Lead Security Engineer

🕒 May 20

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Benepass

WebsiteLinkedInAll Job Openings

11 - 50 employees

👥 HR Tech

💸 Finance

🧘 Wellness

💰 $12M Series A on 2021-09

HR Tech • Finance • Wellness

Benepass is a flexible benefits platform designed for people-first companies, offering a range of personalized and adaptable employee benefits solutions. With a focus on meeting the diverse needs of today’s global workforce, Benepass allows companies to provide customized benefits packages that include health savings accounts, flexible spending accounts, wellness programs, professional development, and more. The platform emphasizes ease of use with features like card-first technology, automated enrollment, and real-time engagement metrics. Benepass supports companies in designing competitive benefits programs that enhance employee satisfaction and retention while staying aligned with corporate DEI and wellness values.

📋 Description

• Build, operationalize, and scale the security engineering practices that protect the benefits platform • Work across application security, cloud security, security architecture, supply chain security, detection engineering, and vulnerability management • Partner deeply with the teams building web and mobile applications, backend services, system integrations, card and banking workflows, infrastructure as code, and data platforms • Turn risk reduction into scalable guardrails, automated controls, and clear engineering guidance • Help define secure AI tooling usage, LLM and code-assistant governance, and data protection practices for AI-enabled development workflows • Balance ideal security outcomes with engineering velocity and business priorities

🎯 Requirements

• 7+ years in security engineering, application security, cloud security, product security, platform security, or closely related technical security roles • Proven ability to lead broad security engineering initiatives as a senior IC • Strong working knowledge of secure SDLC practices, secure design review, threat modeling, API security, code scanning, SAST, CI/CD security integrations, security testing, defect management, and vulnerability remediation workflows • Hands-on experience with AWS-native security patterns and services • Ability to guide secure system builds involving access control, encryption standards, key and certificate management, vaulting, secrets management, and managed HSM/KMS-backed cryptographic services • Experience hardening build, test, and deployment workflows through dependency scanning, SBOMs, artifact signing, secret scanning, CI/CD guardrails • Ability to use frameworks such as NIST CSF 2.0 and OWASP SAMM pragmatically

🏖️ Benefits

• 95% coverage of medical, dental, and vision • $250 WFH setup (one time) • $500/year Learning & Development Benefit • $150/month cell phone + internet • $100/month Wellness • $100/month Co-working and Commuter Benefit • Flexible PTO