Senior Staff/Staff Cloud Security Engineer

Do the best work of your career as a champion for small and mid-size businesses.BILL is a leader in financial automation software for small and midsize businesses (SMBs). As a champion of SMBs, we are dedicated to automating the future of finance so businesses can thrive. Hundreds of thousands of businesses trust BILL solutions to manage financial workflows, including payables, receivables, and spend and expense management. With BILL, businesses are connected to a network of millions of members, so they can pay or get paid faster. Through our automated solutions, we help SMBs simplify and control their finances, so they can confidently manage their businesses, and succeed on their terms.BILL is a trusted partner of leading U.S. financial institutions, accounting firms, and accounting software providers. We have operations in San Jose, CA, Draper, UT, Houston, TX and are continuing to expand into other geographic locations. If you’re looking for a place that helps you do the best work of your career, look no further than BILL.Make your impact within a rapidly growing Fintech CompanyBILL’s Information Security department is searching for an Infrastructure Security Engineer to join our team. The team works closely with the engineering and technical operations teams to identify, track, and mitigate security vulnerabilities in applications and the infrastructure. Additionally, the team collaborates with the Security Operations Center and Threat Intelligence and Detection Engineering on security-related engineering tasks.The ideal candidate should possess a combination of technical expertise and strategic insight, enabling effective communication with stakeholders and guidance of team members in line with BILL's security culture and business priorities. We are seeking a strong leader who can work closely with cross-functional engineering teams and leadership to effectively communicate identified infrastructure security risks and ensure timely technical remediation. This role also involves enhancing the security program's capabilities, fostering a proactive security mindset, and promoting cross-functional partnerships.Key Responsibilities:Design, implement, and manage security solutions for cloud and infrastructure environments with industry standards and best practices.Conduct security assessments, gap analysis, vulnerability assessments, and penetration testing to identify and mitigate security risks.Develop and maintain security policies, procedures, and guidelines for cloud and infrastructure security.Collaborate with cross-functional teams to integrate security into the development and deployment processes.Support in the response to security incidents, providing expert analysis and recommendations for remediation.Stay up-to-date with the latest security trends, threats, and technologies to continuously improve our security posture.Provide mentorship and guidance to junior security engineers, fostering a culture of security awareness and best practices.Work closely with the IT and Technical Operations teams to ensure secure configuration and management of cloud and infrastructure resources.Develop and deliver security training and awareness programs for employees and stakeholders.Participate in security audits and assessments, providing detailed reports and recommendations for improvement.We’d Like to Chat If You Have:Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree preferred.Minimum of 7-10 years of experience in information security, with a focus on cloud and infrastructure security.Strong knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud) and their security features.Experience with infrastructure-as-code (IaC) tools such as Terraform, CloudFormation, or Ansible.Proficiency in security assessment tools and techniques, including vulnerability scanning, penetration testing, and threat modeling.In-depth understanding of network security, encryption, identity and access management (IAM), and security monitoring.Relevant certifications such as CISSP, CISM, CEH, or cloud-specific certifications (e.g., AWS Certified Security Specialty) are highly desirable.Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.Strong communication and interpersonal skills, with the ability to effectively convey complex security concepts to technical and non-technical stakeholders.Proven track record of leading security initiatives and projects to successful completion.Let’s talk about benefits100% paid employee health, dental, and vision plans (choose HMO, PPO, or HDHP)HSA & FSA accountsLife Insurance, Long & Short-term disability coverageEmployee Assistance Program (EAP)11+ Observed holidays and wellness days and flexible time offEmployee Stock Purchase Program with employee discountsWellness & Fitness initiativesEmployee recognition and referral programsAnd much moreBILL Culture:Humble

- We check our egos at the door. We are curious. We listen, accept feedback.Authentic

- We earn and show trust by being real—embracing our authentic selves.Passionate

- We care deeply about each other and our customers.Accountable

- We are duty-bound to each other, our customers, and society.Fun

- We wrap it all together by building connections and enjoying time spent together.BILL is proudly an Equal Opportunity Employer where everyone is welcome. Our innovation and technology are inspired by an inclusive culture unlike any other. Everyone brings a different personal story and perspective and this diverse mix of minds, backgrounds, and experiences is where our greatest ideas come from. We welcome people of all races, ethnicities, ages, religions, abilities, genders, and sexual orientations to make us an even more vibrant company.

#J-18808-Ljbffr