Cyber Security Engineer

What Is MyBambu?

MyBambu is a financial institution delivering the first all-in-one mobile digital banking solution targeting the Hispanic unbanked and underbanked population. The mission of MyBambu is to promote financial inclusion to the unbanked and underbanked by providing an array of financial solutions delivered via mobile devices. We give an overlooked audience a convenient, safe, and cost-effective way of managing their finances. MyBambu’s objective is to promote financial literacy and access to unbanked/underbanked individuals, who have previously been left behind. In 2020, we were honored to be recognized as FIS’s Impact Award winner for innovation in the next frontier of the Modern Banking Platform. We’ve fostered a company culture that empowers people to do the most defining work in their career offering an environment that’s made up of a passionate and goal-oriented team.

MyBambu participates in E-verify and will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new hire’s Form I-9 to confirm work authorization.  Find out more information: E-Verify Participation Poster or Right to Work Poster.

This position is a full-time, in-person position reporting to the President of Operations. As the Cyber Security Engineer, you will be responsible for safeguarding our digital infrastructure by designing, implementing, and maintaining robust security measures that safeguard our financial data and digital infrastructure. You will work closely with cross-functional teams to monitor network, cloud, and mobile environments, proactively identify threats, and ensure our systems meet stringent security standards.

Job Responsibilities:

• Design, implement, and manage firewalls, switches, and network security controls.
• Secure cloud environments (AWS, Azure, O365) including IAM, WAF, and security monitoring.
• Implement and manage MDM solutions (Intune, Jamf) for endpoint security and compliance.
• Configure and manage WAF and other cloud security protections.
• Work with DevOps/IT teams to integrate security best practices into CI/CD pipelines.
• Ensure compliance with PCI DSS 4.0, ISO 27001, SOC 2, and financial industry regulations.
• Work with auditors and regulatory bodies to demonstrate security controls and compliance.
• Conduct risk assessments and recommend security improvements.
• Develop and maintain security policies, procedures, and incident response plans.
• Monitor security alerts and investigate potential threats.
• Respond to security incidents and conduct root cause analysis.
• Implement security automation for log analysis, SIEM, and threat hunting.

Skill and Abilities:

• Deep knowledge of cybersecurity fundamentals, including network engineering and cloud security best practices.
• Proven experience with PCI compliance frameworks and financial service regulations.
• Familiarity with SOC II standards and the ability to implement and maintain required controls.
• Hands-on experience managing cloud security in AWS, Azure, and O365 environments.
• Proficient in network security tools and technologies (e.g., firewalls, VPN, IDS/IPS).
• Strong analytical skills to assess risks and determine optimal security strategies.
• Ability to troubleshoot and resolve complex security issues under pressure.
• Excellent verbal and written communication skills.
• Proven ability to work effectively in cross-functional teams and explain technical concepts to non-technical stakeholders.

Job Requirements:

• Bilingual – Spanish and English, preferred.
• Five (5 ) years of experience in cybersecurity engineering, security operations, or risk management.
• Expertise in firewall configuration, network security, and cloud security (AWS, Azure, O365).
• Strong knowledge of PCI DSS 4.0, ISO 27001, SOC 2, and financial industry regulations.
• Experience with WAF solutions and network security monitoring.
• Experience with MDM platforms such as Intune and Jamf.
• Understanding of regulatory bodies and compliance frameworks in financial services.
• Strong analytical and problem-solving skills, with the ability to assess and mitigate cyber risks.
• Certifications like CISSP, CISM, CCSP, CEH, AWS Security Specialty, or Azure Security Engineer are a plus.

Physical Requirements: 

• Prolonged periods sitting at a desk and working on a computer.
• Must be able to lift up to 15 pounds at times.

Bambu Benefits:

• Excellent medical coverage.
• Fifteen (15) days of Paid Time Off.
• Seven (7) days of Paid Holidays.
• Our small family corporate culture.