Staff Security Engineer - Credit Karma

Overview

• Design and implement secure cloud architectures across AWS, GCP, and/or Azure aligned to zero-trust principles
• Lead cloud network security initiatives including segmentation, micro-segmentation, traffic inspection, ingress/egress controls, and identity-aware networking
• Build and deploy AI-driven security automation using Generative AI and LLM-based agents to detect, triage, and remediate security findings
• Develop intelligent guardrails for CI/CD pipelines, enabling automated policy enforcement and pre-deployment security validation
• Implement and manage data security controls including encryption, key management, tokenization, and data loss prevention strategies

Responsibilities

• Lead applied cryptography efforts including PKI design, certificate lifecycle management, and secrets management in distributed systems
• Operate Tier-0 production systems with strong operational rigor, participating in on-call rotations and leading incident response efforts
• Conduct security design reviews, threat modeling, and architecture risk assessments
• Partner with engineering, and platform teams to embed secure-by-design practices across the software lifecycle
• Research, evaluate, and introduce modern cloud security technologies and AI-enabled security capabilities
• Mentor and coach junior engineers, raising the technical bar across cloud networking and security automation domains
• Contribute across multiple security domains including Network Security, Data Security, Cryptography/PKI, and Detection & Response

Qualifications

• 8+ years of experience in Cloud Security Engineering, Security Architecture, or related infrastructure security roles
• Strong expertise in core cloud networking (VPC/VNet design, routing, peering, DNS, load balancing, firewalls, private connectivity, service mesh)
• Deep understanding of zero trust principles, micro-segmentation, and least-privilege access enforcement
• Proven experience designing and securing large-scale AWS, GCP, or Azure environments
• Hands-on experience building security automation using Python, Go, or similar languages
• Practical experience applying AI and Generative AI (LLMs/agents) to automate security operations, triage, and remediation workflows
• Experience operating Tier-0 or mission-critical production systems with participation in incident response and on-call rotations
• Ability to perform threat modeling, architecture reviews, and risk assessments across distributed cloud systems
• Demonstrated ability to mentor junior engineers and raise technical standards across teams
• Clear and effective communication skills, capable of influencing both technical teams and leadership

Intuit provides a competitive compensation package with a strong pay for performance rewards approach. This position may be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at Intuit®: Careers | Benefits). Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing fair pay for employees, Intuit conducts regular comparisons across categories of ethnicity and gender.