At NerdWallet, we’re on a mission to bring clarity to all of life’s financial decisions. We are seeking a **Security Engineer II** to join our **Application Security team**. In this role, you will partner closely with engineering teams to reduce security risk throughout the software development lifecycle. Your contributions will strengthen NerdWallet’s security posture by improving tooling, workflows, and standards that help engineers build secure software while maintaining a great developer experience.
### Responsibilities:
- Help scale NerdWallet’s application security program through automation, tooling, and developer enablement.
- Partner with engineering and product teams to identify and remediate security gaps across multiple systems.
- Build tools, processes, and automation that improve security posture visibility for engineers and leadership.
- Review pull requests and provide actionable guidance on secure coding practices.
- Support operational work during security investigations or incidents affecting applications.
- Help integrate security practices into the secure development lifecycle (SDLC) across teams.
### Requirements:
- Familiar with common web application vulnerabilities and mitigation techniques, such as the OWASP Top 10.
- Pragmatic in your approach to reducing risk, balancing security improvements with product and engineering priorities.
- Curious and motivated to solve security challenges collaboratively.
This role is ideal for someone who enjoys building scalable solutions and helping engineers integrate security practices into their day-to-day work.