- Design and build internal security tooling from scratch, including agent-based security tooling, code analysis tooling, dynamic scanning, and security assessment tools
- Identify vulnerabilities across SentiLink's AWS-based stack, including application code, cloud service configurations, and integrations between the two
- Develop AI-assisted and agent-based tooling to scale offensive security testing beyond what a small team can do manually
- Build and maintain security automation that improves detection, response, and remediation across the organization
- Conduct hands-on penetration testing and vulnerability research against SentiLink's infrastructure and applications
- Partner with engineering teams to remediate findings and embed security into the development process without slowing them down
- Participate in the security on-call rotation, including incident response and regular response testing
- Contribute to threat modeling and security design reviews for new systems, with a focus on cloud integrations and identity flows
- Stay current on offensive security techniques, AI-assisted security tooling, and emerging attack patterns relevant to fintech and identity verification
AWSPythonTypeScript+3 more