About OnePay

OnePay is a consumer financial services app with an exceedingly simple mission: to help people achieve financial progress.

Tens of millions of Americans today are unbanked or underbanked, meaning they don’t have enough money in savings to cover a minor emergency. They pay too much in fees, don’t have access to credit at affordable rates, and have little ability to grow their wealth. OnePay’s vision is to create a single app for consumers to save, spend, borrow, and grow their money, bringing our mission to life with simple and accessible banking, credit, and payments products that deliver a best-in-class experience to millions of customers. Our products include:

• Checking and high-yield savings accounts

• Domestic and international peer-to-peer payments

• Credit Builder and credit score monitoring

• Digital wallet / contactless payment solutions

• Buy-now-pay-later installment loans at Walmart

Why do we have a right to win? We have the backing of Walmart (a Fortune 1) and Ribbit Capital (a preeminent fintech investor), are deeply embedded with the distribution of the world’s largest omnichannel retailer, and have an industry-leading multi-product value proposition — all in addition to having some of the best people and talent in the industry.

There’s never been a better time to build a category-defining business and there has rarely been a team better positioned for the opportunity. Join us!

The Role

As a Corporate Security Engineer at OnePay, you’ll architect and own the security foundation for all corporate infrastructure. You'll drive automation-first solutions, harden identity systems, and secure endpoints and SaaS applications—ensuring the business operates securely and efficiently. Security is embedded in everything you do, and your work directly strengthens the company’s security posture.

This role is responsible for:

• Identity & Access Management

  • Harden AWS IAM roles, policies, and cross-account access.

  • Integrate SaaS apps with SSO (e.g., Okta) and enable automated just-in-time provisioning.

  Device & Endpoint Security

  • Define and manage macOS baselines via Jamf Pro or other MDMs.

  • Deploy vulnerability management and EDR tools across endpoints.

  SaaS & Data Security

  • Enforce least-privilege access across Google Workspace, Okta, and others.

  • Build and implement DLP policies and secure sharing paths.

  Automation & Infrastructure-as-Code

  • Codify controls using Terraform, CloudFormation, or Python.

  • Build event-driven security workflows and self-service guardrails.

  Operations & Incident Response

  • Lead corporate DR planning and ensure IT systems resilience.

  • Participate in incident response, tabletop exercises, and improve preparedness.

  Cross-Functional Partnership

  • Collaborate with IT, DevOps, and product teams on shared objectives.

  • Translate technical risks into actionable business decisions.

  • Mentor engineers and foster a security-first mindset across the org.

You Bring

• 10+ years in IT, with 5+ years focused on enterprise security in cloud-native environments.

• Deep expertise in AWS IAM, SaaS integrations, and security controls.

• Strong scripting and automation skills in Python or Go.

• Infrastructure-as-Code experience (Terraform, CloudFormation).

• Comfort working with APIs (AWS, Google Workspace, Okta, Jamf, ZTNA, etc.).

• Familiarity with Zero Trust and DLP platforms (e.g., Netskope, Zscaler).

• Networking and authentication fundamentals (SAML, OAuth, LDAP, etc.).

• Working knowledge of frameworks like MITRE ATT&CK, NIST CSF, CIS benchmarks.

• A bias for action: curious, fast-learning, and committed to documenting as you go.

What We Offer

• Competitive base salary, stock options, and health benefits from Day 1

• 401(k) plan with company match

• Remote-friendly (US), flexible time off (FTO), and opportunities for growth

• A high-growth, mission-driven, inclusive culture where your work has real impact

Standard Interview Process

• Initial Interview with Talent Partner

• Technical or Hiring Manager Interview

• Team Interview

• Executive Interview

• Offer!

Equal Employment Opportunity

To build technology and products that are used and loved by people and solve real-world problems, we need to build a team with many different perspectives and experiences. We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We encourage candidates from all backgrounds to apply. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us at talent@onepay.com.