Plus
Включить Plus
Назад
Company hidden
2 дня назад

Application Security Engineer (Fintech)

Формат работы
remote (только Europe)/onsite
Тип работы
fulltime
Английский
b2
Страна
Ukraine/Poland/Cyprus
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Application Security Engineer (Fintech): Embedding security into the software development lifecycle for a cloud-native payments orchestration platform processing millions of transactions daily with an accent on secure architectures, threat modeling, and automated testing integration. Focus on conducting security assessments, managing vulnerability lifecycles, and supporting penetration testing to reduce product risks in a regulated environment.

Location: Warsaw, Kyiv, Nicosia, Lviv or Remote within Europe

Company

hirify.global builds financial infrastructure as the leading payments orchestration platform for fast-growing internet businesses worldwide.

What you will do

  • Build and maintain secure coding standards and drive their adoption across development teams.
  • Conduct threat modeling during architecture and design stages.
  • Implement and improve application security testing including SAST, DAST, dependency scanning, secrets scanning, and CI/CD checks.
  • Perform regular application security assessments using OWASP ASVS and SAMM.
  • Manage full vulnerability lifecycle: triage, prioritization, remediation support, and validation.
  • Support external penetration testing and Bug Bounty programs while mitigating risks in cloud and CI/CD environments.

Requirements

  • At least 2 years of experience in Application Security or Product Security.
  • Hands-on experience with OWASP Top 10 vulnerabilities.
  • Practical experience with secure code reviews, threat modeling, SAST/DAST tools, and their integration into CI/CD pipelines.
  • Strong understanding of web application and API security.
  • Ability to communicate clearly with engineers as a collaborative partner.

Nice to have

  • Experience with container security and cloud security tooling.
  • Familiarity with DevSecOps and shift-left security practices.
  • Experience automating application security processes.
  • Background as a software engineer or close collaboration with development teams.

Culture & Benefits

  • Collaborative environment where security is a shared responsibility with curious engineers.
  • 30+ days off, unlimited sick leave, free office meals, health coverage, and Apple gear.
  • Courses, conferences, sports, and wellness benefits to support productivity and growth.
  • Autonomy to propose, test, and implement security practices with leadership support.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →