Senior Cybersecurity Engineer

Join a fintech unicorn rocketship! Tipalti is an AI‑powered platform that automates finance for mid‑market businesses. The solution spans accounts payable, global payouts, procurement, employee expenses, corporate cards, supplier management, tax compliance, and treasury, accelerating finance operations across more than 200 countries.

In This Role, You Will Be Responsible For:

• Design, implement, and maintain security architectures and controls across the organization’s cloud, SaaS, and corporate environments.
• Protect sensitive data across endpoints, SaaS applications, and cloud platforms by implementing and managing Data Loss Prevention (DLP) and data protection controls.
• Secure cloud infrastructure (AWS / Azure / GCP) by identifying misconfigurations, enforcing security baselines, and implementing cloud hardening and least‑privilege access models.
• Maintain and manage security technologies such as firewalls, WAF, EDR/XDR, IDS/IPS, SASE, DLP, IAM, and SIEM platforms.
• Identify, prioritize, and remediate vulnerabilities and security findings across infrastructure, SaaS applications, and cloud environments.
• Design and enforce identity and access controls, including SSO, MFA, RBAC, and privileged access management.
• Monitor and improve security posture by analyzing security telemetry, alerts, and logs across enterprise systems.
• Lead and execute cross‑organizational security projects aimed at strengthening the company’s overall security posture.
• Collaborate with Engineering, DevOps, IT, and Security Operations teams to implement security controls and reduce organizational risk.
• Ensure security controls and processes align with internal policies and compliance frameworks such as ISO 27001 and SOC 2.

Qualifications:

• Extensive experience in information security, securing Linux and Windows environments – Mandatory.
• Proven experience in IT infrastructure or system engineering, including Active Directory – Mandatory.
• Proven experience managing enterprise security controls such as VPN, firewalls, EDR/XDR, IDS/IPS, patch management, and secure access platforms – Mandatory.
• Strong background in network security, system security, and cloud infrastructure security.
• Experience implementing or operating Data Loss Prevention (DLP) or data protection solutions.
• Hands‑on experience securing cloud environments (AWS, Azure, or GCP) and modern SaaS ecosystems.
• Familiarity with identity and access management technologies, including SSO, MFA, RBAC, and identity lifecycle processes.
• Experience with encryption, key management, and certificate management.
• Strong understanding of application security concepts and Layer 7 security mechanisms.
• Familiarity with security frameworks and compliance standards such as ISO 27001, SOC 2, or NIST.
• Excellent written and verbal communication skills in English, with the ability to collaborate across teams.

Advantages:

• Scripting and Automation: Proficiency in Python, PowerShell, or Bash scripting for automation.
• Security certifications (CISSP, CEH, Security+, etc.).

Equal Opportunity Employment: Tipalti champions inclusive teams, welcomes applications from candidates belonging to historically underrepresented or disadvantaged groups, and maintains an equitable Talent Acquisition process that is free from discrimination. As an equal opportunities employer, Tipalti complies with employment and human rights laws across the various jurisdictions in which we operate. If you require reasonable adjustments or accommodations during the recruitment process, please contact hr@tipalti.com.