AutoFi
Automotive
SeniorSecurityEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Senior Security Engineer at AutoFi. Skills: Application security, Cloud security, Threat hunting, Incident response. Define security practices. Implement security controls”
Industry & Context.
Sophisticated logical thought processes
What They're Looking For.
Must Have
6+ years of experience in security engineering, application security, cloud security, security operations, or a related security function, Experience designing and implementing security controls for modern SaaS, cloud, web application, and API environments, Hands-on experience with application security practices, including secure design reviews, threat modeling, secure code review, vulnerability assessment, and OWASP-based testing methodologies, understanding of SAST, DAST, IAST, and SCA tooling, Experience with web & cloud security controls/frameworks, Familiarity with network and web application protocols (HTTP/S, SAML 2.0, OAuth, Rest APIs), Experience with SIEM platforms, alert triage, security investigations, detection workflows, and incident response procedures, Familiarity with indicators of compromise, indicators of attack, threat hunting techniques, and incident escalation processes, Industry experience building data-driven applications with Javascript, Node.js, and NoQSL, Ability to communicate security risks clearly to engineering, product, compliance, business, and executive stakeholders, Comfortable operating in a fast-paced environment with evolving priorities and shared ownership across multiple security domains
Nice to Have
Experience with common threat modeling frameworks (STRIDE, DREAD, etc), Experience with cloud-based Web Application Firewall solutions and web application protection strategies, Familiarity with CNAPP, CSPM, CWPP, container security, runtime security, or cloud workload protection platforms, Experience with source code security platforms such as GitHub Advanced Security or similar tools, Experience conducting proactive threat hunting across cloud, identity, endpoint, network, SaaS, and application telemetry, Familiarity with ethical hacking and penetration testing tools & methodologies, Experience with AWS security best practices and native controls & services, Prior Automotive or FinTech experience
What You'll Do.
Define security practices
Implement security controls
Maintain security standards
Conduct security design reviews
Implement DevSecOps tooling
Assess infrastructure security
Triage vulnerability findings
Conduct proactive threat hunting
Support security operations improvement
Assist with third-party risk management
Conduct vendor security assessments
Reduce third-party risks
How You'll Work.
Team & Collaboration
Work closely with development teams; Partner with engineering teams; Collaborate with product managers; Work with third-party groups; Communicate security risks to stakeholders
Communication Scope
Communicate security risks clearly
Full Job Description
## Description About AutoFi AutoFi is the leading provider of digital commerce technology that powers the sales and finance experiences for the most innovative brands and dealers in automotive. The AutoFi platform enables a more transactional buying experience with $4B in funded loans processed through AutoFi annually. AutoFi’s dynamic selling platform empowers dealers to sell vehicles more efficiently and profitably, both online and in the showroom. We are funded for years of future growth and backed by investors including Crosslink Capital, Santander Holdings USA, SVB Financial Group, Ford, BMW iVentures and JP Morgan Chase. Our team is diverse - spread out across the U.S. and Canada, we have backgrounds from finance and technology as well as deep experience in all areas of the auto space. We’re empathetic, gritty, curious, and humble owners of this business and are supported by some of the biggest names in the auto and financial industries as commercial partners. We’ve never been more excited about the opportunity in front of us to help transition the auto industry from offline to online. If changing a trillion-dollar industry sounds exciting, we’d love to hear from you. For more information, visit www.autofi.com. About the Role: AutoFi is looking for a passionate and driven Senior Security Engineer. You will work closely with development teams, product managers, and third-party groups to ensure AutoFi’s products, services, cloud environments, internal systems, and vendor ecosystem are secure. You will contribute to secure design reviews, application security standards, vulnerability management, security monitoring, incident response, threat hunting, and third-party security assessments. This role is ideal for someone who is comfortable working across both proactive and operational security functions in a fast-paced environment. ## Responsibilities Define, implement, and maintain security practices, standards, and controls across AutoFi’s products, services, clo
Applying for this Senior Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about AutoFi?
Real rants from real employees. Read before you apply.