Security Engineer

Title: Security Engineer - Sandbox Wealth 

Location: New York City / Hybrid

Job Type: Contract / Full-Time

Salary: $150,000-$200,000

Job Description:

 

About the Company

Sandbox Wealth is an open finance platform for wealth managers. We connect data from custodians, market data providers, and other sources with bank and non-bank lenders to facilitate the free flow of capital across financial institutions and their clients. Our platform is designed for the next generation of private banking—data-rich, highly secure, and built for scale.

About the Role

We are seeking a Senior Security Engineer to help build and defend the infrastructure powering a modern private banking ecosystem. In this role, you will be responsible for designing, implementing, and maintaining security controls across our applications, infrastructure, and internal processes. You will partner closely with engineering and operations to ensure our platform—built on PostgreSQL/Python, React/Next.js, and AWS—is secure, robust, and compliant with best-in-class standards.

This position reports to the Head of Engineering.

Responsibilities

• Perform security assessments of code, infrastructure, networks, and applications.
• Implement and maintain technical security controls across infrastructure and endpoints.
• Lead threat modeling exercises and develop proactive mitigation strategies.
• Build automation for vulnerability scanning, monitoring, and incident response.
• Drive the adoption of secure development practices across the engineering team.
• Assist in the development and execution of SOC 2 standards and other frameworks.
• Respond to incidents, perform root cause analyses, and implement remediations.
• Evaluate and recommend security tooling and third-party solutions.
• Train and educate team members on security protocols and risks.
• Contribute to the evolution of our internal policies, risk posture, and DevSecOps processes.

Measures of Success

• Reduction in time to identify, respond to, and remediate security threats and incidents.
• Completion and maintenance of SOC 2 Type II certification in partnership with executive leadership.
• Implementation of automated scanning and alerting systems across infrastructure and codebases.
• Demonstrated improvements in secure coding practices via fewer vulnerabilities in code reviews and audits.
• Strong cross-functional collaboration, with positive feedback from engineering and compliance stakeholders.
• Regular delivery of actionable insights from risk assessments and threat models.
• High availability and minimal downtime from security-related issues.

• Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, or related field.
• 5+ years in a security engineering or cybersecurity role, ideally in a high-growth fintech or regulated environment.
• Deep understanding of information security principles and secure system design.
• Experience with cloud infrastructure (preferably AWS) and common IaC tools.
• Proficiency with Python and React; familiarity with deployment platforms like Vercel is a plus.
• Hands-on experience with security audits, risk frameworks, and compliance standards (SOC 2 preferred).
• Strong knowledge of vulnerability management tools, threat modeling, and incident response.
• Professional certifications such as CISSP, CISM, or CRISC are preferred but not required.
• Excellent analytical, communication, and problem-solving skills.

• This is a rare opportunity to shape the security posture of a high-impact fintech platform from the ground up. You’ll be joining a team that values craftsmanship, autonomy, and trust—and is building for the long term.