Skip to main content

Senior Security Engineer

Category Security, Risk & Fraud Location New York, New York Job ID 2024-56225
Apply Now

Company Overview

Intuit is the global financial technology platform that powers prosperity for the people and communities we serve. With approximately 100 million customers worldwide using products such as TurboTax, Credit Karma, QuickBooks, and Mailchimp, we believe that everyone should have the opportunity to prosper. We never stop working to find new, innovative ways to make that possible.

Job Overview

We are seeking an experienced and highly skilled Senior Security Engineer with over 5 years of experience in penetration testing and vulnerability management. This role requires deep expertise in identifying, assessing, and mitigating security vulnerabilities across various platforms and systems. The successful candidate will lead security assessments and collaborate closely with cross-functional teams to ensure our organization's security posture is robust. In addition, strong programming skills are essential to automate and streamline testing processes. Knowledge of OWASP, SANS25, CVE, and MITRE frameworks is crucial for this role.

This is an excellent opportunity for a seasoned security professional to make a significant impact on our organization's security posture by leading and enhancing our penetration testing and vulnerability management efforts. If you are passionate about cybersecurity and possess the required skills and experience, we encourage you to apply.

Responsibilities

  • Conduct hands-on penetration testing of Generative AI applications and integrations, web applications, mobile applications, cloud environments, and Thick Client application ecosystems to identify vulnerabilities.
  • Lead and manage the penetration testing and vulnerability management program, ensuring thorough planning, execution, and reporting.
  • Validate identified vulnerabilities by removing false positives and develop remediation plans in conjunction with relevant teams.
  • Utilize knowledge of OWASP Web, LLM and Mobile Top 10, SANS Top 25, CVE, and MITRE ATT&CK frameworks to guide security assessments and threat modeling.
  • Work with the product development team and follow up on the security defects.
  • Automate penetration testing processes, including onboarding, scanning, and reporting using available toolsets and scripting languages (e.g., Python, Perl, Bash).
  • Automate the vulnerability management process and day-to-day tasks.
  • Interface with executive leadership and technical staff to communicate findings, strategies, and remediation plans effectively.
  • Develop and maintain penetration testing and vulnerability assessment methodologies, procedures, and tools.
  • Stay current with the latest security threats, vulnerabilities, and trends, and integrate this knowledge into testing procedures and methodologies.
  • Conduct security assessments for third-party vendors and suppliers to ensure compliance with security standards and policies.
  • Prepare comprehensive reports and presentations that convey complex security findings to both technical and non-technical stakeholders.
  • Collaborate with various teams within the organization, including Product Development, Blue Team, Security Engineering, and Vulnerability Management, to ensure comprehensive security coverage.
  • Procure, develop, and maintain an inventory of security tools needed for various operations.
  • Identify, collect, and report metrics related to the program's progress, operations, and findings.
  • Research and assess new threats and vulnerabilities, providing informed recommendations for mitigating risks.

Qualifications

  • Bachelor’s degree in computer science, Information Security, or a related field. Equivalent experience will be considered.
  • Minimum of 5 years of experience in penetration testing and vulnerability management.
  • Strong understanding of penetration testing and vulnerability management methodologies, procedures, and tools.
  • Experience with LLM, Generative AI Models and prompt engineering (OpenAI, Google Gemini, Claude etc.)
  • Penetration testing experience with Generative AI applications is a plus.
  • Demonstrated experience with vulnerability assessment tools such as Burp Suite, Nessus, Rapid7 Insight AppSec, Appspider, and Metasploit.
  • In-depth knowledge of authentication and authorization protocols and technologies such as OAuth, OpenID Connect, SAML, and LDAP.
  • Strong understanding of OWASP Web, LLM and Mobile Top 10, SANS25, CVE, and MITRE ATT&CK frameworks.
  • Strong programming skills in Python, Perl, or Bash, with a focus on automating security processes.
  • Excellent communication and presentation skills, with the ability to articulate complex security concepts to technical and non-technical stakeholders.
  • Strong analytical and problem-solving skills, with the ability to prioritize vulnerabilities based on risk.
  • Relevant certifications such as OSCP, OSWE, OSEP, CRTE, CRTP are preferred.
Apply Now

Intuit provides a competitive compensation package with a strong pay for performance rewards approach. The expected base pay range for this position is New York $161,500 - $219,000. This position will be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at Intuit®: Careers | Benefits). Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing pay equity for employees, Intuit conducts regular comparisons across categories of ethnicity and gender.

