Security Engineer at LemFi (Formerly Lemonade Finance)

Lemonade Finance (YC S21) is building a neobank for immigrants in North America & Europe. We provide our users with multi-currency accounts that allow them to hold, send, and receive money from Africa in any currency for their business and personal banking needs. There are over 10 million Africans living in North America & Europe who go through hoops and have to pay exorbitant fees to send money to their loved ones. We are constantly fighting for everyday Africans to be able to move their money freely around the world at no cost and with the best exchange rate they can find out there. We launched the first version of the app at the beginning of October 2020 with just the ability to send money. Now, we enable our users to send and receive as well as pay bills for services across the ocean for loved ones. We have also grown to a team of more than 25 people working remotely and living on different continents

Job Summary:

• The role of the Security Engineer is a fully remote position within LemFi’s Engineering and Networking team. We are seeking a highly skilled and motivated individual to join our team as a Security Engineer.
• In this role, you will be responsible for ensuring the security of our organization's confidential information and systems.
• This includes conducting internal investigations, security audits, and managing risk and compliance.
• You will also play a key role in developing and deploying security tools and providing security training to internal teams and clients.

Responsibilities are as follows:

• Conduct internal security and confidential information investigations and information security audits.
• Provide guidance on risk, compliance, and policy to technical and non-technical internal customers.
• Respond to security violations, vulnerabilities, and incident detections.
• Assess and secure third-party integrations, services, solutions and partnerships, ensuring controls are implemented to the highest security standards.
• You will develop and deploy security tools and automations.
• Provide security training and guidance to internal teams and customers.
• Ensure timely delivery of security goals, and make recommendations for incremental process improvement.
• Contribute to / provide feedback on the development of security standards and control requirements.

Skills & Requirements:

• Minimum of 4 years experience in related field
• Security related qualifications such as CISSP, CISM, CISA,CCSP, SANS GIAC.
• Experience of PCI DSS, SOC 2, ISO 27001
• Familiarity with GDPR, DORA and Financial Services regulatory requirements
• Security concepts, protocols, standards and best practices within the cloud (AWS, Azure, GCP)
• Experience deploying, managing, and operating security technologies such as endpoint security (e.g. AV/EPP/EDR), SIEM, DLP, zero trust solutions, IDS/IPS, firewalls, IAM, vulnerability management, MDM, etc.

Method of Application