Engineering Intern Job

Sandbox Banking is looking for a talented and motivated computer science student or coding bootcamp graduate with an interest in frontend development to assist our
platform engineering team. We have rapidly growing revenue, over 75 bank and credit
union customers, the backing of prestigious investors like Y Combinator, and $5.35MM
of venture capital just raised in 2022. We are a remote team with employees across the
continental US.

Sandbox is an equal opportunity employer. We celebrate diversity and are committed to
creating an inclusive environment for all employees.

Sandbox provides a low-code integration builder called Glyue that empowers banks and
credit unions to quickly connect their systems. Anyone with the technical skills to use
Excel formulas should be able to build rich integrations with our web application. The
platform’s fine-grained authentication and permission controls provide institutions with
strict control over access to banking data and operations.

The intern chosen for this position will help develop Glyue’s web application UI – day-to-
day work will involve extending our existing frontend logic built with Vue.js, JavaScript,
HTML, and CSS. Further details regarding our application’s technology stack can be
found below.

Skills and Qualifications

  • Must have some experience developing applications or performing academic
    work with Javascript, HTML, and CSS
  • Must have a personal computer suitable for software development
  • Must have an internet connection suitable for Zoom
  • Must be located in the United States and legally authorized to work for Sandbox
    Banking
  • Experience with Vue.js (or other reactive JavaScript frameworks), Python, or
    Django is a bonus

Technology Stack

  • Integration Builder Formula Language: Python
  • Web Application Front End: Vue.js + HTML/CSS/JavaScript
  • Web Server Back End: Python + Django + Apache (running inside Docker)
  • Database: PostgreSQL (although other relational database variants like MS SQL,
    MySQL, Oracle, and SQLite work as the persistence layer since we leverage
    Django’s ORM)
  • Source Control: Git + Github
  • Releasable Unit: Docker Image
  • CI/CD Pipeline: Github Workflows + AWS Elastic Container Registry

Approximate hours per week: 15-20 hrs, pay: $25/hr; Fully remote position

Next Steps

Please email resumes, CVs, and other relevant materials to hiring@sandboxbanking.com along with a brief description of why you’re interested in the role.

Security Program Manager (Remote)

Sandbox Banking is looking for an exceptional security program manager who wants to help accelerate banking innovation across the world!  We are a remote team with employees across the US.

Successful candidates will be excited to maintain and improve every aspect of our SaaS company’s security posture!  Deep understanding of organizational/human behavior, policy design, employee training, third-party audit processes, cloud architecture, software engineering, customer due diligence, red-team penetration testing, and vulnerability discovery/remediation program management will be required.  The individual will be considered a member of the Sandbox Banking leadership team, and their input will significantly influence product and technology strategy.

Security is never an after-thought for us.  Our bank customers trust us to connect their most sensitive data sources – we’ve always treated the safeguarding of their systems/data as both a business necessity and ethical responsibility.

Successful candidates will be expected to demonstrate relevant experience working in a dynamic environment dealing with complex challenges, and continuously communicate with all members of the business to achieve security objectives.

Sandbox is an equal opportunity employer.  We celebrate diversity and are committed to creating an inclusive environment for all employees.

Product

We provide a low-code integration builder called Glyue for banks and fintechs to quickly connect their systems.

US regional/community banks and credit unions are looking to overhaul the digital experiences they deliver to customers.  Increasingly, they solve this challenge by sourcing software from fintech companies that specialize in building and operating financial services software.  Unfortunately, distributing new software to FIs has historically been a long and painful process because of data security and system integration hurdles.

Sandbox empowers FIs and fintech vendors to quickly and safely build new integrations – our Glyue application lets anyone who can use Excel formulas connect banking systems.  Furthermore, the platform’s fine-grained authentication and permissions model provides FIs with strict control over which people/software can access particular banking data and operations.

FIs and fintechs love the platform.  FIs are able to quickly and cost-effectively leverage cutting-edge solutions without compromising on integration; fintechs don’t need to spend time and money on activities outside of core product development and distribution.

Why Work at Sandbox?

