Senior Application Security Engineer

📋 Description

• Conduct threat modeling using MITRE ATT&CK to identify risks early.
• Perform security architecture reviews for apps and microservices.
• Collaborate on code reviews; enforce OWASP Top 10 practices.
• Integrate SAST/DAST into CI/CD for automated detection.
• Analyze test results and guide remediation with engineers.
• Lead secure development by embedding security early in projects.

🎯 Requirements

• 5+ years in Application Security.
• Hands-on coding in microservices, REST APIs, containers.
• SAST/DAST tools; threat modeling (MITRE ATT&CK); cryptography concepts.
• Cloud security (AWS/GCP/Azure); data encryption concepts.
• Excellent cross-functional communication and collaboration.
• Nice to have: fintech/payments exposure; certifications (CISSP/CSSLP/OSCP/CEH) and PCI DSS/SOC 2/ISO 27001.

🎁 Benefits

• Competitive compensation and equity.
• Flexible paid time off.
• Fully covered healthcare including dependents.
• One Medical access and option for an FSA.
• Leading configured work computers of your choice.
• 20 weeks parental leave for primary caregiver; 8 weeks for all new parents.