Senior Security Engineer

LearnLux is the leading provider of workplace financial wellbeing that blends fiduciary digital planning with access to one-on-one guidance from Certified Financial Planner️ professionals. LearnLux's award-winning program equips employees with a financial plan to guide them through decision points like budgeting, paying down debt, electing benefits, understanding equity compensation, starting a family, buying a home, saving for retirement, and more. Advanced reporting keeps our partners in the know, and drives results like reduction in financial stress, increased productivity, reduced employee turnover, greater use of pretax products, on-time retirement, and healthcare savings. LearnLux members feel great about their money, allowing their work and wellbeing to thrive.

We’re a remote-first company, backed by prominent operators such as Ashton Kutcher’s fund Sound Ventures and Salesforce CEO Marc Benioff.

As a Senior Security Engineer at LearnLux, you’ll be a critical bridge between engineering, security, and operations—leading our DevSecOps strategy across CI/CD, infrastructure as code, containerization, and cloud architecture. This role blends hands-on engineering with strategic oversight, empowering you to build resilient systems, elevate security practices, and accelerate the delivery of world-class features.

You’ll work cross-functionally to reduce risk, improve automation, and ensure security is seamlessly embedded across our development lifecycle—without compromising speed or innovation. You’ll also lead the implementation of tooling to proactively detect threats, automate security responses, and streamline engineering workflows, helping to scale a high-performing development team.

This is a high-impact opportunity to shape LearnLux’s security foundation and developer experience from the ground up. If you’re passionate about secure development, scalable infrastructure, and empowering teams through smart automation—we’d love to meet you.

This role is 100% remote within the U.S. and reports to the Head of Engineering.

• Own and evolve LearnLux’s DevSecOps roadmap, embedding security into every stage of the development lifecycle while enabling fast, reliable delivery.
• Proactively implement automated controls and processes to ensure DevSecOps practices align with audit and compliance requirements, including SOC 2, ISO 27001, HIPAA, and GDPR—enabling continuous readiness and reducing manual overhead.
• Design and implement scalable infrastructure as code (IaC) using tools like Terraform or Pulumi to support consistent, auditable environments.
• Improve CI/CD pipelines for speed, security, and traceability—eliminating bottlenecks and supporting a frictionless developer experience.
• Lead the implementation of proactive security controls, including secrets management, container scanning, SAST/DAST tooling, and secure coding standards.
• Leverage tools to detect threats, automate response workflows, and accelerate engineering productivity through intelligent automation.
• Strengthen incident response capabilities, including automated runbooks, alerting, and observability across application and infrastructure layers.
• Drive cloud architecture optimization in AWS/GCP to balance security, scale, performance, and cost.
• Mentor engineers and foster a security-first mindset, championing secure-by-default practices and continuous improvement across the team.

• 8+ years of experience across DevOps, Security Engineering, or Site Reliability Engineering roles in Global SaaS environments.
• 3+ years leading DevSecOps initiatives with proven impact across infrastructure, tooling, and team enablement.
• Strong hands-on experience with GCP and AWS infrastructure and services.
• Deep knowledge of CI/CD systems (e.g., GitHub Actions, CircleCI, Jenkins), container orchestration (Kubernetes), and IaC tools (Terraform, Pulumi).
• Expertise in securing modern software environments including identity, access, secrets, encryption, and monitoring.
• Solid understanding of compliance frameworks (SOC 2, GDPR, ISO 27001) and how DevSecOps supports them.
• Experience implementing static/dynamic analysis, container scanning, and runtime security solutions.
• Strong cross-functional communication skills—capable of translating security requirements into actionable engineering tasks and scalable practices.
• Bias for action and ownership—comfortable working autonomously and driving initiatives forward in a fast-paced environment.

• Remote-first company structure
• Medical, dental, and vision
• 401(k)
• Mental wellbeing (Talkspace)
• Financial wellbeing (LearnLux)
• Equity (Full-time employees)
• Paid vacation and sick leave
• Paid sabbatical after 5 years of service
• A supportive, inclusive team culture
• Opportunities for continuous learning and growth at a fast-growing startup at the cutting edge intersection of financial wellness and technology

LearnLux strives to be an inclusive workplace and values learning from and engaging across different perspectives. Women, people of color, LGBTQIA+ individuals, and members of other minority or marginalized groups are strongly encouraged to apply.

LearnLux is proud to be an equal opportunity employer and does not discriminate against candidates on the basis of race, ethnicity, color, national origin, age, religion, sex, gender, sexual orientation, gender identity, marital status, disability, or veteran status.

We are committed to fostering an environment that embraces diversity and inclusion and are seeking candidates from a variety of backgrounds, experiences, abilities, and perspectives to join our team. If you are interested in this opportunity but not sure if you fit this role, please apply and include a note to let us know of your interest. We’re excited to speak with you about joining our team!