NerdWallet

Staff Application Security Engineer

Auto‑apply with AI Apply

$152,000 – $282,000Compensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, Enterprise SoftwareIndustries

Requirements

Candidates should have 8+ years of professional experience in roles such as security engineer, software engineer, site reliability engineer, penetration tester, or security consultant. A minimum of 5 years of experience in Agile development is required, with expertise in cloud environments like AWS and application security testing tools such as SAST, DAST, and SCA. Advanced knowledge of programming languages including Python and Typescript is essential, along with an understanding of security weaknesses and common application and network protocols.

Responsibilities

The Staff Application Security Engineer will lead high-priority product security initiatives and identify risks early in the software development lifecycle. Responsibilities include developing application security tooling and processes, conducting security research and assessments, providing security analysis and training, and mentoring junior security engineers. The role also involves driving key initiatives like Supply Chain Security and collaborating with cross-functional teams to identify vulnerabilities and propose remediation strategies.

Skills

SAST

DAST

SCA

Terraform

Docker

Kubernetes

Jenkins

GitHub Actions

Jira

GitHub

Python

Typescript

PHP

Cloud Environments

Application Security Testing Tools

Infrastructure as Code

Containers

Continuous Integration

Defect Tracking

Source Code Management

Security Weaknesses

Exploits

Attacks

Mitigations

Common application and network protocols

Cryptography

NerdWallet

Financial guidance platform for personal finance

About NerdWallet

NerdWallet helps individuals make informed financial decisions by providing resources and tools for comparing credit cards, mortgages, personal loans, and insurance. The platform is user-friendly, featuring calculators and educational content that simplify complex financial concepts. Unlike competitors, NerdWallet operates on an affiliate marketing model, allowing it to offer services for free while earning revenue through partnerships with financial institutions. The company's goal is to empower consumers to manage their finances better by providing clear and comprehensive information.

Key Metrics

San Francisco, CaliforniaHeadquarters

2009Year Founded

$67.1MTotal Funding

IPOCompany Stage

Fintech, Financial ServicesIndustries

501-1,000Employees

Benefits

Health and wellness

Retirement support

True work-life balance

Career development

Employee resource groups

Employee engagement

Risks

Next Door Lending's past compliance issues pose potential regulatory risks for NerdWallet.

Affiliate marketing reliance may be threatened by shifts in financial institutions' budgets.

Intensifying competition in personal finance could erode NerdWallet's market share.

Differentiation

NerdWallet offers personalized, unbiased financial advice to empower consumer decision-making.

The platform integrates financial tools and expert content for comprehensive financial guidance.

NerdWallet's user-friendly design simplifies complex financial concepts for a broad audience.

Upsides

Growing demand for financial literacy tools boosts NerdWallet's user engagement.

Partnerships with fintech firms enhance NerdWallet's comprehensive financial solutions.

Rising interest in ethical investing aligns with NerdWallet's tailored advice offerings.

Land your dream remote job 3x faster with AI

Try Jobo Free