Intuit Credit Karma is a mission-driven company, focused on championing financial progress for our more than 140 million members globally. While we're best known for pioneering free credit scores, our members turn to us for everything related to their financial goals, including identity monitoring, applying for credit cards, shopping for insurance and loans (car, home and personal) and savings accounts and checking accounts* – all for free. Credit Karma has grown significantly through the years: we now have more than 1,700 employees across our offices in Oakland, Charlotte, Culver City, San Diego, London, Bangalore, and New York City.
*Banking services provided by MVB Bank, Inc., Member FDIC
We are looking for an exceptional Enterprise Security Architect to strategize, design, and guide the implementation of our rapidly expanding security capabilities to secure applications and data in multi-/hybrid-cloud environments. With superb technical competency in the areas of cloud, Application, data security, and Identity and Access Management, you'll lead and partner with an innovative and passionate team of engineers to create and implement effective, cost-efficient, and low-friction security solutions using cutting-edge technologies.
This individual would create security strategies, roadmaps, patterns, and standards to secure a large enterprise, aligned with multiple industry standards & business drivers, work in a boundaryless fashion, collaborate with peer architects, engineering, DevOps, Risk, Compliance, and other business stakeholders to manifest necessary alignment related to enterprise security outcomes. As a subject matter expert, you will bring your industry expertise to help the team navigate through unique technology challenges. This role will be responsible for supporting cross-functional projects/initiatives and will utilize critical thinking and problem-solving to reduce risks and deliver exceptional value to our customers and business outcomes.
What you'll do:
- Working with security & business leaders, you will create enterprise security strategies & roadmaps to provide a balanced defense with effective and cost-efficient technologies, and work with multiple teams across the organization to implement the solutions in multi-/hybrid-cloud (AWS & GCP) environments
- As a front-line leader and subject matter expert, you will lead multiple initiatives & work with engineering teams to create security architectures that are effective, cost-efficient, and with low user friction in order to mitigate risks and meet business objectives and regulatory requirements
- Research, designs, advocates, and builds new technologies, architectures, and security products that will support security strategies, patterns, and standards
- Perform threat modeling, provide in-depth technical analysis on risks and issues and create security solutions to resolve multiple security risks
- Drive a company-wide program to develop, vet, and deploy a library of security design patterns and standards to improve security and accelerate development
What we expect:
- BS or equivalent. Minimum of 10+ years of experience in cybersecurity, technical & enterprise architecture
- 5+ years of experience with Cloud Security, including GCP and AWS Security
- Strong understanding of network security technologies, their operation and limitations including: Firewalls, Network IDS/IPS Solutions, Network Microsegmentation, Network Access Control solutions ,IPSec and TLS based VPNs , Egress controls, Web Application Firewalls and OWASP top 10 web/api attacks.
- Experience performing threat modeling for systems and infrastructure & developing network security architecture & design utilizing best practices, security principles & patterns.
- Define, vet, and socialize security design patterns and standards in a large organization.
- Experience presenting technical security content to a large group
Even Better:
- Ability to build a healthy level of partnership at all levels of the organization. Highly collaborative, able to drive large, diverse teams worldwide through influence and collaboration. Directly contribute to enterprise security capabilities design and prototype work.
- Interact and negotiate with application owners, product managers, program managers, vendors, and contractors to architect, design, and support the implementation of enterprise security solutions while ensuring the highest levels of quality.
- Expert level knowledge and hands-on experience in network security, including operating on scalable WAF and Egress controls, microsegmentation, SASE architecture, Application Security and mitigating OWASP 10 attacks.
- Exposure to most of the following technologies: Splunk, New Relic, Akamai WAF, Layer 3/4/7 Firewalls, Bot mitigation, Intrusion Detection and Intrusion Prevention Systems.
- You possess vision and an eagerness to challenge the status quo, balanced with a reasonable and helpful approach to effecting change, managing disparate workstreams, and are comfortable with regular changes of context.
Benefits at Credit Karma include:
- Medical and Dental Coverage
- Retirement Plan
- Commuter Benefits
- Wellness perks
- Paid Time Off (Vacation, Sick, Baby Bonding, Cultural Observance, & More)
- Education Perks
- Paid Gift Week in December
Pay Transparency Notice:
Credit Karma’s mission of championing financial progress for all starts from within. That’s why we implemented role-based compensation, which ensures people who are in the same role receive the same pay with variations for geographic location only. It’s all part of a more comprehensive DEI strategy that helps level the playing field. The base salary range for this role is 215,000 - 300,000, plus equity and benefits.
Equal Employment Opportunity:
Credit Karma is proud to be an Equal Employment Opportunity Employer. We welcome all candidates without regard to race, color, religion, age, marital status, sex (including pregnancy, childbirth, or related medical condition), sexual orientation, gender identity or gender expression, national origin, veteran or military status, disability (physical or mental), genetic information or other protected characteristic. We prohibit discrimination of any kind and operate in compliance with applicable fair chance laws.
Credit Karma is also committed to a diverse and inclusive work environment because it is the right thing to do. We believe that such an environment advances long-term professional growth, creates a robust business, and supports our mission of championing financial progress for everyone. We offer generous benefits and perks with a single eye to nourishing an inclusive environment that recognizes the contributions of all and fosters diversity by supporting our internal Employee Resource Groups. We’ve worked hard to build an intensely collaborative and creative environment, a diverse and inclusive employee culture, and the opportunity for professional growth. As part of the Credit Karma team, your voice will be heard, your contributions will matter, and your unique background and experiences will be celebrated.
Privacy Policies:
Credit Karma is strongly committed to protecting personal data. Please take a look below to review our privacy policies: