​This is a full-time, REMOTE role at Pennymac (NYSE: PFSI), one of the top mortgage lenders in the U.S. This position is heavily focused on the engineering and lifecycle management of security tools. Unlike a pure SOC analyst role, this is an infrastructure-heavy position where you will design, automate, and maintain the platforms that protect the organization’s mortgage data.

• ​Location: 100% Remote.
• ​Salary Range: $75,000 – $130,000.
• ​Focus: Design and deployment of SIEM, EDR, and Vulnerability Management systems.
• ​Tech Core: AWS Cloud, EDR (Crowdstrike), and Email Security (Proofpoint).
• ​Automation Hub: Heavy emphasis on Infrastructure as Code (IaC) and DevSecOps.

​Key Responsibilities: Designing and Automating Defense

​The Engineer is responsible for the “plumbing” of the security organization—ensuring tools are deployed correctly, updated constantly, and integrated seamlessly.

​Core Security Platform Management

You will design, deploy, and maintain the full lifecycle of enterprise security platforms. This includes SIEM for log aggregation, EDR for endpoint protection, and Vulnerability Management systems to identify weaknesses. You are responsible for the entire journey: from evaluation and testing to patching and decommissioning.

​Automation and DevSecOps

A major part of this role is moving away from manual configurations. You will use automation tools to deploy security controls and manage infrastructure. The goal is to integrate security tools directly into CI/CD pipelines to ensure a “secure as you build” environment.

​Email and Cloud Security

You will manage Proofpoint or similar gateways to handle threat detection and DMARC implementation. Additionally, you will provide expertise on integrating security controls into AWS or general cloud environments.

​Operational Compliance

You will be the point of contact for responding to audits, penetration tests, and vulnerability assessments, ensuring the environment remains in compliance with established security policies.

​Required Technical Proficiency

​Pennymac is looking for an engineer who is comfortable writing code to manage infrastructure and has a deep understanding of enterprise-grade security tools.

• ​Security Tools: Practical knowledge of Crowdstrike (EDR), SIEM platforms, Firewalls, DLP, and Identity Platforms.
• ​Automation Tools: Competency in Ansible, Terraform, Chef, or Puppet.
• ​Scripting: Expertise in at least one language, specifically Python, PowerShell, or Perl.
• ​Email Security: Experience with Proofpoint (DMARC, Security Gateway, Threat Detection).
• ​Cloud: Hands-on experience with AWS or similar public cloud providers.
• ​Collaboration: Ability to provide expertise on integrating complex security controls into existing IT environments.

​Why Join Pennymac?

• ​Scale: Support a firm that has helped over 4 million homeowners.
• ​Support: Access to comprehensive medical, 401k match, and tuition reimbursement.
• ​Culture: A remote-first environment with a focus on being “Accountable, Reliable, and Ethical.”