Senior Information Security Engineer


Classy's security team is hiring a Senior Security Engineer to help manage, maintain and enhance our security controls, policies and risk management systems. As a senior security engineer focused on our application, you can expect to spend the majority of your time working with the larger engineering team in a dedicated AWS environment with multiple layers of security controls. The ideal candidate will combine solid security engineering expertise with product aptitude, is driven by exciting technical challenges that come with scale, and thrives in a fast-paced, iterative, and collaborative environment. We want to talk to you if you are unfazed by the idea of refactoring and improving our existing systems to make them more robust, maintainable, and scalable. 

 What you’ll do:

  • Operating and improving our security controls implemented as part of our PCI DSS compliance program 
  • Security code reviews that go above and beyond what can be found through scanning tools
  • Performing and reviewing system and vulnerability scans with a focus on application security 
  • Cloud and network security reviews of AWS infrastructure that is implemented via infrastructure as code
  • Participating in security monitoring, incident response, and investigations
  • Preparing for and representing Classy in external PCI DSS audits
  • Manage internal networking, including research and implementation of new networking hardware and services
  • Collaborating with business stakeholders to perform risk assessments and treatments
  • Driving security and privacy initiatives, training, and features to reduce risk

What you bring (Required):

  • 5+ years experience in Information Security 
  • CIS degree or equivalent 
  • Extensive JavaScript experience working with code for security reviews, investigations, updates, and implementing security features.
  • Understanding of cloud infrastructure and infrastructure as code within Amazon Web Services (AWS)
  • Understanding of TCP/IP Protocols and network analysis

What would be awesome to have (Preferred):

  • Security +, CISM, or equivalent certifications
  • Audit and customer facing experience
  • Network and systems administration background
  • Ecommerce experience

Our amazing perks!

  • Unlimited PTO
  • 10 half-day Fridays a year
  • 20 hours paid volunteer time off
  • Monthly parking pass, public transit pass, or rideshare allowance
  • Supplemental Medical/Dental/Vision Insurance, available day one
  • 401(k) plan
  • Dog friendly office
  • Fitness membership discounts
  • Love the active life? We have company and team outings and participate in team sports
  • Monthly employee development courses
  • New expansive office in downtown San Diego overlooking Petco Park baseball stadium and the ocean

About Classy 

Classy is a social enterprise that creates world-class online fundraising software for nonprofits, modernizing the giving experience to accelerate social impact around the world. Recognized as one of the most valuable tech startups in San Diego, Classy is trusted by organizations of all sizes, from the fastest-growing nonprofits like Team Rubicon and The Trevor Project, to some of the world's largest social organizations, such as The Salvation Army, Robin Hood Foundation, and Shriners Hospitals for Children. Working for Classy means you’re an integral part of our mission—to mobilize and empower the world for good—and our unique culture. You’ll learn, contribute to amazing customer experiences, and flourish alongside colleagues who are determined to make a lasting social impact. For more information, visit or follow Classy on Twitter @Classy.

Dedication to Diversity 

Classy is working toward building a more diverse and inclusive environment that is representative of individuals of all backgrounds, experiences, and lifestyles, allowing all employees to feel comfortable being their true, authentic selves in a space that enables productivity and meaningful work.

Share this posting
Apply for this job