Sr. Application Security Engineer(remote)

With over a million customers trusting PayJoy, it’s increasingly important that our apps and services operate with integrity and high availability while keeping our customers' data confidential.

PayJoy is looking for a motivated engineer to join our high-growth, global company to manage the application security posture. You will oversee the internally developed applications and bring expert knowledge of the secure software development life cycle and current advances.  

You will bring your experience in overseeing the security of a company’s developed products, using open-source libraries, and managing application security vulnerabilities. In addition, you will help us to integrate Static application security testing (SAST), Dynamic Application Security Testing (DAST) security tools into Continuous Integration, Continuous Deployment (CI/CD) pipeline, and coordinate the penetration testing.

Responsibilities

  • Implement secure Software Development Life Cycle(SDLC).
  • Integrate SAST and DAST tools to CI/CD pipeline.
  • Conduct internal and coordinate external penetration tests.
  • Collaborate with product managers and engineers to remediate security weaknesses.
  • Provide security guidance for developers.
  • Maintain products threat modeling.
  • Requirements

  • Hands-on in the integration and implementation of SAST and DAST to CI/CD.
  • Deep knowledge of application security vulnerabilities (OWASP Top 10) and mitigation techniques.
  • Experience in using intercepting proxies to conduct a manual security analysis of web applications. (OWASP ZAP, Burp Suite, etc.)
  • Background in Threat Modeling, Security in SDLC, Secure Coding and Software Assurance
  • 5+ years of relevant experience.
  • Benefits

  • Company-funded health, dental, and vision insurance for employee and immediate family
  • Company-funded employee life and disability insurance
  • 401k contribution
  • Company holidays; 15 days vacation (20 at 3rd year); unlimited sick leave
  • Annual fitness benefit ($500); professional development benefit ($2000), and international travel benefit ($2000)
  • Commuter benefit
  • Headphone benefit
  • About PayJoy
    PayJoy's mission is to deliver access to credit to the next billion people in emerging markets worldwide. Our unique mobile locking technology gives customers the ability to afford their first smartphone on credit, using the phone itself as collateral, and then provides further access to credit to help weather life's unexpected financial surprises and climb the ladder of economic well-being.

    Founded in 2015, today PayJoy has reached millions of customers in a dozen countries around the globe, including Mexico, Brazil, India, Kenya, and South Africa, and is on a strong growth path with support from major industry partners to bring credit to millions in the near future.

    PayJoy is proud to be an Equal Employment Opportunity employer and we welcome and encourage people of all backgrounds. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

    PayJoy Principles
    Finance for the next billion * Ownership * Break Through Walls * High-Bandwidth Communication * Transparency & Directness * Focus on Scale * Work-Life Balance * Embrace Diversity


    Apply for Sr. Application Security Engineer(remote)

    Resume is required

    Full name is required

    Phone number is required

    SQL - FP&A

    How would you self-rank your SQL ability?

    Demographic Survey for PayJoy

    We invite you to complete this optional survey to help us evaluate our diversity and inclusion efforts. Submission of the information on this form is strictly voluntary and refusal to provide it will not subject you to any adverse treatment or affect your job application. Information obtained will be kept separate from your name or job application. This information will be kept secure and confidential and will be used solely to evaluate our diversity and inclusion efforts.

    Select all that apply