Security Engineer II

Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families. With Greenlight, parents can automate allowance, manage chores, set flexible spend controls, and invest for their family’s future. Kids and teens learn to earn, save, spend wisely, and invest.

At Greenlight, we believe every child should have the opportunity to become financially healthy and happy. It’s no small task, and that’s why we leap out of bed every morning to come to work. Because creating a better, brighter future for the next generation depends on it.

We are seeking a Security Engineer to join our growing security team. This role will have a huge impact on maintaining and improving Greenlight’s security posture by developing and implementing automated workflows or AI toolings.

What you will be doing

Design, build, and maintain high-scale automation workflows and AI-assisted capabilities that proactively mature Greenlight’s security posture. Architect and implement security guardrails for internal AI usage, ensuring LLM integrations and automated agents operate within company risk tolerances. Develop custom integrations across the security and business systems stack (SaaS, FinTech tools, and internal APIs) to eliminate manual silos. Build and configure automated tooling for real-time monitoring of data security, privacy, and vulnerability management. Partner with IT, Engineering, and Business Owners to identify operational bottlenecks and deploy AI-powered solutions that enhance both security and efficiency. Collaborate with DevOps to bake automated security controls into the CI/CD pipeline and cloud environments. Create high-quality designs, workflow diagrams, and playbooks to ensure automated systems are maintainable and transparent.

What you should bring 4+ years of professional experience in Cybersecurity, DevOps, or Software Engineering. Strong proficiency in Python (preferred) or Go for building custom security tools and API-heavy integrations. Solid understanding of cloud security principles (AWS/GCP), containerization (Docker/K8s), and securing distributed systems. Deep familiarity with the OWASP Top 10 (including LLM-specific risks) and CI/CD security best practices. Hands-on experience with CI/CD platforms (GitHub Actions, GitLab CI) and no-code/low-code automation platforms (e.g., Tines, Torq, or Tray.io). Proven experience using AI-assisted tools (Copilot, Cursor, etc.) to accelerate development and a curiosity for deploying AI-driven security solutions.

Nice to have

Experience with Infrastructure-as-code (IaC) Direct experience implementing security controls within both AWS and GCP. Security certifications such as CISSP, Security+, or specialized GIAC certifications. Experience handling data privacy requirements (SOC2, GDPR, or CCPA) within automated workflows.