Lead Security Engineer

at interface.ai
  • Remote - India

Remote

Cybersecurity

Senior

Job description

interface.ai is the industry’s-leading specialized AI provider for banks and credit unions, serving over 100 financial institutions. The company’s integrated AI platform offers a unified banking experience through voice, chat, and employee-assisting solutions, enhanced by cutting-edge proprietary Generative AI.

Our mission is clear: to transform the banking experience so every consumer enjoys hyper-personalized, secure, and seamless interactions, while improving operational efficiencies and driving revenue growth.

interface.ai offers pre-trained, domain-specific AI solutions that are easy to integrate, scale, and manage, both in-branch and online. Combining this with deep industry expertise, interface.ai is the AI solution for banks and credit unions that want to deliver exceptional experiences and stay at the forefront of AI innovation.

About the Role

We are seeking a Lead Security Engineer to own and scale our Application and Cloud Security programs. You will be responsible for designing and enforcing security best practices across our codebase, cloud infrastructure, development lifecycle, and production environments.

This role will partner closely with engineering, product, and compliance teams to embed security into every stage of our build, deploy, and delivery processes. You are expected to drive a shift-left security culture, where secure design, secure development, and proactive detection are core to how we build and operate.

Key Responsibilities

Application Security

  • Perform security assessments across our application stack, including threat modeling, code reviews, dynamic scanning, and penetration testing.
  • Build and maintain secure SDLC practices, including integration of security checks into CI/CD pipelines.
  • Guide teams in secure design patterns, including secure authentication, input validation, access control, session management, and secure storage.
  • Continuously monitor and remediate vulnerabilities in source code and dependencies (SCA, SAST, DAST).
  • Partner with engineering teams to define and enforce coding standards aligned with OWASP and CWE guidelines.

Cloud & Infrastructure Security

  • Design and maintain secure configurations for AWS environments, including networking, identity management (IAM), encryption, and logging.
  • Implement and manage security services such as GuardDuty, Inspector, Security Hub, and other cloud-native tools.
  • Define and enforce infrastructure-as-code (IaC) security controls using tools such as Terraform, CloudFormation, or policy-as-code frameworks (e.g., OPA, Sentinel).
  • Lead efforts in runtime protection, including workload scanning, intrusion detection, and anomaly alerting.
  • Ensure centralized, secure log collection, monitoring, and alerting across all infrastructure components.

Security Architecture & Best Practices

  • Champion a shift-left approach to security—collaborating with developers early in the SDLC and providing actionable feedback during design, build, and review phases.
  • Collaborate with product managers and infrastructure leads to ensure security is embedded into architectural decisions, particularly for high-risk features or regulated workflows.
  • Define and promote secure defaults, least-privilege access, and zero-trust architectural principles.
  • Ensure strong key management and encryption standards are applied across data at rest, in transit, and in use.

Governance, Risk & Compliance

  • Support compliance initiatives by building and documenting enforceable security controls.
  • Work with auditors and risk teams to demonstrate maturity of security processes and ongoing improvements.
  • Establish internal security policies, operational procedures, and regular audit activities.

What We Expect

  • Lead the adoption of security by design across engineering functions.
  • Embed continuous security testing into our CI/CD pipelines.
  • Maintain a developer-centric approach to security—minimizing friction while enforcing strong protections.
  • Build scalable policies and automation for secrets management, code signing, and environment hardening.
  • Keep pace with evolving security threats, technologies, and tools, proactively updating controls and detection mechanisms.
  • Represent security posture to executive and customer stakeholders with clarity and confidence.

What You Bring

Required

  • 6+ years of experience in security engineering with a primary focus on application and cloud security
  • Proficiency with programming languages like, Java, Python, JavaScript and web technologies (e.g., HTML, CSS, SQL).
  • In-depth knowledge of application security vulnerabilities, threat modeling, and SDLC integrations
  • Deep familiarity with Cloud security architecture and services (AWS - IAM, VPC, KMS, GuardDuty, CloudTrail, etc.)
  • Experience with DevSecOps tools and practices, including SAST, DAST, container scanning, and infrastructure scanning
  • Hands-on experience in implementing industry best practices in access control, encryption, and security observability
  • Excellent communication skills, with the ability to collaborate across engineering, product, and compliance teams
  • Bachelor’s degree in Computer Science, Information Security, or a related field.

Preferred

  • Experience in high-compliance industries such as financial services, healthcare, or government
  • Familiarity with policy-as-code, secrets management tools, and container security
  • Certifications such as OSCP, AWS Security Specialty, or CISSP

Why Join Us

  • Security is not a checkbox—it is fundamental to our success and product trust.
  • You will be empowered to define best-in-class standards that scale across financial AI products, and dynamic customer environments.
  • You will work in an organization that values speed and security, backed by a world-class engineering team and product-first culture.

At interface.ai, we are committed to providing an inclusive and welcoming environment for all employees and applicants. We celebrate diversity and believe it is critical to our success as a company. We do not  discriminate on the basis of race, color, religion, national origin, age, sex, gender identity, gender expression, sexual orientation, marital status, veteran status, disability status, or any other legally protected status. All employment decisions at Interface.ai are based on business needs, job requirements, and individual qualifications. We strive to create a culture that values and respects each person’s unique perspective and contributions. We encourage all qualified individuals to apply for employment opportunities with Interface.ai and are committed to ensuring that our hiring process is inclusive and accessible.

Share this job:
Please let interface.ai know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at interface.ai

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply