About the Company
Valon’s mission is to empower every homeowner. We believe the journey of home ownership starts when you get your keys, but lasts far beyond. We’re creating a world where home ownership comes with ease, security, and financial know-how. Our growing team of engineers, operators, product enthusiasts, and experienced servicing professionals are leveraging technology to fundamentally improve the homeownership experience. Through mortgage servicing—the process of paying off one’s mortgage—Valon is taking the first step in transforming the industry one homeowner, and lender, at a time.
About the Team
Our customers entrust us with some of their most sensitive and personal financial information, and it is the ultimate mission of Valon’s Security team to ensure we have sound programs, processes, and automation in place to safeguard our customers’ data. The Security team protects the infrastructure and data for processing billions of dollars of mortgage loans. We work cross-functionally with product, engineering, IT, legal, and more to enable security throughout the organization. We engage with external security auditors, pentesting firms, and partners to continuously evaluate Valon’s security posture.
About the Role
We are seeking an experienced and skilled Senior Security Operations Engineer to join our growing team! As a key security member at Valon, you will play a critical role in ensuring the security of our organization's systems, networks, and data. This position requires a deep understanding of security technologies, threat detection and response, risk assessment, and the ability to collaborate with cross-functional teams to ensure we protect our most critical assets to uphold trust with our customers and stakeholders.
Responsibilities
- Monitor and manage security alerts and incidents, analyze data, and respond to security events.
Conduct in-depth analysis of security events, incidents, and vulnerabilities to identify root causes and recommend corrective actions
Manage and optimize security tools such as SIEM, IDS/IPS, EDR, threat intelligence platforms, and other tooling
Assist in vulnerability assessments and penetration testing activities including remediating security vulnerabilities
Collaborate with other teams to ensure the effective integration of security controls across the organization including infrastructure and applications
Develop, implement, and enforce security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of systems and data
Maintain accurate and up-to-date documentation of security processes, procedures, and configurations
Develop security metrics and reporting for management review
Support operational activities including security advisory and design, vendor security reviews, issue remediation, security awareness and training, and other processes
Support audit and compliance activities for various security domains
Ideal Background
- Proven experience in a security analyst, engineer or related role, with a focus on security reviews, threat detection and response, vulnerability management, and/or risk assessments
- In-depth knowledge and implementation of security technologies, including IDS/IPS, EDR, SIEM, SOAR, firewalls, vulnerability management tools, threat intelligence platforms or related
- Strong understanding of networking protocols, system administration, infrastructure/application security or related domains
- Experience with cloud security and environments (GCP, AWS, Azure)
- Ability to work autonomously and navigate complex efforts
- Ability to foster strong relationships and partner with stakeholders to drive results
- Excellent communication and collaboration skills, with the ability to explain complex security concepts to technical and non-technical stakeholders
- Knowledge of security and compliance frameworks (SOC 2, NIST, ISO, etc.)
- Experience or exposure to startup environments is a plus
Minimum Qualifications
- Minimum of 5 years as a technical security analyst or engineer with relevant responsibilities and background
- Bachelor's degree in Computer Science, Information Security, Technology, or a related field
- Relevant security certifications (e.g., CISSP, CISM, GIAC, CEH, CCSK or similar)
- Knowledge of cloud environments
- Experience with security technologies (IDS, EDR, SIEM, vulnerability tools or similar)
Benefits
- Base Salary for NYC and Similar Areas: $160,000 - $190,000
- Compensation: competitive salary with a meaningful stake in the company via equity and our performance bonus program and 401k plan
- Health & well-being: we’ll invest in your physical and mental well-being with comprehensive medical, dental, & vision benefits, One medical membership, and Talkspace to provide mental health support
- Food & meals: in-office snacks and drinks, and $400 monthly stipend towards your lunches or groceries
- Commuter benefits: We offer pre-tax deductions for public transportation, rideshare services, and parking expenses to make your commute more affordable and convenient.
- Grow together: Company wide orientation for you to successfully onboard and other learning & development opportunities including regular review cycles that feature 360 degree feedback
- Play together: quarterly budgets for team and company outings. Use it for team swag, cooking classes or team dinners!
- Generous time off: flexible paid time off, sick days, and 11 company holidays
- Baby bonding time!: 3 months off for birthing parents and 2 months off for non-birthing parents - fully paid so you can focus your energy on your newest addition
Throughout the interview process, please remember that emails will only be from valon.com emails. We won't ever be asking for any personally identifiable information during the interview process itself. Please reach out to talent@valon.com if you have any requests to verify the authenticity of an outreach.
Valon is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. Valon makes hiring decisions based solely on qualifications, merit, and business needs at the time.