Related Content

  • Video

    GED is a weeklong code-a-thon that brings together Intuit technologists from all over the world to innovate and collaborate on projects they’re passionate about.

  • woman looking in mirror

    Article

    Benefits

    We support our employees by offering benefits you need to stay healthy, achieve financial security, and enjoy peace of mind for you and your family.

  • Blog

    The Data Mesh Strategy Behind Intuit’s Global Financial Technology Platform

    Intuit has built foundational capabilities for collecting, processing and transforming raw data into a connected mesh of high quality data. Those capabilities are enabling our technologists to build personalized experiences, with speed and at scale, to deliver on our mission to power prosperity around the world

  • Article

    Hybrid Work

    Intuit embraces a hybrid way of working that brings the best of in-person collaboration and connections together with the flexibility of virtual work.

  • Blog

    How Intuit data analysts write SQL 2x faster with internal GenAI tool

    For Intuit, turning data into actionable insights is pivotal to our success in delivering awesome experiences to 100 million customers That’s why we’ve developed an internal generative AI powered tool called Query Kickstart to improve speed to insight by accelerating SQL query authoring for our data workers.

  • Blog

    How to Accelerate Development Velocity in the GenAI Era? Build a GenOS.

    Intuit is using generative AI to power our internal developer platforms to enable our software engineers and data workers to be more effective and efficient.

  • Blog

    How Intuit helps tax and bookkeeping pros do their best work

    Intuit’s Expert Network is revolutionizing the way people access financial expertise. We provide flexible career opportunities and schedules to empower experts who want to grow their careers while being present for their families and other personal or professional pursuits.

  • Blog

    4 ways Intuit helped me start a successful tax career

    While serving as an assistant manager in the hospitality industry, Fatimah Muhammad learned how to use QuickBooks and rediscovered her talent for working with numbers. By joining Intuit, she’s been able to join the tax field with the help of our free, online tax training courses.

  • Video

    Start your career as a remote tax preparer or bookkeeper through our Intuit Academy program. The program consists of self-paced online courses, followed by an exam. Upon passing the exam, you will receive a badge that you can easily display to advance your career in the industry.

  • Blog

    I was ready to up my tax game–that’s why I joined Intuit

    Michael Mills is in his third season with Intuit and his first as a TurboTax Expert. Michael utilizes our flexible schedule options to give himself the time to accomplish his ultimate career goal: Building his own practice that allows him to earn three revenue streams (bookkeeping, tax, and financial advising).

  • Video

    Intuit's Chief DEI Officer, Humera Shahid, on Diversity, Equity, Inclusion, and Belonging

  • Blog

    Accelerate your career path inside Intuit

    At Intuit, mobility plays an important role in the learning and development of our employees. Our teams offer lateral growth opportunities as well so that employees have an opportunity to explore different roles and broaden their skillset.

  • Video

    We’re building the workforce and workplace of the future by investing in our sites around the world. We're developing a high-performing and diverse workforce, and embracing hybrid work to support collaboration and connection, regardless of where we work.

You haven't viewed any jobs yet. Start exploring now to find the perfect opportunity for you!

View all of our available opportunities

You haven't saved any jobs yet. Start exploring now to find the perfect opportunity for you!

View all of our available opportunities

Sign Up for Job Alerts

Stay updated with our latest job opportunities and more.

Sign up for job alerts

Don't see what you're looking for? Sign up and we'll notify you when roles become available.

Interested InSelect a job category from the list of options. Select a location from the list of options. Finally, click “Add” to create your job alert.

  • Security, Risk & Fraud, New York, New York, United StatesRemove