Security Engineer Jobs in Arizona (NOW HIRING)

Achieve is a leading digital personal finance company. We help everyday people move from struggling to thriving by providing innovative, personalized financial solutions. By leveraging proprietary data and analytics, our solutions are tailored for each step of our member's financial journey to include personal loans, home equity loans, debt consolidation, financial tools and education. Every day, we get to help our members move their finances forward with care, compassion, and empathetic touch. We put people first and treat them like humans, not account numbers.

Since 2002, Achieve has grown into one of the largest private consumer fintech unicorns in the U.S., with over $40B in enrollments for our industry-leading, tech-enabled debt resolution services business, and over $11Bn in personal and home loans originations via our banking-as-a-service partner.

We are seeking an experienced Principal Security Engineer - Temporary for our Information Security team with a broad skill set encompassing security engineering, identity services, cloud security, and application security. In this role, you will be responsible for evaluating, implementing, evangelizing, and maintaining robust security solutions to protect our organization's information assets across various platforms and environments. You will collaborate with cross-functional teams to ensure the confidentiality, integrity, and availability of our systems and data.

This is a temporary role for approximately six months with the potential for full time.  

Primary Responsibilities and Duties – This role will be focused on these key functions

This role will design, validate, implement, and document security infrastructure and collaborate amongst Technology groups to support the internal user base and uphold InfoSec initiatives.

• Security Engineering: Architect and assist with the implementation of security controls, tools, and technologies to protect information assets from internal and external threats. Collaborate with engineering teams to integrate security into the development and deployment processes.
• Identity and Access Management (IAM): Architecture of the future for Identity.  Design and implement strategies for IAM solutions to manage user identities, access rights, and privileges across on-premises and cloud environments. Establish authentication, authorization, and access control mechanisms to enforce security policies effectively.  Zero Trust architecture.
• Cloud Security: Architect and implement security controls and best practices (SASE) for cloud infrastructure (e.g., AWS, Azure, Google Cloud) to protect data and workloads in cloud environments. Evaluate and recommend security services and technologies to enhance cloud security posture. 
• Application Security: Collaborate with development teams to integrate security into the software development lifecycle (SDLC) and ensure secure coding practices are followed. Conduct security assessments, code reviews, and penetration testing to identify and remediate application security vulnerabilities.
• Security Standards and Compliance: Ensure compliance with industry standards, frameworks, and regulations related to information security (e.g., NIST, ISO/IEC 27001, PCI DSS). Develop and maintain security policies, standards, and procedures to align with regulatory requirements.

• Education: Relevant certifications (e.g., CISSP, CISM, CEH) etc.
• Experience: Minimum of 6 years of experience in information security engineering with experience in identity/authentication, architecture, cloud security, and application security.
• Technical Skills:
  • Proficiency in designing security controls,  security tools  needs/assessments, and technologies services. 
  • In-depth knowledge of IAM solutions and protocols (e.g., LDAP, SAML, OAuth, OpenID).
  • Expertise with cloud security principles, services, and controls in major cloud platforms (e.g., AWS, Azure, GCP).
  • Expertise in application security concepts, tools, and techniques (e.g., secure coding practices, static and dynamic application security testing).
• Analytical Skills: Strong analytical and problem-solving skills with the ability to assess complex security challenges and develop effective solutions.
• Communication Skills: Excellent written and verbal communication skills with the ability to communicate technical concepts to non-technical stakeholders.
• Leadership: Proven ability to lead and influence cross-functional teams and drive security controls.  Be a security evangelist with the technology teams.

Preferred:

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.

All your information will be kept confidential according to EEO guidelines.

Achieve well-being with:

• 401 (k) with employer match
• Medical, dental, and vision with HSA and FSA options  
• Competitive vacation and sick time off, as well as dedicated volunteer days
• Access to wellness support through Employee Assistance Program, physical and mental health wellness programs
• Pet care discounts for your furry family members
• Financial support in times of hardship with our Achieve Care Fund
• A safe place to connect and a commitment to diversity and inclusion through our six employee resource groups 

Salary range:  $68.00 - $75.00 per hour plus benefits.  

This information represents the expected salary range for this role. Should we decide to make an offer for employment, we'll consider your location, experience, and other job-related factors.

Join Achieve, change the future.

At Achieve, we’re changing millions of lives.
From the single parent trying to catch up on bills to the entrepreneur needing a loan for the next phase of growth, you’ll get to be a part of their journey to a better financial future. We’re proud to have over 3,000 employees in mostly hybrid and 100% remote roles across the United States with hubs in Arizona, California, and Texas. We are strategically growing our teams with more remote, work-from-home opportunities every day to better serve our members. A career at Achieve is more than a job—it’s a place where you can make a true impact, have a sense of belonging, establish a fulfilling career, and put your well-being first.

Attention Agencies & Search Firms: We do not accept unsolicited candidate resumes or profiles. Please do not reach out to anyone within Achieve to market your services or candidates. All inquiries should be directed to Talent Acquisition only. We reserve the right to hire any candidates sent unsolicited and will not pay any fees without a contract signed by Achieve’s Talent Acquisition leader.

#LI-KM1