Senior IT Security Engineer

Alloy is where you belong!

Alloy helps solve the identity risk problem for companies that offer financial products by enabling them to outpace fraud and confidently serve more people around the world. Over 600 of the world’s largest financial institutions and fintechs turn to Alloy to take control of fraud, credit, and compliance risk, and grow with the clearest picture of their customers.

Through our values: Be Bold, Get Scrappy, Collaborate, and Celebrate Our Differences, we are creating a workplace where you can grow, thrive, and belong. See how we’ve been continuously recognized and named one of Inc. Magazine’s Best Workplaces, Forbes America’s Best Startup Employers, Best Fintech to Work for by American Banker, year after year.

Check out our investors and read more about us here.

About the team

This role is a part of the Security Operations team at Alloy, which is a dynamic team responsible for managing and improving the company's IT and corporate security infrastructure by implementing robust security protocols, ensuring proper data governance, maintaining reliable IT systems, and providing the appropriate level of access to tools and data for authorized users. 

The team is also responsible for supporting the business continuity of the organization as it pertains to the Alloy HQ office and network, hardware and equipment, software and SaaS solutions.

What you'll be doing

Security is the lens by which we try to look through when solving problems, from managing the security of endpoints (EDR) to protecting the company’s data (DLP) to ensuring secure e-communication, in particular via email and instant messaging on Slack. An ideal candidate will have a strong background in security operations, incident response, and a drive for staying ahead of emerging threats.

Responsibilities may include but are not limited to:

• End-user support & on-call rotation 
  • Desktop and browser based application support
  • Hardware troubleshooting
  • Access provisioning
  • Improving the support experience both for the end-users and the team internally
• Endpoint Security & Mobile Device Management: 
  • Ensure the integrity and security of endpoints with patch management, application updates, and use of malware detection tools, such as Crowdstrike 
  • Participate in security incident response and make improvements to the process
  • Integrate security tools with SIEM to centralize monitoring by collaborating with other Infrastructure & Security teams 
• Physical / office & network security 
  • Asset management to maintain full and organized control over all Alloy-purchased devices and equipment
  • Maintenance of the primary and backup network stacks at the HQ office
• SaaS Tools & Access Management: 
  • Implement SSO or other forms of managed authentication over the use of username and passwords
  • Automate provisioning and deprovisioning of access via role or attribute based access control
  • Practice Principle of Least Privilege 
  • Streamline and implement processes for SaaS management across the org
• Email Security: 
  • Assist with email security measures to mitigate risk and protect sensitive information
  • Monitor email traffic for suspicious activities, phishing attempts, and malware-infected attachments

Who we’re looking for

Qualifications:

• Bachelor's degree in Information Security, Computer Science, or related field
• 5+ years of experience working in a fast-paced, technically driven IT or security operations teams 
• Experience with deploying and managing EDR / other security solutions, such as Crowdstrike, Sophos, Defender, etc.
• Experience working with both Mac and Windows machines, preferably with experience using Jamf and Microsoft Endpoint Manager / Intune
• Familiarity with IDPs, such as Okta, OneLogin, etc.
• Certifications such as CompTIA Network+, Security+ a plus
• Familiarity with security frameworks such as NIST a plus
• Willingness to come into the office 3 days a week
• Experience with mentoring individuals and being an approachable team member

We're a lean team, so your impact will be felt immediately, and opportunities will grow as the company scales up. If this all sounds like a good fit for you, why not join us?

At Alloy, we strive to attract and retain talent with a total rewards program that is competitive with other organizations of our size and stage. We are committed to ensuring each new team member has what they need to be successful in their role with a balanced range of compensation, equity, perks, and benefits. We actively share our philosophy with employees, with the goal of fostering openness and clarity. Finally, we work to administer our philosophy and drive consistency in order to promote equity and monitor the fairness of outcomes.

This position has a minimum base salary of $117,000 and a midpoint base salary of $140,000. The base pay may vary depending on job-related knowledge, skills, and experience. In addition to a competitive base salary, this position is also eligible for equity awards in the form of stock options (ISOs).

Benefits and Perks 

• Unlimited PTO and flexible work policy
• Employee stock options
• Medical, dental, vision plans with HSA (monthly employer contribution) and FSA options
• 401k with 100% match up to 4% of annual employee compensation
• Eligible new parents receive 16 weeks of paid parental leave
• Home office stipend for new employees
• Annual Learning & Development annual stipend
• Well-being benefits include access to ClassPass, OneMedical, and Spring Health
• Hybrid work environment: our employees local to NYC are expected to work Tuesdays and Thursdays from our HQ in Union Square, Manhattan. Members of the Security Operations team are expected to work onsite one additional weekday. Tasty lunches catered from a variety of local restaurants and frequent employee-organized cultural events contribute to our positive office energy. 

How to Apply

Apply right here! You've found the application!

Alloy is proud to be an equal-opportunity workplace and employer. We’re committed to equal opportunity regardless of race, color, ancestry, religion, gender, gender identity, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, disability, or veteran status. We are committed to an inclusive interview experience and provide reasonable accommodations to applicants with visible and invisible disabilities. We encourage applicants to share needed accommodations with their recruiter.