Security Engineer

What we’re building and why we’re building it. 

Every month, millions of people use America’s Rewards App, earning rewards for buying brands they love – and a whole lot more. Whether shopping in the grocery aisle, grabbing a bite at the drive-through or playing a favorite mobile game, Fetch empowers consumers to live rewarded throughout their day. To date, we’ve delivered more than $1 billion in rewards and earned more than 5 million five-star reviews from happy users. 

It’s not just our users who believe in Fetch: with investments from SoftBank, Univision, and Hamilton Lane, and partnerships ranging from challenger brands to Fortune 500 companies, Fetch is reshaping how brands and consumers connect in the marketplace. When you work at Fetch, you play a vital role in a platform that drives brand loyalty and creates lifelong consumers with the power of Fetch points. User and partner success are at the heart of everything we do, and we extend that same commitment to our employees.

Ranked as one of America’s Best Startup Employers by Forbes for two years in a row, Fetch fosters a people-first culture rooted in trust, accountability, and innovation. We encourage our employees to challenge ideas, think bigger, and always bring the fun to Fetch.

Fetch is an equal employment opportunity employer.

Position Overview:

Fetch is seeking a versatile and motivated Security Engineer to join our Information Security team. This role requires a combination of broad generalist security skills alongside expertise in cloud security and secure coding practices. As a Security Engineer, you will play a crucial role in safeguarding Fetch’s infrastructure, applications, and data. You will collaborate with cross-functional teams, providing security guidance, conducting assessments, and helping to integrate security practices into all aspects of Fetch’s technology stack.

Responsibilities:

General Security Operations:

• Perform risk assessments and security evaluations for systems, applications, and third-party services.
• Support Governance, Risk, and Compliance (GRC) efforts, ensuring adherence to industry standards, regulatory requirements, and security best practices.
• Provide security consultation and advisement to internal teams regarding security controls and risk mitigation strategies.
• Oversee Identity and Access Management (IAM) processes, ensuring robust control of user access across systems.

Cloud Security (AWS Preferred):

• Design, implement, and maintain security controls in cloud environments, primarily AWS.
• Monitor cloud security posture and ensure compliance with best practices and organizational standards.
• Develop and manage security automation to streamline cloud security operations.
• Collaborate with DevOps and engineering teams to integrate security into the development lifecycle.

Secure Coding Practices:

• Promote and enforce secure coding practices across development teams.
• Conduct security code reviews and identify potential vulnerabilities in applications.
• Work closely with software engineers to remediate security findings and ensure secure application deployment.

Preferred Qualifications:

Education, Experience & Certifications:

• Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent work experience.
• 3+ years of experience in information security, with exposure to GRC, security assessments, and IAM.
• Strong understanding of cloud security principles and hands-on experience with AWS security services (IAM, VPC, CloudTrail, GuardDuty).
• Experience in secure coding practices, including familiarity with common vulnerabilities (OWASP Top 10) and remediation techniques.
• Proficiency in scripting and automation tools. Python, Golang, BASH
• Experience working with security tools such as SIEMs, vulnerability scanners, and endpoint protection.
• Relevant certifications such as AWS Certified Security – Specialty, CRISC, CISSP, or CISM are a plus.

Skills:

• Strong project management and organizational skills.
• Excellent written and verbal communication skills, with the ability to translate technical requirements into business-friendly language.
• Attention to detail and strong analytical skills.
• Ability to work collaboratively across departments, particularly with IT, Legal, and Business Operations teams.

At Fetch, we'll give you the tools to feel healthy, happy and secure through:

• Equity for everyone
• 401k Match: Dollar-for-dollar match up to 4%.
• Benefits for humans and pets: We offer comprehensive medical, dental and vision plans for everyone including your pets.
• Continuing Education: Fetch provides ten Thousand per year in education reimbursement.
• Employee Resource Groups: Take part in employee-led groups that are centered around fostering a diverse and inclusive workplace through events, dialogue and advocacy. The ERGs participate in our Inclusion Council with members of executive leadership.
• Paid Time Off: On top of our flexible PTO, Fetch observes 9 paid holidays, including Juneteenth and Indigenous People’s Day, as well as our year-end week-long break.
• Robust Leave Policies: 20 weeks of paid parental leave for primary caregivers, 14 weeks for secondary caregivers, and a flexible return to work schedule. $2000 baby bonus.
• Hybrid Work Environment: Collaborate with your team in one of our stunning offices in Madison, Birmingham, or Chicago. We’ll ensure you are equally equipped with the hardware and software you need to get your job done in the comfort of your home.