Security Engineer

Job Description Career Renew is recruiting for one of its clients a Security Engineer - this is a hybrid role in Austin, TX. Salary range: 150-175K plus benefits.We are building at the intersection of institutional finance and emerging technology. With $40M in funding from Electric Capital and Paradigm, we are bringing together the best minds from Ethereum and Wall Street to rebuild the infrastructure that underpins the financial system—faster, safer, fully on-chain.Security is not a cost center here. It is a client-facing differentiator and a core part of how we earn trust with the institutional counterparties we serve. The security program you help build will be referenced in client due diligence packages, auditor engagements, and enterprise contract negotiations.You will report directly to the CISO, operate with technical autonomy, and have the organizational support to execute a security program that is genuinely production-grade.What Will You Do?We are building our security program from the ground up, and doing it right. While we are still at the startup level, we are moving rapidly toward enterprise grade security controls, processes, and procedures. We are hiring a Security Engineer who will serve as the hands-on execution layer of a security strategy designed by the CISO and backed by organizational investment.This is not a compliance checkbox role. This is a builder role.You will be executing the technical implementation of a modern, cloud-native security stack, standing up identity enforcement, endpoint protection, cloud posture management, threat detection, and GRC evidence pipelines that are production-grade and auditor-credible. You will work directly with the CISO to accelerate our security timeline, improve controls, and create the automation infrastructure that compounds in value across every future review cycle.The work you do here becomes the foundation we scale on for years to come. If you want to build something that matters and have your fingerprints on a security program early in its journey, this is that role.Strategic AlignmentThis role is a direct investment in our revenue acceleration and operational scalability. You will succeed in this role by delivering:Accelerated Security Improvement: Partnership with the CISO for hands-on, parallel, technical execution, across many aspects of security engineering and GRC.Improved Audit Quality: Effective, well-optimized, technical integrations that produce clean, timestamped, auditor-legible evidence chains across every control.Automation Compounding: Secure, automated processes for threat prevention, detection, & response that scale with the company's growth.Technical RequirementsSecurity Infrastructure & ImplementationDesign, deploy, and maintain core security controls across identity, endpoint, cloud, and application layers. including SSO/MFA enforcement, MDM, EDR, CSPM, secrets management, and DLPOwn the technical integration of security tooling across the organization's environment, ensuring controls are properly configured, enforced, and producing auditor-credible evidence, not just deployedTake responsibility for the technical execution of the organization's security roadmap under the direct guidance and support of the CISO, driving parallel workstreams across infrastructure, GRC, and daily operations.Monitoring, Detection & Incident ResponseBuild and maintain detection coverage across all cloud and endpoint systems; validate alert paths through formal, documented test scenariosMonitor security alerts and logs for anomalous activity; investigate potential incidents and deliver timely, structured updates to the CISOVulnerability & Patch ManagementLead the vulnerability management lifecycle: scanning, triage, SLA-tracked remediation, and patching verification across cloud workloads, endpoints, and system dependencies.Maintain a complete inventory of non-human identities (service accounts, API keys, bot tokens, Lambda roles) including ownership, rotation schedules, and expiry trackingAutomation & Continuous ImprovementIdentify and implement automation across security controls, alerting, evidence collection, and operational workflows to reduce manual burden and improve program scalabilityProactively identify gaps in the security posture and regularly bring forward recommendations to the CISOGRC & Compliance SupportWork with the CISO to maintain alignment between technical controls and governance and compliance requirements.Collect, maintain, and organize audit evidence & artifacts to support efficient, clean audit engagementsCollaborate with the CISO on gap analysis against SOC 2, and other evolving requirements.Employee Lifecycle & Operational SupportAssist with security onboarding for new employees, including device enrollment, identity provisioning, and access grants, and offboarding, including well-documented access revocation and device decommission.Develop and maintain documentation of security configurations, standard operating procedures, and remediation effortsProvide technical security support to our staff as needed.QualificationsRequired3+ years of hands-on security engineering experience in a cloud-native environmentDemonstrated experience implementing and administering identity and access management platformsHands-on experience with AWS security services (IAM, CloudTrail, GuardDuty, Security Hub, Secrets Manager)Working knowledge of cloud security posture management tools (Wiz, Prisma Cloud, Prowler, or equivalent)Working knowledge of integrating SAST/SCA tooling into CI/CD pipelines and managing vulnerability remediationsAbility and willingness to produce audit-quality security documentation and evidence artifactsUnderstanding of where AI fits into the security stack today and where traditional processes are still needed.Be eager to adapt to and to implement increasingly AI driven processes.Comfortable operating in a high-autonomy, high-accountability environment with direct Executive leadership visibilityPreferredExperience supporting a SOC 2 audit end-to-endFamiliarity with GRC platforms (Vanta, Drata, SecureFrame, or equivalent) including control mapping and evidence collectionScripting experience for security automationExposure to DLP tooling and/or AI data governanceFamiliarity with NIST CSF, NYDFS Part 500, or equivalent regulatory frameworksExperience in a startup or high-growth environment where the security program was built, not inheritedCertifications (Preferred, Not Required)AWS Solutions Architect - AssociateAWS Certified Security - SpecialtyCertified Information Systems Security Professional (CISSP)