96 applicants

Company

Oportun · 6 hours ago

Senior Software Engineer

Remote - IN

Full-time

Remote

Senior Level

6+ years exp

Maximize your interview chances

Consumer LendingDebit Cards

H1B Sponsor Likely

Insider Connection @Oportun

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Conduct threat modeling, architecture review, security code review, security assessment, PCI testing, penetration testing (web application, native application, web services, cloud-based services, and infrastructure assessments).

Perform in-depth security review of new application features.

This includes identifying security vulnerabilities (OWASP top ten, common issues in NVD, RCE), reviewing code in Java/JavaScript/Golang, verifying security posture through pen-test (using manual/automated techniques with tools from third parties.

Perform cloud infrastructure security reviews; the primary focus will be on AWS and many of its common service components (EKS, Istio, S3, IAM, EC2, VPC).

Document security best practices, develop tools, libraries, scripts or customize existing tools to automate security vulnerability detection and remediation.

Identify gaps in existing cloud security architecture design/configuration and recommend changes (authentication, authorization, network segmentation, container configuration, bastion host setup).

Partner with engineering and operation teams to integrate mitigation controls into continuous integration, delivery and deployment processes.

Work on areas to develop security baseline for cloud, container, and application and integrate into the CI/CD pipeline.

Implement security architecture, methods, and controls required to meet security, compliance, and audit requirements (PCI, NIST controls, SOC2).

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Software Security ArchitectureThreat ModelingSecurity Code ReviewAWS SecurityPenetration TestingSDLCApplication Security Best PracticesCloud Infrastructure SecurityVPCIAMKMSJavaJavaScriptGolangSecurity ComplianceNIST ControlsSOC2

Required

Requires a Bachelor’s degree in Computer Science, Information Assurance/Security, Cyber Security, Computer Engineering, Electrical Engineering, a related field, or a foreign equivalent.

Must have 6 years of experience in the job offered or related occupation.

Must have 4 years of experience in software security architecture and design review; Threat Modeling; Security Code Review; SDLC; Best practices and mitigations for application security; AWS security; Penetration Testing; and in range of security technologies including VPC, IAM, KMS, etc. in AWS.

Company

Oportun

Glassdoor

3.3

Oportun is a digital banking platform that offers personal loans and financial services to people with limited credit history.

Founded in 2005

San Carlos, California, USA

1001-5000 employees

https://oportun.com

H1B Sponsorship

Oportun has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (19)

2022 (75)

2021 (63)

2020 (37)