Staff Security Engineer

🕒 November 4, 2025

🏢🏡 San Francisco – Hybrid

💵 $235k - $280k / year

⏰ Full Time

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Parafin

WebsiteLinkedInAll Job Openings

51 - 200 employees

💳 Fintech

💸 Finance

🤝 B2B

Fintech • Finance • B2B

Parafin is a financial technology company that provides ready-to-launch financial products to help merchants grow. It partners with various platforms, from marketplaces to SaaS and payment processors, offering services such as capital and spend management through a powerful financial services infrastructure. Parafin handles underwriting, disbursement, and servicing, offering low-lift solutions with no-code implementation, eliminating credit or compliance risk for its partners.

📋 Description

• Lead efforts to improve Parafin’s overall security posture across infrastructure, applications, and data systems. • Develop and maintain frameworks for identity, access management, and least-privilege enforcement. • Establish and operate best-in-class security monitoring, alerting, and incident response processes. • Partner with product and infrastructure engineers to embed secure-by-default patterns in our systems and applications. • Define and enforce standards for vulnerability management, secrets handling, and dependency integrity. • Collaborate with compliance and risk teams to build and maintain controls aligned with frameworks such as SOC 2, PCI DSS, and other fintech regulations. • Support audits and security assessments by ensuring controls are properly implemented and evidenced. • Contribute to security awareness and training efforts across engineering teams. • Influence long-term strategy on secure architecture, detection, and response automation.

🎯 Requirements

• 8+ years of experience in security operations or application security, preferably in a cloud-native and regulated environment. • Strong understanding of AWS security, including IAM, VPC, and network segmentation best practices. • Experience with threat detection and response, vulnerability management, and incident response workflows. • Familiarity with Kubernetes and container security principles, including RBAC, admission controls, and runtime monitoring. • Knowledge of compliance frameworks (SOC 2, PCI DSS, ISO 27001) and how to operationalize them in engineering environments. • Strong communication and collaboration skills — comfortable working across engineering, product, and compliance teams.

🏖️ Benefits

• Equity grant • Medical, dental & vision insurance • Unlimited PTO • Work From Home flexibility • Commuter benefits • Free lunches • Paid parental leave • 401(k) • Employee assistance program