Senior Application Security Engineer
M&T BankSalary not specified
Full Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Fintech, Payment ProcessingIndustries
Requirements
Candidates must possess a Bachelor's degree in Computer Science, Information Security, or a related field, with at least 5 years of experience as an application analyst or in conducting security code reviews and vulnerability assessments. A minimum of 2 years of experience with QA software testing processes and methodologies is required, along with a solid understanding of application security principles, particularly in identifying and mitigating common vulnerabilities. Proficiency in GO is essential, with some experience in a current framework like Rails or React; Ruby language experience is a plus. Familiarity with APIs and their security implications, strong analytical and problem-solving skills, and experience with security standards such as PCI, NYDFS, CCPA, ISO, NIST, and/or SoX are necessary. Excellent communication and collaboration skills are needed to work effectively in a cross-functional team environment, with the ability to work both independently and as part of a team.
Responsibilities
The Application Security Engineer will conduct thorough security code reviews for all software releases, including in-house developed software and third-party or open-source contributions. They will identify and assess potential vulnerabilities in GO code, providing actionable recommendations for mitigation. This role involves collaborating closely with development teams to integrate security best practices into the software development lifecycle and developing/maintaining documentation for security processes, standards, and guidelines. The engineer will utilize SAST and DAST scanning within the CI pipeline, confirm findings to enhance application security, and manage and implement security architecture for API solutions.
Skills
Application Security
Security Code Reviews
Vulnerability Assessments
GO
SAST
DAST
CI Pipeline
API Security
QA Software Testing
PayNearMe
Flexible payments platform for diverse transactions
About PayNearMe
PayNearMe provides a payments platform that allows customers to pay in various ways, including cards, ACH transactions, cash, and mobile payment methods like PayPal and Venmo. The platform is designed to enhance the payment experience for both customers and businesses, making it easy for clients such as consumer lenders and online gaming companies to collect payments. PayNearMe stands out by offering a secure cash payment service at over 60,000 retail locations, which simplifies the payment process for users who prefer cash. Additionally, the platform utilizes artificial intelligence to personalize customer experiences and improve bill pay. The company's goal is to create a seamless and user-friendly payment experience while generating revenue through fees charged to businesses for processing payments.
Santa Clara, CaliforniaHeadquarters
2009Year Founded
$156.1MTotal Funding
SERIES_DCompany Stage
Fintech, AI & Machine LearningIndustries
201-500Employees
Benefits
Professional Development Budget
Risks
Emerging fintech startups could erode PayNearMe's market share with similar solutions.
Regulatory scrutiny may increase compliance costs for PayNearMe.
Partnership with Trustly exposes PayNearMe to open banking data privacy risks.
Differentiation
PayNearMe offers a wide range of payment options, including cash and digital wallets.
The platform integrates AI to enhance personalized customer experiences and improve payment solutions.
Partnerships with companies like Trustly and PayPal expand PayNearMe's payment capabilities.
Upsides
The rise of BNPL services presents an opportunity to expand PayNearMe's payment options.
Increasing mobile wallet usage allows PayNearMe to enhance its mobile-first payment methods.
Open banking regulations in the US offer new integration opportunities for PayNearMe.
Related Jobs
RemoteRemoteSenior Security Engineer, Application Security
Trail of BitsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteVulnerability Detection Engineer (Content) - Exposure Management (Remo…
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteApplication Security Engineer II - Product Security (Remote)
CrowdstrikeSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Software Security Engineer
Muon SpaceSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteQA Automation Engineer, API / Security
Keeper SecuritySalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Software Engineer (AI Tools)
Coder$127,000 - $218,000/year
- Full Time
- Senior (5 to 8 years)
RemoteApplication Security Architect
WorkwaveSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSecurity Engineer, Product Security
Chainlink LabsSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Penetration Tester, Application Security (3 month contract)
WealthsimpleSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteHIM Coder (Part Time, 23 hours/week, Remote)
Virta HealthSalary not specified
- Full Time
- Junior (1 to 2 years)