Senior Security Engineer II

<div class="content-intro"><p>Intuit Credit Karma is a mission-driven company, focused on championing financial progress for our more than 140 million members globally. While we're best known for pioneering free credit scores, our members turn to us for everything related to their financial goals, including identity monitoring, applying for credit cards, shopping for insurance and loans (car, home and personal) and savings accounts and checking accounts* – all for free. Credit Karma has grown significantly through the years: we now have more than 1,700 employees across our offices in Oakland, Charlotte, Culver City, San Diego, London, Bangalore, and New York City.</p> <p>*Banking services provided by MVB Bank, Inc., Member FDIC</p></div><h3>Senior Security Engineer II – Cloud Security AI Automation</h3> <h4>What You’ll Do</h4> <ul> <li>Design and implement secure cloud architectures across AWS, GCP, and/or Azure aligned to zero-trust principles</li> <li>Lead cloud network security initiatives including segmentation, micro-segmentation, traffic inspection, ingress/egress controls, and identity-aware networking</li> <li>Build and deploy AI-driven security automation using Generative AI and LLM-based agents to detect, triage, and remediate security findings</li> <li>Develop intelligent guardrails for CI/CD pipelines, enabling automated policy enforcement and pre-deployment security validation</li> <li>Implement and manage data security controls including encryption, key management, tokenization, and data loss prevention strategies</li> <li>Lead applied cryptography efforts including PKI design, certificate lifecycle management, and secrets management in distributed systems</li> <li>Operate Tier-0 production systems with strong operational rigor, participating in on-call rotations and leading incident response efforts</li> <li>Conduct security design reviews, threat modeling, and architecture risk assessments</li> <li>Partner with engineering, and platform teams to embed secure-by-design practices across the software lifecycle</li> <li>Research, evaluate, and introduce modern cloud security technologies and AI-enabled security capabilities</li> <li>Mentor and coach junior engineers, raising the technical bar across cloud networking and security automation domains</li> <li>Contribute across multiple security domains including Network Security, Data Security, Cryptography/PKI, and Detection Response</li> </ul> <h4>What We Expect</h4> <ul> <li>8+ years of experience in Cloud Security Engineering, Security Architecture, or related infrastructure security roles</li> <li>Strong expertise in core cloud networking (VPC/VNet design, routing, peering, DNS, load balancing, firewalls, private connectivity, service mesh)</li> <li>Deep understanding of zero trust principles, micro-segmentation, and least-privilege access enforcement</li> <li>Proven experience designing and securing large-scale AWS, GCP, or Azure environments</li> <li>Hands-on experience building security automation using Python, Go, or similar languages</li> <li>Practical experience applying AI and Generative AI (LLMs/agents) to automate security operations, triage, and remediation workflows</li> <li>Experience operating Tier-0 or mission-critical production systems with participation in incident response and on-call rotations</li> <li>Ability to perform threat modeling, architecture reviews, and risk assessments across distributed cloud systems</li> <li>Demonstrated ability to mentor junior engineers and raise technical standards across teams</li> <li>Clear and effective communication skills, capable of influencing both technical teams and leadership</li> </ul> <h4>Preferred Qualifications </h4> <ul> <li>Experience working in a hybrid environment as well as Public Cloud, e.g. Google Cloud Platform, AWS, Azure, etc.</li> <li>Strong foundation in data security, encryption standards, key management, PKI, and secrets lifecycle management</li> <li>Familiarity with information secur ... (truncated, view full listing at source)