Staff Security Engineer

Trust is Check's number one asset. As a payroll company, we're entrusted with a remarkable amount of sensitive information, all in service of making paying people simple. We take that responsibility very seriously. 

For this role, we are seeking a Staff Security Engineer with an entrepreneurial mindset, deep technical experience, and high integrity. With the support of leadership, you will have an outsized impact on the security of our product and a growing organization.

In this role, you will:

• Lead improvements to our security posture across all areas of the organization – from building security automation into our platform, to working with our CTO to refine our security strategy
• Manage our security program: identify and introduce new controls to mitigate risk in our cloud, application and corporate security program. Manage internal and external penetration tests as our bug bounty program
• Advocate for a strong security culture, partnering closely with stakeholders across the organization to foster collective security responsibility
• Participate in design reviews with senior engineering and product management staff to incorporate effective threat modeling and security standards into product design
• Advise senior management on perceived risks and work to determine an acceptable risk appetite while weighing overall business and usability impact
• Orchestrate table top and red team exercises to strengthen our security incident response procedures
• Assist with maintaining compliance with regulatory requirements and industry standards such as SOC 2, and NACHA
• Collaborate with legal and other teams to develop and enforce security policies

Many backgrounds could fit this role, but ideal candidates will have some or all of the following:

• Proven technical expertise in a security-focused engineering role within a high-stakes production environment
• Demonstrable experience advocating for and implementing security best practices across multiple areas of the tech stack
• Comprehensive understanding of security principles, from the application layer to the cloud, and ability to apply them in nuanced ways
• Innate sense of ownership, along with the aptitude to navigate through ambiguity
• Strong communication skills to convey security concepts and procedures clearly to varying audiences
• Demonstrated empathy for users and stakeholders, enhancing a user-centric approach to security
• Willingness and ability to attend our annual 3-day company offsite in the fall

Travel and Office Policy

The Check team is distributed across the US and Canada and we have offices in New York City and San Francisco. While we welcome remote work, we believe time together in person is valuable and important. We offer ample opportunities and encourage employees to attend team offsites, events, and hackathons a couple of times a year! We expect all employees to be willing to attend our annual 3-day company offsite in the fall.  

For our in-office and hybrid employees, our offices are open all week. We provide meals on Tuesdays and Thursdays and the team hosts regular happy hours, game nights, etc. 

What we offer:

At Check we value transparency and trust. It’s important to us that every employee and candidate feels confident that they’ll be treated (and compensated) fairly on our team. The engineering team specifically operates on a flat titling system, meaning everyone is either a Software Engineer or an Engineering Manager. We structure our titles this way to maximize equity, inclusion and opportunity within our team, and to minimize seniority bias. We want all engineers, regardless of job level, to feel empowered to lead projects they’re passionate about and to collaborate with their fellow Checketeers as equals. 

To that end, we will consider candidates with a variety of backgrounds and levels of expertise for this role, and we will determine the appropriate job level for each candidate based on their unique experience and qualifications. The expected annual salary for this role is between $200,000 and $253,000, depending upon the job level.

In the US, Check offers company-sponsored medical, dental, vision, short-term/long-term disability and basic life insurance coverage to all full-time employees, effective on your first day of work. We also provide stock options, flexible PTO and sick leave, 16 weeks of fully paid parental leave for all new parents and flexible return-to-work, 9 annual holidays, a 401k retirement plan, and a $100 monthly stipend for home internet and mobile phone expenses. Benefits may vary outside the US.