Achieve is a leading digital personal finance company. We help everyday people move from struggling to thriving by providing innovative, personalized financial solutions. By leveraging proprietary data and analytics, our solutions are tailored for each step of our member's financial journey to include personal loans, home equity loans, debt consolidation, financial tools and education. Every day, we get to help our members move their finances forward with care, compassion, and empathetic touch. We put people first and treat them like humans, not account numbers.

We are seeking an experienced Information Principal Security Engineer/Security Architect with a broad skill set encompassing Security Architecture/engineering, identity services, cloud security, and application security. In this role, you will be responsible for designing, evangelizing, and maintaining robust security architecture solutions to protect our organization's information assets across various platforms and environments. You will collaborate with cross-functional teams to ensure the confidentiality, integrity, and availability of our systems and data.

Primary Responsibilities and Duties – This role will be focused on these key functions:

• Security Architecture Design: Develop and implement comprehensive security architectures that address security engineering, identity management, cloud infrastructure/security, and application security requirements. Design scalable and resilient security solutions that align with business goals and regulatory compliance.

• Develop security architecture strategies, standards, and guidelines focusing on application security, network/cloud security, and identity/access management.

• Security Engineering: Architect and assist with the implementation of security controls, tools, and technologies to protect information assets from internal and external threats. Collaborate with engineering teams to integrate security into the development and deployment processes.

• Identity and Access Management (IAM): Architecture of the future for Identity. Design and implement strategies for IAM solutions to manage user identities, access rights, and privileges across on-premises and cloud environments. Establish authentication, authorization, and access control mechanisms to enforce security policies effectively. Zero Trust architecture. 

• Cloud Security: Architect and implement security controls and best practices (SASE) for cloud infrastructure (e.g., AWS, Azure, Google Cloud) to protect data and workloads in cloud environments. Evaluate and recommend security services and technologies to enhance cloud security posture.

• Application Security: Collaborate with development teams to integrate security into the software development lifecycle (SDLC) and ensure secure coding practices are followed. Conduct security assessments, code reviews, and penetration testing to identify and remediate application security vulnerabilities.

• Security Standards and Compliance: Ensure compliance with industry standards, frameworks, and regulations related to information security (e.g., NIST, ISO/IEC 27001, PCI DSS). Develop and maintain security policies, standards, and procedures to align with regulatory requirements.

Qualifications and Education Requirements:

• Education: Relevant certifications (e.g., CISSP, CISM, CEH) etc.

• Experience: Minimum of 8 years of experience in information security architecture with expertise in security engineering, identity/authentication architecture, cloud security, and application security.

• Technical Skills:

  • Proficiency in designing security controls, security tools needs/assessments, and technologies services.

  • In-depth knowledge of IAM solutions and protocols (e.g., LDAP, SAML, OAuth, OpenID).

  • IAM architecture, SASE and Zero Trust designs

  • Expertise with cloud security principles, services, and controls in major cloud platforms (e.g., AWS, Azure, GCP).

  • Expertise in application security concepts, tools, and techniques (e.g., secure coding practices, static and dynamic application security testing).

• Analytical Skills: Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop effective solutions.

• Communication Skills: Excellent written and verbal communication skills with the ability to communicate technical concepts to non-technical stakeholders.

• Leadership: Proven ability to lead and influence cross-functional teams and drive security controls. Be a security evangelist with the technology teams.

Preferred:

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field. 

Achieve well-being with:

• Hybrid work opportunities
• 401 (k) with employer match
• Medical, dental, and vision with HSA and FSA
• Sick time off
• Access to wellness support through Employee Assistance Program, Talkspace, and fitness discounts
• Pet care discounts for your furry family members
• Financial support in times of hardship with our Achieve Care Fund
• A safe place to connect with other employees through our six employee resource groups

Join Achieve, change the future.

At Achieve, we’re changing millions of lives.
From the single parent trying to catch up on bills to the entrepreneur needing a loan for the next phase of growth, you’ll get to be a part of their journey to a better financial future. We’re proud to have over 3,000 employees in mostly hybrid and 100% remote roles across the United States with hubs in Arizona, California, and Texas. We are strategically growing our teams with more remote, work-from-home opportunities every day to better serve our members. A career at Achieve is more than a job—it’s a place where you can make a true impact, have a sense of belonging, establish a fulfilling career, and put your well-being first.

Attention Agencies & Search Firms: We do not accept unsolicited candidate resumes or profiles. Please do not reach out to anyone within Achieve to market your services or candidates. All inquiries should be directed to Talent Acquisition only. We reserve the right to hire any candidates sent unsolicited and will not pay any fees without a contract signed by Achieve’s Talent Acquisition leader.

#LI-KM1