Senior Security Engineer

<div class="content-intro"><p>GiveCampus is the world's leading fundraising platform for non-profit educational institutions. Trusted by 1,300+ colleges, universities, and K-12 schools, our mission is to help advance the quality, the affordability, and the accessibility of education. We received a seed investment from Y Combinator in 2015 and have pursued a strategy of <a href="https://go.givecampus.com/reflecting-on-7-years-of-sustainable-growth/" data-faitracker-click-bind="true">'Sustainable Growth'</a> ever since: achieving six consecutive years of profitability and positive cash-flow while more than quadrupling our revenue, our customer base, and our team. In 2022, <a href="https://go.givecampus.com/blog/the-next-chapter-for-givecampus/" data-faitracker-click-bind="true">we raised $50 million</a> to accelerate the next stage of our growth.</p> <p>Through <a href="https://go.givecampus.com/social-mobility/" data-faitracker-click-bind="true">The GiveCampus Social Mobility Initiative</a>, we've donated $1 million in free fundraising support for programs that help low-income students, first-generation students, and underrepresented minorities. And in 2022 and 2023, we were named to <a href="https://www.ycombinator.com/blog/y-combinator-top-companies-aug-2022" data-faitracker-click-bind="true">Y Combinator's Top Companies list</a> and the <a href="https://www.inc.com/profile/givecampus" data-faitracker-click-bind="true">Inc. 5000 list</a> of America's fastest-growing private companies.</p> <p>While we operate at meaningful scale (we've facilitated more than $6 billion in charitable giving), we’re still small relative to the commercial and social good opportunities in front of us. Every GiveCampus employee has a substantial impact on our trajectory, and we're growing to help schools achieve even greater results.</p> <p>Our purpose-driven team of 120+ is located across the US: team members work from anywhere they choose. We have a beautiful 12,000 sf office in Washington, DC that is available for people to use whenever they want, and we regularly organize team meet-ups, events, and retreats in various locations. We're looking to expand our team with diverse and collaborative doers who believe in our mission and the transformative power of affordable, high-quality education.<br><br><strong data-stringify-type="bold">Location:</strong> This is a remote-first role based in the U.S. While we embrace flexible, distributed work, we also value in-person connection. Team members are expected to attend multiple company-wide and team-specific onsites throughout the year.</p></div><p>We are looking for a brilliant and energetic <strong data-start="141" data-end="169">Senior Security Engineer</strong> to join GiveCampus and help us take the platform to the next level. You will be a key member of our team, making technical decisions that will shape the company’s future. As a Senior Security Engineer, you will help lead security initiatives within the organization. You may be a good fit if you’re someone who loves to brainstorm, dive into security challenges, build safeguards, and have a big impact. We are headquartered in Washington, DC, but are hiring across the US.<br><br><strong>Responsibilities will include:</strong></p> <ul> <li>Lead secure design, architecture review, and threat modeling for <strong>applications</strong>: including web services, APIs, microservices, serverless, mobile, etc.</li> <li>Lead secure design and review for <strong>infrastructure/cloud</strong>: AWS VPCs, subnets, security groups, routing, NAT, VPN, identity access (IAM, roles, federated identities), compute/storage services (EC2, EKS, Lambda, S3, RDS), infrastructure-as-code (IaC).</li> <li>Develop and apply application security controls: code review guidance, static/dynamic analysis, runtime monitoring, penetration testing, dependency management.</li> <li>Develop and apply cloud infrastructure security controls: guardrails for IaC templates (Terraform/CloudF ... (truncated, view full listing at source)