk assessment, and third‑party cyber risk management, including SOC 2 and HIPAA evaluations - 7+ years of experience in cybersecurity or a related field - Qualified applicants must be authorized to work in the United States on a full-time basis. Lilly will not provide support for or sponsor work authorization or visas for this role now or in the future, including but not limited to F-1 CPT, F-1 OPT, F-1 STEM OPT, J-1, H-1B, TN, O-1, E-3, H-1B1, or L-1. What You Should Bring - Bachelor's degree in Computer Science, Information Security, or related field preferred - Experience with or willingness to adopt AI tools for document analysis, risk summarization, and pattern identification; understanding of AI/ML security considerations - Knowledge of Zero Trust principles and major security frameworks (MITRE ATT&CK, STRIDE, NIST 800-53, ISO 27001) - Excellence in technical documentation and executive-level risk communication - Experience mentoring, collaborating across teams, and engaging stakeholders at varying levels of technical expertise - Project management and strategic planning skills - Commitment to continuous learning and professional development, including staying current on developments relevant to cybersecurity Lilly is dedicated to helping individuals with disabilities to actively engage in the workforce, ensuring equal opportunities when vying for positions. If you require accommodation to submit a resume for a position at Lilly, please complete the accommodation request form (https://careers.lilly.com/us/en/workplace-accommodation) for further assistance. Please note this is for individuals to request an accommodation as part of the application process and any other correspondence will not receive a response. Lilly is proud to be an EEO Employer and does not discriminate on the basis of age, race, color, religion, gender identity, sex, gender expression, sexual orientation, genetic information, ancestry, national origin, protected veteran status, disability, or any other legally protected status. Our employee resource groups (ERGs) offer strong support networks for their members and are open to all employees. Our current groups include: Africa, Middle East, Central Asia Network, Black Employees at Lilly, Chinese Culture Network, Japanese International Leadership Network (JILN), Lilly India Network, Organization of Latinx at Lilly (OLA), PRIDE (LGBTQ+ Allies), Veterans Leadership Network (VLN), Women’s Initiative for Leading at Lilly (WILL), enAble (for people with disabilities). Learn more about all of our groups. Actual compensation will depend on a candidate’s education, experience, skills, and geographic location. The anticipated wage for this position is $126,000 - $246,400 Full-time equivalent employees also will be eligible for a company bonus (depending, in part, on company and individual performance). In addition, Lilly offers a comprehensive benefit program to eligible employees, including eligibility to participate in a company-sponsored 401(k); pension; vacation benefits; eligibility for medical, dental, vision and prescription drug benefits; flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts); life insurance and death benefits; certain time off and leave of absence benefits; and well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities).Lilly reserves the right to amend, modify, or terminate its compensation and benefit programs in its sole discretion and Lilly’s compensation practices and guidelines will apply regarding the details of any promotion or transfer of Lilly employees. #WeAreLilly

United States
$126K - $246K / year
Job Closed