Security Engineer (Fintech)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Security Engineer (Product Security): Ensuring the security of the On-Ramp product against fraud and abuse with an accent on threat modeling, incident response, and partner misuse detection. Focus on closing visibility gaps, improving threat detection, and implementing secure-by-design features.
Location: Remote-first with occasional on-site workshops
Company
International FinTech company operating in the crypto and payments space, building secure products for individual and corporate clients worldwide.
What you will do
- Take full ownership of On-Ramp product security, detecting and responding to fraud attempts and partner misuse.
- Analyze logs and behaviors to identify malicious patterns and conduct architectural threat modeling.
- Collaborate with the Ramp Stream to implement security fixes and secure-by-design features.
- Perform security code reviews for OWASP vulnerabilities and business logic flaws across all product lines.
- Develop security automation for CI/CD pipelines, including SAST, SCA, and IaC scanning.
- Partner with the Head of Security to evolve the company's Security Operations function and monitoring framework.
Requirements
- Strong application security background or secure backend development experience.
- Proficiency in one or more backend languages: Python, Go, Node, Java, or PHP.
- Deep understanding of OWASP Top 10, CWE categories, and business logic vulnerabilities.
- Hands-on experience with threat modeling (STRIDE, attack trees) and security testing tools like Burp Suite or ZAP.
- Experience with incident response, log analysis, and root cause analysis (RCA).
- Foundational knowledge of cloud and infrastructure security (AWS, Docker, Kubernetes, IaC).
Nice to have
- Experience in security automation and DevSecOps.
- Proven track record in fintech or crypto product security.
- Knowledge of DORA/MiCA security requirements.
- Experience with bot protection, rate limiting, and abuse detection.
Culture & Benefits
- Opportunity to work in a fast-growing fintech and crypto environment.
- Collaborative and highly motivated team culture.
- Remote-first working model with occasional on-site workshops.
- Support for continuous professional learning and career development.
- Competitive compensation package including performance-based bonuses.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Senior Application Security Engineer (Cybersecurity)
Application Security Engineer (SaaS)
Security Engineer (Cloud)
Senior Security Analyst (Fintech)
Senior Security Operations Analyst (Fintech)