  • Small team of just over 30 full-time employees  you will own problems from start to finish and meaningfully impact company outcomes;
  • Teammates who are smart, curious, and driven to succeed.  You will always be learning;
  • Your ideas and opinions about the product will matter.  Everyone in our company contributes to our product roadmap;
  • You’ll use a variety of technologies across our entire software stack;
  • Remote-first organization that provides geographic flexibility (although all employees must live in the US);
  • 75+ bank and credit union clients;
  • $5.35MM of venture capital raised in 2022;
  • Top-tier investors like Y Combinator;
  • Competitive salary and stock option compensation;
  • Your work will transform an entire industry;

Responsibilities

Our security program manager will need to perform a variety of tasks to help maintain the security posture and requirements of Sandbox Banking:
 
  • Work closely with the CTO, architects, engineers, and system administrators to ensure security is maintained as new functionality is delivered;
  • Design and implement standards, policies, guidelines and appropriate architectural principles to ensure the firm’s cyber security goals continue to be met;
  • Provide risk-based direction in conjunction with IT teams for future system enhancements in line with the overall firm’s strategy;
  • Recognize potential opportunities to enhance the firm’s security and help deliver the necessary changes to realize such gains;
  • Provide security subject matter expertise to support relationships with partners, customers, and vendors;
  • Ensure systems and their information handling comply with current and (to the extent they’re predictable) future requirements;
  • Ensure Sandbox Banking runs effective data classification processes;
  • Ensure Sandbox Banking runs effective data retention processes;
  • Ensure governance, policy and procedures in relation to information security meet agreed standards within the company;
  • Appropriately scope and manage penetration testing of company infrastructure, products, services, and processes;
  • Scope and implement appropriate vulnerability discovery technologies and processes;
  • Project manage and complete annual internal security audit;
  • Project manage and complete annual SOC 2 Type 2 audit;
  • Project manage and complete quarterly access reviews;
  • Maintain sufficiently updated standard vendor due diligence packets for partners and customers;
  • Handle bespoke vendor due diligence requests from partners and customers;
  • Provide security-related feedback and suggestions to help harden the company’s products and services;
  • Scope, design/source, and ensure the delivery of appropriate security training for Sandbox Banking personnel;
  • Refine and test the company’s incident reporting and breach management policies;
  • Execute the company’s incident reporting and breach management procedures as necessary. This would require oversight and guidance during security incidents and investigations. It would include root cause analysis, communication with appropriate internal and external parties, and deriving appropriate learnings to be utilized for strengthening the company’s security posture;
  • Provide quality reporting to summarize security posture details and security testing outcomes. Reports will include objectives, planning, methodology, results, analysis and recommendations to both technical and non-technical audiences;
  • Extend system development life cycle (SDLC) and enforce SDLC compliance to maintain and enhance security;
  • Selectively perform security code reviews of product changes;
  • Selectively perform security reviews of infrastructure and network changes;
  • Selectively perform security reviews of integration logic changes;
  • Continuously update the candidate’s own knowledge of security trends, developments, and best practices;
  • Continuously nurture the company’s cultural focus on security;

Qualifications

Successful candidates will meet the following requirements:

  • Minimum of 3 years experience working in full-time role focused on cyber security, with additional experience strongly preferred;
  • Minimum of 3 years experience working in a full-time role as a software engineer or application developer, with additional experience strongly preferred;
  • Proficiency with both Python and JavaScript;
  • Strong understanding of network engineering, architecture, and standard network diagnostic tooling;
  • Strong understanding of the SOC 2 Type 2 audit process and experience leading a company’s efforts to complete the audit;
  • One of the following qualifications/certifications: OSCP, ISACA, CISSP, CISA, CRISC, SABSA.  Multiple credentials are preferred;
  • Broad and deep understanding of information security principles and best practices (e.g., ISO 27001, ISF Standards of Good Practice for Information Security), especially as they relate to cloud-based SaaS products;
  • Broad knowledge of  information technology systems and deep understanding of the inherent security risks associated with these technologies;
  • Strong communication skills, including the ability to present security topics to a non-technical audiences, articulate the business value and risks of various decisions, and train our employees;
  • Abreast of current industry security trends, developments, and related government regulations;
  • Strong understanding of network engineering and architecture;
  • Strong understanding of Amazon Web Services (AWS) and related security best-practices;
  • Strong project management and organizational skills, especially as they relate to the cross-functional management of individuals within different departments to complete security-focused work;
  • Strong analytical and creative skills; ability to provide security solutions that sufficiently protect systems and data while maximizing employee productivity and customer value;

There are further qualifications which are considered a significant bonus:

  • Understanding of the ISO 27001 certification process and experience leading a company’s efforts to obtain the certification;
  • Understanding of PCI DSS compliance and experience leading a company through PCI DSS compliance validation;
  • Experience with banking regulatory compliance;
  • Experience working at banking technology companies;
  • Experience working at early-stage startups;

Compensation

Salary will be competitive for our stage of company, and the role includes a stock option package that provides significant upside.  It’s important to us that our early employees win if the company succeeds.

Next Steps

Please email resumes, CVs, and other relevant materials to hiring@sandboxbanking.com along with a brief description of why you’re interested in the role.

