Senior Application Security Engineer

Join to apply for the Senior Information Security Engineer role at Provident Credit Union.

1 day ago Be among the first 25 applicants.

Get AI-powered advice on this job and more exclusive features.

This range is provided by Provident Credit Union. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$105,000.00/yr - $163,000.00/yr

Annual Bonus

Sr. Information Security Engineer (Redwood City, CA)

*** We do not sponsor employment/work visas at this time, if you need sponsorship now or in the future, unfortunately, your application will not be considered ***

Summary:

Under the supervision of the AVP of Information Security, the Senior Information Security Engineer is responsible for implementing, supporting and maintaining robust security controls across cloud and enterprise environments, with a focus on Azure cloud security. This role ensures the protection of sensitive data through proactive monitoring, identity and access management, encryption, and compliance enforcement. The engineer collaborates closely with development teams to embed security into application and API lifecycles, leveraging secure coding practices, vulnerability assessments, and modern DevSecOps tools. Additionally, the role supports third-party risk management, audits, and contributes to the organization’s defense against emerging threats, including those related to AI technologies.

Why Provident?

Provident Credit Union, established in 1950, ranks among the top 10% of credit unions in the US. We foster a culture of acceptance, support, diversity, and inclusion. Provident has been recognized as a Bay Area “Top Workplace” since 2017, and our employees praise us on Glassdoor as one of the best credit unions nationwide.

Our values are:

• Listen
• Get Better
• Do What’s Right

Essential Functions:

• Implement and monitor Azure cloud security controls, including identity management, data encryption, and compliance configurations, aligned with architectural standards and best practices.
• Proactively monitor access to sensitive information, detect anomalies, and enforce security policies across digital environments.
• Collaborate with development teams to ensure application and API security through secure coding, vulnerability assessments, and security testing using AI tools, CI/CD pipelines, Azure DevOps, and API management, adhering to OWASP, NIST, and other standards.
• Perform vendor security due diligence by assessing third-party risks, reviewing security documentation, and verifying compliance.
• Support security assessments and audits through risk evaluations, evidence collection, and remediation efforts.
• Understand AI-related security threats and mitigation strategies.
• Manage and support security event logging and monitoring via SIEM platforms, analyzing alerts, and incident response (preferred).
• Familiar with micro-segmentation concepts.
• Participate in policy and procedure planning to ensure system provisioning and maintenance align with goals and regulations.
• Follow change management procedures for security software and system updates, including patches and reconfigurations.
• Identify automation opportunities to improve operational workflows.
• Participate in project teams to meet organizational goals.
• Participate in monthly on-call rotations.
• Perform other duties as assigned.
• Excellent listening and speaking skills.
• Complete annual BSA & OFAC training and adhere to policies.

Qualifications:

• Bachelor’s degree in relevant fields or equivalent experience.
• 7+ years in enterprise security solutions, with expertise in Azure cloud security, data protection, AI governance, and API security.
• Experience managing security infrastructure, conducting audits, and automation.
• Proficiency in Azure security controls, secure coding, vulnerability assessments, and CI/CD security integrations.
• Strong knowledge of data security principles and compliance standards (NIST, NCUA, DFPI, FedLine).
• Ability to conduct risk assessments, manage incidents, and lead remediation.
• Knowledge of NDR solutions (preferred).
• Effective communication skills and ability to translate technical concepts.
• Proven problem-solving skills and ability to multitask.
• Scripting skills for automation (preferred).
• Certifications such as CISSP, MS Azure Security, CCSP (preferred).

Benefits:

• Medical, dental, vision coverage.
• 401(k) with up to 150% match.
• Tuition reimbursement.
• Discretionary bonus.
• Paid time off and holidays.
• Flexible spending accounts.
• Employee referral bonuses.
• Disability and life insurance.
• Membership benefits.
• Loan rate discounts.
• In-house training and access to company condos in Maui and Lake Tahoe.

Compensation:

Pay Grade T4, with a targeted base pay of $105,000 - $163,000, plus discretionary bonuses.

Equal Opportunity Employer.

Recognized as a Top Workplace (2018-2025). Check us on Glassdoor.