Staff Corporate Security Engineer

Join a leading fintech company that's democratizing finance for all.

Robinhood was founded on a simple idea: that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood is lowering barriers and providing greater access to financial information. Together, we are building products and services that help create a financial system everyone can participate in.

As we continue to build...

We're seeking curious, growth minded thinkers to help shape our vision, structures and systems; playing a key-role as we launch into our ambitious future. If you're invigorated by our mission, values, and drive to change the world - we'd love to have you apply.

About the team + role

The Corporate Security team's mission is to ensure the security of Hoodie endpoints and corporate productivity SaaS. As part of our Corporate Systems org, Corporate Security works alongside Corporate Applications (major SaaS sysadmins), Corporate Endpoints (fleet management), Corporate Networking (in-office connectivity), and Corporate Identity + Access (Okta Single Sign-On).

Staff Corporate Security Engineers focus primarily on working with the team to:

• Architect, build and proactively secure corporate infrastructure and services at scale, and securely enable business functions.

• Implement strong enterprise controls such that security incidents are less likely to happen.

• Have controls in place to limit the potential magnitude of an incident.

• Validate our controls through technical risk and design reviews to ensure alignment with required security policies/standards.

What you'll do

• Write security policies and guidelines to steer Hoodies on the paved road and away from security risk.

• Perform risk assessments across SaaS to detect exposure and security mis-configurations in enterprise applications.

• Help craft the integration and migration strategy for future mergers and acquisitions.

• Design secure access controls using modern tools and techniques (e.g. WebAuthn, Okta SSO, Okta Identity Governance OIG, JIT access).

• Design endpoint state attestation tooling to ensure security configurations and a safe end user development platform (e.g., OSquery, JAMF, FleetDM, Kandji, Crowdstrike, SentinelOne, Cyberhaven, Code42).

• Design secure identity controls using Zero-Trust Identity-Aware Continuously-Evaluated policies (e.g., Managed Device Verification, Device Trust, Device Posture analysis).

• Oversight on Deploy Data Loss Prevention (DLP) solutions focusing on PII and PCI related data that may be in SaaS applications (e.g. Google Workspace, Jira, Confluence, Salesforce, ServiceNow).

• Light scripting or using "no code" workflow tools (e.g., Tines, Okta Workflows, Zapier)

What you bring

• 7 years of relevant security engineering work experience

• Experience with creating alignment and effective partnership with multiple teams on high impact projects while operating with ambiguity

• Background in security policy authorship and opaque product assessment

• DRI record of delivering large and high complexity projects that impact multiple teams

• History of providing technical direction, project review, and mentorship to peers and junior engineers

• Excel at owning the outcome and performance of solutions and controls delivered

• Consistently make culture choices that positively impact all Hoodies

Though not REQUIRED, the following would also be quite helpful:

• Previous experience at a high growth company in the FinTech space

• Previous experience at highly regulated public company over 1,000 workers

Our team is here to enable an inclusive and welcoming interview experience for all candidates. If you need additional assistance throughout the interview process related to a physical or mental condition, or if there is something our team can do to enable a more accessible experience at any time, please notify our team by completing this Applicant Accommodation Form.

Base pay for the successful applicant will depend on a variety of job-related factors, which may include education, training, experience, location, business needs, or market demands. The expected salary range for this role is based on the location where the work will be performed and is aligned to one of 3 compensation zones. This role is also eligible to participate in a Robinhood bonus plan and Robinhood's equity plan. For other locations not listed, compensation can be discussed with your recruiter during the interview process.

Zone 1 (Menlo Park, CA; New York, NY; Bellevue, WA; Washington, DC)

$217,000-$255,000 USD

Zone 2 (Denver, CO; Westlake, TX; Chicago, IL)

$190,000-$224,000 USD

Zone 3 (Lake Mary, FL)

$169,000-$199,000 USD

Click here to learn more about Robinhood's Benefits.

We're looking for more growth-minded and collaborative people to be a part of our journey in democratizing finance for all. If you're ready to give 100% in helping us achieve our mission-we'd love to have you apply even if you feel unsure about whether you meet every single requirement in this posting. At Robinhood, we're looking for people invigorated by our mission, values, and drive to change the world, not just those who simply check off all the boxes.

Robinhood embraces a diversity of backgrounds and experiences and provides equal opportunity for all applicants and employees. We are dedicated to building a company that represents a variety of backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better our work (and work environment) will be for everyone. Additionally, Robinhood provides reasonable accommodations for candidates on request and respects applicants' privacy rights. To review Robinhood's Privacy Policy please review the specific policy applicable to the country where you are applying.