Solution Delivery Software Engineer (Remote)

Back to Careers

Sandbox Banking is looking for an exceptional solution delivery engineer (SDE) who wants to reshape how innovative software is integrated with enterprise systems, starting with the financial services industry.  We have rapidly growing revenue, are backed by Y Combinator (W17), and have raised seed capital.  We are a remote team with employees across the continental US.

Sandbox is an equal opportunity employer.  We celebrate diversity and are committed to creating an inclusive environment for all employees.

Product

Sandbox is a universal adapter for banks.  It provides financial institutions (FIs) a better way to integrate fintech software with their existing systems.

US regional/community banks and credit unions are looking to overhaul the digital experiences they deliver to customers. Increasingly, they solve this challenge by sourcing software from fintechs — new companies that specialize in building and operating financial services software.  Unfortunately, distributing new software to FIs has historically been a long and painful process because of data security and system integration hurdles.

Sandbox empowers FIs and vendors to quickly and safely build new integrations — our Glyue tool lets anyone who can use Excel formulas connect banking systems.  Furthermore, the platform’s fine-grained authentication and permissions model provides FIs with strict control over which people/software can access particular banking data and operations.

FIs and fintechs love the platform.  FIs are able to quickly and cost-effectively leverage cutting-edge solutions without compromising on integration; fintechs don’t need to spend time and money on activities outside of core product development and distribution.

Why Work at Sandbox?

  • Small team — your impact will be meaningful
  • Teammates who are smart, curious, and driven to succeed.  You will always be learning.
  • You’ll be joining a rocketship company with rapid revenue growth, a significant client base (45+ banks and credit unions), prestigious investors (e.g. Y Combinator, SixThirty, Startupbootcamp), and great unit economics.  There are a myriad of benefits to working for a company that wins.
  • Ownership of problems from start to finish
  • Significant customer interaction
  • Your ideas and opinions about the product will matter.  Everyone in our company contributes to our product roadmap.
  • You’ll learn skills and technologies useful to your broader professional development
  • Remote-first organization that provides geographic flexibility (although all employees must live in the US)
  • Salary and stock option compensation
  • You’ll watch your work transform an entire industry

Responsibilities

Our SDE will need to handle a variety of tasks:

  • Work with our project managers and customers to capture, refine, and clarify integration requirements
  • Use the Glyue integration builder to implement the specific services our customers need
  • Provide feedback about Glyue so it can be improved for internal and external users
  • Use nCino, Salesforce, core processor, and other vendor UIs to configure and test integrations
  • Write simple code snippets (e.g. if-else statements, basic error messages)
  • Debug/troubleshoot integrations for customers
  • Use JIRA to track tasks, convey customer project statuses, highlight blockers, and communicate with teammates
  • Write high quality documentation for both customer and internal use
  • Identify and vocalize problems as they arise
  • Help solve a multitude of early-stage startup tasks
  • Behave in a manner aligned with our high ethical standards

Qualifications

Talented individuals learn new technologies quickly, so we’re not obsessed with each candidate’s knowledge of particular technologies on day one.  That said, we do require applicants to possess a few specific skills and attributes:

  • Basic Python programming ability.  Successful candidates will have mastered of if-else statements, try-catch-finally error handling, looping, usage of basic data structures like lists and dicts, functions, and classes.
  • Proficiency with Windows, Excel, and PowerPoint
  • Strong verbal and written communication skills in English
  • Strong deductive and inductive reasoning abilities
  • Highly organized and capable of tracking current status, blockers, and next steps across multiple customer implementations

There are additional requirements related to logistics and behavior:

  • Willingness to live and work in the US
  • Ability to work from our office in downtown Boston, MA for at least two weeks at start of employment.  Sandbox will cover travel expense for employee during this period.
  • Legal authorization to work for Sandbox Banking.  NOTE: We are unable to sponsor work visas at this time.
  • Willingness and ability to proactively collaborate with our customers and project managers.  To succeed, this individual will need to constantly discuss/record/broadcast business processes and requirements.  There are times when acquiring a single piece of critical information requires two or three conversations with different project stakeholders; this engineer must be unrelenting in such scenarios.
  • Fanatical passion for delivering the best possible experience to users
  • Willingness to reprioritize work as requirements change
  • Obsession with documentation, testing, and other aspects of solution delivery that empower teams to maintain high productivity over time
  • Team-first attitude coupled with an unrelenting desire to win

Experience in the following areas will be considered a bonus:

  • Software integration projects
  • Early-stage startups
  • Customer support for a technical product
  • Financial services (especially banking)
  • Consulting services

Compensation

Salary will be competitive for our stage of company, and the role includes an option package that provides significant upside.  It’s important to us that our early employees win if the company succeeds.

Next Steps

Please email resumes, CVs, and other relevant materials to hiring@sandboxbanking.com along with a brief description of why you’re interested in the role.