Director Security Engineering

MX is a fintech company on a mission to empower the world to be financially strong. We build technology that helps banks, credit unions, and fintechs deliver smarter, more intuitive financial experiences to millions of people.

Like many startups, we’ve navigated real growth challenges — and we’ve come out stronger on the other side. Today, MX is in a phase of renewed momentum and scale, with a solid foundation and a clear vision for what’s next. This is a place where thoughtful execution matters, innovation is encouraged, and individuals have real ownership over their work.

Our culture values curiosity, accountability, and impact. We give people the space to question assumptions, design better solutions, and help shape how the company grows. If you’re looking to do meaningful work, influence outcomes, and grow alongside a company that’s ready to move fast, you’ll feel at home at MX.

As a Director of Security Engineering, you’ll work to mature our operational security capabilities, evolve our threat detection and response program, and drive strategic improvements. We’re looking for a hands-on Director of Security Engineering to join our team and help elevate our security team and program to the next level. The ideal candidate for the role will be a passionate, data driven, team-oriented, servant leader who can lead day-to-day operations, help shape the organization’s strategic direction, and, when needed, provide tactical operational support to the team.  

We are looking for a forward thinking leader already driving programs in:

• Driving the use of GenAI and Agentic AI to make Security functions more efficient and effective. 

• Deep experience securing Generative AI (GenAI) models and related data pipelines, including prompt injection mitigation and LLM security to enable our engineering teams.

• Demonstrated expertise in securing agentic AI systems, focusing on runtime protection, secure communication between agents, and mitigating risks associated with autonomous operations.

• Strong understanding of modern cloud and network security principles, especially in AWS and GCP.

• In depth experience in executing and leading all Security Engineering verticals, from product design reviews to CI/CD security to runtime security.  

This person must be mission and values-driven, must have an ownership mentality, and must put the well-being of our customers, our teammates, and our organization at the forefront of how they operate. This person must be able to operate and thrive in a dynamic, high-growth startup environment with established Security Engineering and GRC teams.

This is a critical, high-impact role that will serve as a catalyst for growth for any seasoned cybersecurity and technology leader up to the challenge. The Director of Security Engineering is the senior operational leader overseeing this critical area of the organization. This position operates within the Office of the Chief Information Security Officer (CISO) and reports directly to the CISO. The director is responsible for the daily operational leadership and management of the company’s enterprise cybersecurity, information security, and related programs. Additionally, they partner with the Director, GRC to ensure the effective governance of security risks necessary to manage organizational risk, maintain compliance with relevant frameworks and programs, implement resilient and secure IT systems, and prioritize security, privacy, and customer trust throughout the organization.1

Here are some of the problems you’ll help us solve:

• Program Leadership - Develop and refine the overall vision and strategy for the Security Engineering and Operations program, aligning it with business objectives, risk appetite, and industry best practices.1

• Team Management - Lead, mentor, and develop a high-performing team of cybersecurity engineers, focusing on the concepts of Service Ownership.  Own and direct a service ownership model for all security services based on security design foundations. The services will be closely tracked for effectiveness using service outcome metrics, maturity metrics, and business ROI metrics. Foster a collaborative and results-oriented environment.  Assign tasks, provide feedback, and conduct performance reviews.1

• Process Improvement - Continuously evaluate and improve engineering processes and system/control performance, identifying areas for automation, optimization, and increased efficiency.  Develop and maintain relevant policies, procedures, and standards.1

• MX Platform oversight - Partner with cross functional teams to perform product requirements analysis and design reviews to ensure the delivery of services that protect our customers data and preserve the integrity of all MX platform processes.1

• Technology Oversight - Evaluate, select, and implement technology solutions and tools that efficiently provide required security control capabilities, with a specific focus on robust security in AWS cloud environments.  Ensure the effective utilization of these tools and integrate them with other security systems.  Stay current with emerging security technologies and threats, including those related to GenAI and agentic AI.1

• Reporting & Metrics - Develop and maintain key performance indicators (KPIs) and metrics to track the performance and effectiveness of security technologies and the overall security engineering program.  Provide regular reports to peers and leadership on trends, progress, risks, and overall security posture.1

• Compliance & Audits: Partner with the Governance, Risk, and Compliance (GRC) team to strike a balance between enforcing controls and maintaining engineering velocity. Ensuring compliance with relevant security regulations and standards (e.g., PCI DSS, SOC2, & NIST).  Support internal and external audits as necessary.1

• Collaboration & Communication - Effectively communicate information related to the security engineering program to technical and non-technical audiences. Collaborate with other security teams, IT operations, and business units. Cultivate and evangelize a culture of security across MX through training, internal communications, and stakeholder engagement, making security a shared responsibility at every level.1

• Serve as a strategic partner to all MX business teams to drive cross-functional security initiatives, reduce technical debt, and implement pragmatic, risk-based and scalable solutions.1

The Team You'll Work With:

You will be part of a security-minded team that believes in progress over perfection and where both security culture and mindset are key. Our team is rethinking how security operations can be accomplished in innovative ways. We focus on enabling our business to security deliver world class services while minimizing and managing risk exposure for MX and its customers.

Basic Qualifications

• 10+ years of experience in cybersecurity, security engineering, or related fields

• 5+ years in a leadership role overseeing security operations or engineering teams

• 5+ years of hands-on experience in cloud security, particularly in AWS or GCP environments

• 3+ years of experience securing Generative AI (GenAI) systems, including LLM security, prompt injection mitigation, and data pipeline protection

Preferred Qualifications

• Experience securing agentic AI systems, including runtime protection and secure agent communication

• Strong understanding of modern security architecture patterns, including zero trust, microservices security, and distributed systems

• Experience implementing and optimizing security tools and platforms across cloud environments

• Experience partnering with GRC teams and supporting compliance frameworks (e.g., SOC 2, PCI DSS, NIST)

• Bachelor’s degree in Computer Science, Cybersecurity, or related field (Master’s or relevant certifications preferred)

Compensation
The expected on-target earnings (OTE), which is comprised of a base salary and other forms of cash compensation, such as bonus or commissions is currently $225,600 to $283,200. This pay range is just one component of MX's total rewards package. MX takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location, skillset, peer compensation.
 

At MX, we are a high-performance organization that thrives on trust and results. This role is based in Lehi, Utah. We believe in empowering our team members to deliver exceptional outcomes while taking advantage of our incredible office space when it best supports their work. Our Utah office features onsite perks such as company-paid meals, massage therapists, a sports simulator, gym, mother’s lounge, and meditation room and meaningful interactions with amazing people. We encourage team members to come together in the office to collaborate, kick off key projects, or strategize cross-functionally, fostering connection and innovation.

MX is proudly committed to recruiting and retaining a diverse and inclusive workforce. As an Equal Opportunity Employer, we never discriminate based on race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, military or veteran status, status as an individual with a disability, or other applicable legally protected characteristics. We particularly welcome applications from veterans and military spouses. All your information will be kept confidential according to EEO guidelines. You may request reasonable accommodations by sending an email to hr@mx.com.