Email Alert for
ⓘ There was an unexpected error processing your request.
Please refresh the page and try again.
If the problem persists, please contact us with your issue.
You can always manage your preferences and update your interests to ensure you receive the most relevant opportunities.
Get ready to discover your next great opportunity.
SeatGeek
New York, NY, United States
SeatGeek believes live events are powerful experiences that unite humans. With our technological savvy and fan-first attitude we’re simplifying and modernizing the ticketing industry. We are looking for an information security professional to lead our application security program. As a Senior Application Security Engineer, you’ll partner with produ
Job Source: SeatGeekFalconX
New York, NY, United States
Who are we? FalconX is the most advanced digital asset platform for institutions. We provide trade execution, credit & treasury management, prime offering and market making services. Given our global operations, industry-leading technology and deep liquidity, we have facilitated client transactions of $1 trillion in volume. Our products & services
Job Source: FalconXClear Corporate Services LLC
New York, NY, United States
We're looking for an experienced Senior Application Security Engineer to help us secure the next generation of products which will go beyond just ID and enable our members to leverage the power of a networked digital identity. As a Senior Security Engineer at CLEAR, you will participate in the design, implementation, testing, and deployment of appl
Job Source: Clear Corporate Services LLCBranch Metrics
New York, NY, United States
At Branch, we're transforming how brands and users interact across digital platforms. Our mobile marketing and deep linking solutions are trusted to deliver seamless experiences that increase ROI, decrease wasted spend, and eliminate siloed attribution. Our Branch team consists of smart, humble, and collaborative people who value ownership over all
Job Source: Branch MetricsAlma
New York, NY, United States
Alma is on a mission to simplify access to high-quality, affordable mental health care. We do this by making it easy and financially rewarding for therapists to accept insurance and offer in-network care. When a provider joins Alma, they gain access to a suite of tools that not only help them better run their business, but also grow it sustainably
Job Source: AlmaMindlance
Jersey City, NJ, United States
Job Details: Title: Web Application Security / Penetration Testing Engineer Location: Jersey City, NJ (Hybrid role: 3 days a week) Duration: Contract to Hire Important Notes from Hiring Manager: Need Experience in Application Offensive Security Consultant Minimum of 5 years of experience in application penetration testing Minimum of 3 years of expe
Job Source: MindlanceFalconX
, NY, United States
Who are we? FalconX is one of the fastest-growing startups in FinTech. We are redefining prime brokerage from the ground up. We are backed by some of the best investors in the world including Accel, American Express, B Capital, Coinbase, Fidelity, Lightspeed Venture Partners, Fenbushi Capital and Tiger Global Management + more yet to be publicly di
Job Source: FalconXMindlance
Jersey City, NJ, United States
Job Details: Title: Web Application Security / Penetration Testing Engineer Location: Jersey City, NJ (Hybrid role: 3 days a week) Duration: Contract to Hire Important Notes from Hiring Manager: Need Experience in Application Offensive Security Consultant Minimum of 5 years of experience in application penetration testing Minimum of 3 years of expe
Job Source: MindlanceNew York, NY, United States
There's a guideline in medicine called "Sutton's Law": first consider the obvious. The law gets its name from an apocryphal interview with Willie Sutton, an infamous bank robber, who was asked "Why do you rob banks?" and replied simply "Because that's where the money is."
Mercury is building the banking* stack for startups, and it's obvious security is critical to our product. That's where the money is.
At Mercury, there are two dedicated security teams. The first is a comprehensive Information Security (InfoSec) team with extensive backgrounds in security. They focus on areas such as PCI/SOC2 compliance, endpoint management, detection and response, as well as network and corporate security. This team has a wide mandate and frequently work in our product and infrastructure as well.
The team you would be joining is primarily focused on engineering, with a primary goal of addressing security challenges through code. Our work involves tackling a variety of security issues, ranging from developing security features to creating infrastructure that assists other teams in building their features securely. Currently, our main projects include enhancing our admins' permissions system, devising a streamlined method for users to verify their identity during phone calls, and a few smaller initiatives. In addition to coding, we actively engage with other teams. This involves explaining vulnerabilities identified through our bug bounty programs, addressing security concerns related to ongoing projects, and responding to queries from other teams. Exceptional security judgment, a grasp of product concepts, and effective communication skills are highly valuable in these collaborative scenarios.
As a Security Engineer at Mercury, you will:
Address key security features within the product, such as developing passkey support, enhancing the security dashboard, refining user-facing audit logs, and implementing SAML.
Upgrade our pentest environment to ensure it aligns with our security researchers' needs, addressing challenges like data sufficiency and effective stubbing of third-party interactions.
Contribute to bug bounty program triage by validating reports, coordinating responses, and managing researcher payments, while collaborating with teams to resolve identified issues.
Analyze vulnerabilities and proactively target root causes by creating tools for codebase scanning, establishing effective patterns and systems, and enhancing security training for engineers.
Assist teams in threat modeling and cultivating a security mindset for their features, leveraging dedicated security expertise to complement the existing skills of our engineers.
Investigate user security issues, utilizing product knowledge and logs to understand incidents and proposing improvements to monitoring for quicker detection of similar issues.
The ideal candidate possesses:
Excellent empathy for customers.
An ability to carefully consider tradeoffs between security and user experience.
Proficiency in standard software engineering, including discussions on schema and app design.
Requirements:
Three or more years of experience in software security roles or equivalent.
Full-stack development experience, with excitement to learn and work with Haskell, React, and TypeScript.
Nice to Haves:
Familiarity with our tech stack.
Experience in fraud or finance-related domains.
The total rewards package at Mercury includes base salary, equity (stock options), and benefits.
Our salary and equity ranges are highly competitive within the SaaS and fintech industry and are updated regularly using the most reliable compensation survey data for our industry. New hire offers are made based on a candidate’s experience, expertise, geographic location, and internal pay equity relative to peers.
Our target new hire base salary ranges for this role are the following:
US employees (any location): $203,100–$238,900.
Canadian employees (any location): CAD 184,800–217,400.
*Mercury is a financial technology company, not a bank . Banking services provided by Choice Financial Group and Evolve Bank & Trust®; Members FDIC.
#LI-ES1
We use Covey as part of our hiring and / or promotional process for jobs in NYC and certain features may qualify it as an AEDT. As part of the evaluation process we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound on January 22, 2024.
Please see the independent bias audit report covering our use of Covey here.
Email Alert for Senior Application Security Engineer jobs in New York, NY, United States
ⓘ There was an unexpected error processing your request.
Please refresh the page and try again.
If the problem persists, please contact us with your issue.
You can always manage your preferences and update your interests to ensure you receive the most relevant opportunities.
Get ready to discover your next great opportunity.