Application Security Engineer - Remote
Santa Clara, CA, United States
PayNearMe
PayNearMe is a modern and reliable billing and payments platform that lets your customers pay how, when and where they want.Company Description
PayNearMe develops award-winning technology to facilitate the end-to-end customer payment experience, making it easy for businesses to manage and accept payments. The company enables more ways to pay by offering all major payment types and channels in a single platform. PayNearMe is the technology company that’s changing how payments are made.
We are a diverse and collaborative company that loves to delight its customers (clients, consumers, etc.) with simple, useful and practical product/service offerings. PayNearMe has over 200 employees, closed a $45M Series D round in June 2023, and is processing over $1B in payments monthly. We’re headquartered in Silicon Valley with our employees distributed all across the US. Help us reimagine payments.
PayNearMe is looking to add a talented and experienced Application Security Engineer reporting to our Chief Information Security Officer.
Job Description
- Conduct thorough security code reviews for all software releases, including new software developed in-house, as well as third-party and open-source contributions.
- Identify and assess potential vulnerabilities in code written in various languages, including GO and Ruby, and provide actionable recommendations for mitigation.
- Collaborate closely with development teams to integrate security best practices into the software development lifecycle.
- Develop and maintain documentation related to security processes, standards, and guidelines.
- Utilize SAST and DAST scanning within the CI pipeline and confirm findings to enhance application security.
- Manage and implement security architecture for API solutions.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 5 years experience as an application analyst and/or conducting security code reviews and vulnerability assessments.
- 2 years of experience with QA software testing processes and methodologies.
- Solid understanding of application security principles, with a focus on identifying and mitigating common vulnerabilities.
- Proficiency in GO and Ruby, with some experience in a current framework, such as Rails or React.
- Familiarity with APIs and their security implications.
- Excellent communication and collaboration skills, with the ability to work effectively in a cross-functional team environment.
- Ability to work independently and as part of a team.
- Strong analytical and problem-solving skills.
- Experience with specific security standards and regulations, such as PCI, NYDFS, CCPA, ISO, NIST and/or SoX.
Additional Information
Benefits
- Base salary per year (paid semi-monthly)
- Fast- paced and professional work culture
- Stock options with standard startup vesting - 1 year cliff; 4 years total
- $50 monthly communication expense stipend to go towards your phone/internet bill
- $250 stipend to enhance your WFH setup
- Reimbursement for peripheral equipment: monitor (up to $400), keyboard and mouse (up to $200)
- Premium medical benefits including vision and dental (100% coverage for employees)
- Company-sponsored life and disability insurance
- Paid parental bonding leave
- Paid sick leave, jury duty, bereavement
- 401k plan
- Flexible Time Off (our team members typically take off ~3-4 weeks per year)
- Volunteer Time Off
- 13 scheduled holidays
- 4-6x / year in-person team meet-ups
Salary Range: $160,000 - 175,000
PayNearMe strives to create a workplace where all employees thrive. Our core values represent who we are today and we take pride in the way we work with each other as well as with our stakeholders.
We’re in this together to do the right thing. We deliver real results we are proud of while remaining respectful, transparent, and flexible.
PayNearMe is an equal opportunity employer. We are diligently and thoughtfully working towards cultivating a diverse workforce which in turn, enhances our products and services for the communities we serve. Applicants who represent all backgrounds are strongly encouraged to apply.
—
Candidate information will be treated in accordance with our job applicant privacy notice found at: https://home.paynearme.com/ccpa-privacy-notice-jobs-employees/
Assistance for Disabled Applicants
Alternative formats of this Notice are available to individuals with a disability. Please let us know if you need assistance.
All your information will be kept confidential according to EEO guidelines.
Tags: APIs Application security CCPA CISO Computer Science DAST NIST Privacy Ruby SAST SDLC SOX Vulnerabilities
Perks/benefits: 401(k) matching Career development Equity Flex hours Flex vacation Gear Health care Insurance Medical leave Parental leave Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs