Senior Application Security Engineer (Fintech)

TL;DR

Senior Application Security Engineer (Fintech): Designing and scaling security controls within the SDLC and CI/CD pipelines for a cloud-native financial platform with an accent on DevSecOps automation and vulnerability management. Focus on integrating SAST/SCA tools into GitHub Actions, conducting threat modeling for Python-based services, and ensuring SOC 2 and PCI compliance.

Location: Remote work environment (Hybrid options available in Miami and México City)

Company

hirify.global is a hyper-growth Series B fintech company building an AI-powered financial ecosystem for Latin immigrants in the U.S.

What you will do

• Design, implement, and maintain security controls (SAST, SCA, IaC scanning, and secret detection) within GitHub Actions CI/CD pipelines.
• Lead the vulnerability management program using platforms like DefectDojo to triage and prioritize remediation.
• Act as a security SME for product engineering teams, performing security architecture reviews and threat modeling for Python-based services.
• Coordinate and manage internal and external penetration testing engagements and drive the subsequent remediation efforts.
• Define and document foundational security standards for source code management and secrets management.
• Partner with the GRC function to implement application security controls for SOC 2 and PCI compliance audits.

Requirements

• Proven experience as an Application Security or Product Security Engineer.
• Hands-on experience securing and operating CI/CD pipelines, preferably with GitHub Actions.
• Strong proficiency with security scanning tools (SAST, DAST, SCA) and deep understanding of OWASP Top 10.
• Programming proficiency in Python.
• Experience with cloud-native technologies including GCP, Kubernetes (GKE), and Docker.
• Knowledge of Infrastructure-as-Code (Terraform) and compliance frameworks like SOC 2 and PCI DSS.

Culture & Benefits

• Remote work environment with optional hybrid setup in Miami or Mexico City.
• Competitive salary, initial stock options grant, and annual performance bonus.
• Comprehensive health, dental, and vision plans.
• Unlimited PTO and paid parental leave.
• Dynamic entrepreneurial environment with high-performance teams and opportunities for rapid growth.