Varo Money is hiring a

Cloud Security Engineer

San Francisco, United States
Full-Time
ABOUT VARO
Varo is an entirely new kind of bank. All digital, mission driven, FDIC insured, and designed for the way our customers live their lives.

We're on a mission to bring financial inclusion and opportunity to all hard-working Americans. Through our mobile app, we offer premium bank accounts that have no minimum balance requirement or monthly account fees, high-interest savings accounts, short term lending and solutions to help customers stretch their paycheck, build credit and start saving. Our tech-first products are designed to make money work for everyone and help customers and communities build greater financial resiliency.

Varo is distinct from other fintechs: we've made history as the first and only consumer fintech to be granted a full national bank charter by the Office of the Comptroller of the Currency (OCC).

Varo Bank represents the evolution of a new generation of banks that are born from innovation and built on technology to empower consumers and businesses.

Our team combines the best of both consumer tech and banking, and we’re wildly passionate about helping our customers. Our teams are based in San Francisco and Salt Lake City. Privately held, we’ve raised over $482M to date, from leading institutional investors and strategic partners including Warburg Pincus, The Rise Fund, Gallatin Point Capital, Harbourvest Partners, Progressive Insurance, and Russell Westbrook Enterprises.

Varo is entrepreneurial, collaborative, enthusiastic, customer-oriented, fast-paced, and multicultural.  This is an open and relatively flat organization that puts an emphasis on collaboration, sharing ideas and information. For a relatively early stage company, Varo is grounded in a strong set of values and takes pride in the diversity of its employees and board. 

Varo. A bank for all of us.

ABOUT THE SECURITY ENGINEERING TEAM
Varo’s Security Engineering team’s mission is to help the organization conduct business in a secure manner. The team works hand-in-hand with engineers across the organization as we innovate in the banking industry. We practice the “DevSecOps” philosophy and build security automation early into the process of everyday engineering functions from software engineering, to cloud infrastructure, and IT.

ABOUT THE CLOUD SECURITY ENGINEER ROLE
We are looking for an hands-on individual with a white hat hacker mindset to join us in a Cloud Security Engineer role. You will be responsible for architecting, developing and deploying security tools and technologies to protect Varo Bank’s platform and backend infrastructure. You will get exposure and contribute to the broader systems and cloud infrastructure initiatives here at Varo Bank too.

WHAT YOU'LL DO

  • Ensure AWS security best practices have been implemented in the production platform
  • Ensure that our production platform in AWS has been hardened per industry standards e.g. CIS benchmarks
  • Review current infrastructure stack and changes from a security perspective and provide recommendations
  • Drive infrastructure directions, configurations, and solutions in collaboration with other teams
  • Own Cloud vulnerability assessment and patch triage process to support ongoing vulnerability and patch management at Varo Bank and provide technical remediation recommendations for identified vulnerabilities
  • Identify the trade-offs necessary between security and engineering velocity
  • Review security alerts and reports on a daily basis and work closely with the Infrastructure and/or Security Operations team in any follow up investigation or remediation
  • Automate security controls to the extent that it requires minimal human interaction

SKILLS AND EXPERIENCES THAT'LL HELP YOU BE GREAT

  • Bachelors in Computer Science or a related field
  • 3+ years in a Infrastructure engineering or DevOps role
  • Hands on experience with AWS Security best practices and AWS tools like AWS Guard Duty, Macie, AWS Config etc.
  • Experience with secrets management tools like AWS KMS, Hashicorp Vault
  • Experience in using scripting languages to automate tasks and manipulate data e.g. Python, Go, Bash
  • Experience working with Infrastructure as Code with Terraform
  • Experience with container security and container orchestration tools e.g. Kubernetes
  • Experience working at or with Managed Security Service Providers

  • THE THREE SKILLS THAT MATTER MOST 
    Nobody can be great at everything, but we’re looking for candidates who are extraordinary at: 
  • Fundamental knowledge of AWS Security best practices, AWS managed services and their IAM role configuration
  • Hands on experience with Infrastructure as Code and/or other automation
  • Fundamental knowledge of Networking

OTHER NICE TO HAVES

  • Experience with Web Application Firewalls (WAF) desired
  • Experience with CI/CD (Gitlab)
  • Experience with Kubernetes and/or Service mesh

CULTURAL ALIGNMENT
Varo is entrepreneurial, collaborative, enthusiastic, customer-oriented, fast-paced, and multicultural.  This is an open and relatively flat organization that puts an emphasis on collaboration, sharing ideas and information. For a relatively early stage company, Varo is grounded in a strong set of values and takes pride in the diversity of its employees. 

OUR CORE VALUES
Customers First: Understand the problems our customers are trying to solve. Respond with a sense of urgency. Build relationships that result in loyalty. Be data and insights-driven. Test everything. Achieve results through strong execution. Build a product people love.  Assess new initiatives with the customers’ interest in mind. Act with empathy. 

Take Ownership: Bias towards action. Have high standards. Be accountable for the results of your work, our product, our company. Trust others to own it.

Respect: Treat others how you want to be treated. Listen first before being heard. Speak the truth even when it's not easy. Assume best intentions. Bring your full self to work.

Stay Curious: Ask why. Dare to make things better. Learn something new each day (even from mistakes). Be open to growth. Develop creative solutions.

Make it Better: Think big. Set high goals. Work towards long term value rather than short term wins. Create change. Be resilient.


Varo is an equal opportunity employer. Varo embraces diversity and we are committed to building teams that represent a variety of backgrounds, perspectives, and skills. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

Learn more about Varo by following us:

Beware of fraudulent job postings!
Varo will never ask for payment to process documents, refer you to a third party to process applications or visas, or ask you to pay costs. Never send money to anyone suggesting they can provide work with Varo.  If you suspect you have received a phony offer, please e-mail [email protected] with the pertinent information and contact information.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Looking for a job?

Cloud Security Engineer at Varo Money looks great, right? We have dozens of similar job posts on our site, interested? Leave your email and we'll send the best matches.