Plus
Включить Plus
Назад
Company hidden
16 часов назад

Senior Application Security Engineer

Формат работы
remote
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Argentina/Mexico/Colombia +1 еще
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Application Security Engineer (Fintech): Building and automating secure CI/CD pipelines and vulnerability management for a cloud-native remittances platform with an accent on integrating security into developer workflows and Python-based services. Focus on threat modeling, security architecture reviews, and compliance with SOC 2 and PCI DSS.

Location: Remote from Argentina, Mexico, Colombia, or Brazil. Offices in Miami and Mexico City with optional hybrid model.

Company

Hyper-growth Series B fintech building an AI-powered WhatsApp chatbot for remittances using blockchain and stablecoins for Latin immigrants in the U.S.

What you will do

  • Build and automate secure CI/CD pipelines with GitHub Actions, including SAST, SCA, IaC scanning, and secret detection.
  • Drive vulnerability management using DefectDojo, triaging findings and prioritizing remediation with engineering teams.
  • Champion secure development through architecture reviews, threat modeling, and promoting best practices in Python services.
  • Coordinate penetration testing, track findings, and ensure remediation.
  • Develop security standards for code management, secrets, and CI/CD processes.
  • Support SOC 2 and PCI compliance by implementing application security controls.

Requirements

  • Proven experience as Application Security Engineer or similar.
  • Hands-on with CI/CD pipelines, preferably GitHub Actions.
  • Strong with security tools like SAST, DAST, SCA, secret scanning.
  • Proficiency in Python (preferred) or scripting languages.
  • Deep knowledge of OWASP Top 10, web vulnerabilities, secure architecture.
  • Experience with GCP, Kubernetes/GKE, Docker, Terraform/Checkov.
  • Background in regulated industries like fintech, familiarity with SOC 2/PCI DSS.

Culture & Benefits

  • Competitive salary, stock options, annual bonus.
  • Health, dental, vision plans; unlimited PTO; paid parental leave.
  • Remote-first with optional hybrid in Miami or Mexico City.
  • Continuous learning and growth in entrepreneurial environment.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →