Senior Security Engineer

United States

Full Time Senior level / Expert
Hopper logo
Apply now Apply later

Posted 1 month ago

At Hopper, we’re on a mission to build the most customer-centric travel company on earth. We are leveraging the power that comes from combining massive amounts of data and machine learning to build the world’s fastest-growing mobile first travel marketplace -- one that enables our customers to save money and travel better.
Hopper’s goal is to reduce traveler anxiety throughout all stages of the trip buying and taking process. By creating a transparent travel marketplace and unique, data-driven financial technology products focused on providing peace-of-mind, Hopper adds value along each step of the customer’s journey.
Hopper has launched several bespoke fintech products that leverage our immense first and third-party data to create products and value that do not exist elsewhere - including Refundable and Flexible Tickets and Price Freeze. Thanks to these offerings, Hopper’s revenue growth is up 112% despite the travel slowdown due to COVID-19.
With over $250M CAD in funding from leading investors in both Canada and the US, Hopper is primed to continue its acceleration to becoming the world’s fastest-growing end-to-end customer-centric travel offering.
Recognized as one of the world’s most innovative companies by Fast Company three years in a row, Hopper has been downloaded over 50 million times and sees over 1 million new installs per month. The app has received high praise in the form of mobile accolades such as the Webby Award for Best Travel App of 2019. 
Come take off with us!
As a Senior Security Engineer, you will be a core member of Hopper's Information Security Team within Hopper's B2B partnerships group. This role represents a key position responsible for the continuous safeguarding of Hopper's data in a cloud environment, assuring the trust of our customers and partners, and executing on the organization’s Information Security strategy. You will help us formalize our information security and risk management frameworks and participate actively in attaining and maintaining a recognized security certification. 


  • Participate in formalizing Hopper information security to conform to a security standard (ISO 27001, NIST etc.)
  • Conduct security audits
  • Conduct security and vulnerability analyses and risk assessments
  • Provide technical knowledge, guidance, and expertise for security tools and processes
  • Contribute to the design, development, and maintenance of infrastructure environments
  • Apply your expertise to help develop security requirements, security policies, standards and best practices for the organization
  • Implement, maintain, monitor and tune security tools and seek to continually improve Hopper's overall security posture
  • Evaluate, respond, and mitigate alerts that originate from all security tools e.g. SIEM, DLP, Vulnerability Assessment, Endpoint, WAF, etc.


  • Technical Degree(s) in computer science, security or a related field
  • Recognized information security certification (CISSP, CCSP, CISA)
  • Up-to-date knowledge of issues and trends in IT Security, especially in Cloud environments
  • Experience in formal information security frameworks (ISO 27001/NIST CSF)
  • Experience in conducting and participating information security audits
  • Exposure to formal risk management frameworks (ISO 31000, NIST RMF)
  • Familiarity with security operations processes and procedures
  • Experience with one or more public cloud platforms (GCP, AWS, Azure)
  • Demonstrated expertise securing public cloud environments
  • Experience with DevOps, DevSecOps and/or Site Reliability Engineering
  • Ability to communicate effectively with colleagues at various technical levels
  • Worked in Agile delivery teams and environment
  • Past success analyzing data, drawing accurate conclusions, and adjusting strategy accordingly
  • A collaborative nature, working with diverse teams, from business leaders to individual contributors
  • Experience creating automated solutions & eagerness to automate
  • Experience in Financial Services, Travel or Mobile is a plus
• Well-funded and proven startup with large ambitions, competitive salary and stock options• Dynamic and entrepreneurial team where pushing limits is everyday business• 100% employer paid medical, dental, vision, disability and life insurance plans• Access to a 401k (US) or Retirement Savings Plan (Canada)
Job tags: Audits AWS Azure CISA CISSP DevOps ISO 27001 Machine Learning NIST SIEM Strategy
Job region(s): North America
Share this job: