Security Architect

Our mission is to make higher education accessible and affordable for everyone. We empower students with financial support and supercharge their ability to pay down their debt, so they can get on the right financial track, fast.

We build tools that help people feel in control of their financial future, including:

• Private student loans - low rates, people-first service, and flexible payments.
• Student loan refinancing - break free from high-interest rates or monthly payments.
• Scholarships - access to thousands of scholarships to help students pay less.

Earnies are committed to helping students live their best lives, free from the stress of student debt. If you’re as passionate as we are about our mission, read more below, and let’s build something great together! 

The Security Architect position will report to the Director of Security.

As the Security Architect, you will:

• Design and implement security solutions that address organizational needs and mitigate risks across applications, networks, and systems.
• Develop threat models and security standards, recommend security controls, and integrate security measures into system, infrastructure, and application designs.
• Develop and deliver secure coding training, provide guidance on application security best practices, and encourage adherence to secure coding standards.
• Define and enforce network access control policies, including firewalls, ACLs, and segmentation.
• Ensure timely remediation of vulnerabilities and security audit trail production in server infrastructure and workstation endpoints.
• Develop a robust Identity and Access Management (IAM) strategy by defining and implementing access management controls such as RBAC, SSO, IAM, FIdM, CASB, CIEM.

About You: 

• Must have 10+ years of experience in a security-related field, providing a blend of architectural leadership and hands-on experience as a security architect.
• 5+ years of experience working with AWS environment and DevSecOps.
• 5+ years application security experience with either functional or imperative languages.
• Experience with security policy frameworks such as NIST, CIS, or FFEIC.
• Ability to perform security-focused code reviews.
• Comfortable with typical threat hunting / incident response processes.
• Experience with containers, microservices, and the risks associated with these systems.
• Understanding of both human and non-human identity, authentication and authorization.
• Willingness to travel to the Oakland office monthly to collaborate with other Earnies.

Even Better:

• Professional security certifications (e.g., CISSP, OSCP, CISM).
• Worked in an environment subject to SOX compliance.
• Proficient in NodeJS, Python, and/or Go.
• Experience with infrastructure automation tools such as Terraform and Ansible.
• Software development experience with either functional or imperative languages.

Where:

• This role will be based in the San Francisco Bay Area.
• While you’ll enjoy the flexibility of remote work, we also love to see our Earnies face-to-face! We ask you to join us at our Oakland office for 3 consecutive days a month for team collaboration and some fun. It's a chance to connect, share ideas, and maybe even grab some coffee together!

#LI-KB1

A little about our pay philosophy: We take pride in compensating our employees fairly and equitably. We are showcasing a range of your potential base salary. The successful candidate’s starting pay will also be determined based on job-related qualifications, internal compensation, and budget. This range may be modified in the future.

Pay Range $230,000—$261,000 USD

Earnest believes in enabling our employees to live their best lives. We offer a variety of perks and competitive benefits, including: 

• Health, Dental, & Vision benefits plus savings plans
• Mac computers + work-from-home stipend to set up your home office
• Monthly internet and phone reimbursement
• Employee Stock Purchase Plan
• Restricted Stock Units (RSUs)
• 401(k) plan to help you save for retirement plus a company match
• Robust tuition reimbursement program
• $1,000 travel perk on each Earnie-versary to anywhere in the world 
• Competitive days of annual PTO
• Competitive parental leave

What makes an “Earnie” culture: 

• Drivers – Drivers are satisfied by making things happen, not coming along for the ride. They feel a strong sense of ownership for their projects and teams and demand high standards from themselves and others.
• Humility – Humble team players check their egos and consider the team’s needs above their own. They are self-aware of their strengths and opportunities for improvement.
• Growth Mindset – People with a growth mindset approach challenges and failures as learning opportunities. They seek feedback to improve, give feedback to others, and genuinely want to perform well. 

At Earnest, we are committed to building an environment where our employees feel included, valued, and heard. Our belief is that a strong commitment to diversity, inclusion, equity, and belonging enables us to move forward with our mission. We are dedicated to adding new perspectives to the team and encourage anyone to apply if your experience is close to what we are looking for.  

Earnest provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, veteran status, disability or genetics. Qualified applicants with criminal histories will be considered for the position in a manner consistent with the Fair Chance Ordinance.