Make your impact within a rapidly growing Fintech Company

BILL’s Information Security department is searching for an Infrastructure Security Engineer to join our team. The team works closely with the engineering and technical operations teams to identify, track, and mitigate security vulnerabilities in applications and the infrastructure. Additionally, the team collaborates with the Security Operations Center and Threat Intelligence and Detection Engineering on security-related engineering tasks.

The ideal candidate should possess a combination of technical expertise and strategic insight, enabling effective communication with stakeholders and guidance of team members in line with BILL's security culture and business priorities. We are seeking a strong leader who can work closely with cross-functional engineering teams and leadership to effectively communicate identified infrastructure security risks and ensure timely technical remediation. This role also involves enhancing the security program's capabilities, fostering a proactive security mindset, and promoting cross-functional partnerships

Key Responsibilities:

• Design, implement, and manage security solutions for cloud and infrastructure environments  with industry standards and best practices.
• Conduct security assessments, gap Analysis, vulnerability assessments, and penetration testing to identify and mitigate security risks.
• Develop and maintain security policies, procedures, and guidelines for cloud and infrastructure security.
• Collaborate with cross-functional teams to integrate security into the development and deployment processes.
• Support in the response to security incidents, providing expert analysis and recommendations for remediation.
• Stay up-to-date with the latest security trends, threats, and technologies to continuously improve our security posture.
• Provide mentorship and guidance to junior security engineers, fostering a culture of security awareness and best practices.
• Work closely with the IT and  Technical Operations teams to ensure secure configuration and management of cloud and infrastructure resources.
• Develop and deliver security training and awareness programs for employees and stakeholders.
• Participate in security audits and assessments, providing detailed reports and recommendations for improvement.

We’d Like to Chat If  You Have: 

• Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree preferred.
• Minimum of 7-10 years of experience in information security, with a focus on cloud and infrastructure security.
• Strong knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud) and their security features.
• Experience with infrastructure-as-code (IaC) tools such as Terraform, CloudFormation, or Ansible.
• Proficiency in security assessment tools and techniques, including vulnerability scanning, penetration testing, and threat modeling.
• In-depth understanding of network security, encryption, identity and access management (IAM), and security monitoring.
• Relevant certifications such as CISSP, CISM, CEH, or cloud-specific certifications (e.g., AWS Certified Security Specialty) are highly desirable.
• Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.
• Strong communication and interpersonal skills, with the ability to effectively convey complex security concepts to technical and non-technical stakeholders.
• Proven track record of leading security initiatives and projects to successful completion.

#LI-Remote