Current jobs related to Senior Application Security Engineer - New York, New York - SoFi


  • New York, New York, United States MedReview Full time

    Job SummaryWe are seeking a seasoned Senior Application Security Engineer to lead MedReview's application security initiatives. As a key member of our team, you will be responsible for the strategic implementation of security measures to protect our applications and data, while mentoring junior engineers and shaping our security posture.Key...


  • New York, New York, United States Citizens Full time

    Job Title: Senior Application Security EngineerJob Summary:Citizens is seeking a highly skilled Senior Application Security Engineer to join our team. As a key member of our security team, you will be responsible for identifying, interpreting, and helping drive vulnerability remediation in enterprise applications.Responsibilities:Participate in the...


  • New York, New York, United States MedReview Full time

    Job Title: Senior Application Security EngineerMedReview is seeking a seasoned Senior Application Security Engineer to lead our application security initiatives. As a key member of our team, you will be responsible for the strategic implementation of security measures to protect our applications and data, while mentoring junior engineers and shaping our...


  • New York, New York, United States Abnormal Security Full time

    About the RoleAbnormal Security is seeking a Senior Software Engineer to join the Inbound Email Products - Systems (IEPS) team. The IEPS team is responsible for Abnormal's core Inbound Email Security product backend systems, including Remediation and Threat Log (data processing and storage). Our objective is to enhance stability and scalability, as well as...


  • New York, New York, United States Amazon Services LLC Full time

    About the RoleWe are seeking a highly skilled Senior Security Engineer to join our Application Security Testing Automation team at Amazon Services LLC. As a key member of our team, you will play a critical role in helping us provide automated security testing solutions for all of Amazon.Key ResponsibilitiesDefine and drive strategy, act as a technical lead...


  • New York, New York, United States Amazon Services LLC Full time

    About the RoleWe are seeking a highly skilled Senior Security Engineer to join our Application Security Testing Automation team at Amazon Services LLC. As a key member of our team, you will play a critical role in providing automated security testing solutions for all of Amazon.Key ResponsibilitiesDefine and drive strategy, act as a technical lead for the...


  • New York, New York, United States Genius Sports Full time

    About Genius SportsGenius Sports is a leading provider of sports data and technology solutions. We are at the forefront of the global sports industry, connecting sports, brands, and fans through official live data.The RoleWe are seeking an experienced Application Security Engineer to join our team. As a key member of our security team, you will be...


  • New York, New York, United States Abnormal Security Full time

    About the RoleAbnormal Security is seeking a Senior ML Infra Engineer to join the Detection Team. The Detection Division focuses on building advanced technology for identifying and stopping email and cloud-based attacks. As an ML Infra Engineer, you will be responsible for making feature development at Abnormal fast, responsive, stable, and confident for...


  • New York, New York, United States Sirius XM Radio Inc Full time

    Job Summary:The Application Security Engineer will play a crucial role in supporting SiriusXM technology objectives by providing tools, guidance, and continuous support to ensure the security success of our software and applications.Key Responsibilities:Build and document security features to enable developers to write secure code.Facilitate the...


  • New York, New York, United States Sirius XM Radio Inc Full time

    Job Title: Application Security EngineerSiriusXM is seeking an experienced Application Security Engineer to join our team. As a key member of our security organization, you will play a critical role in ensuring the security and integrity of our software applications.Key Responsibilities:Design and implement secure software development lifecycle (SDLC)...


  • New York, New York, United States Trail of Bits Full time

    Job Title: Senior Security Engineer, BlockchainTrail of Bits is seeking a highly skilled Senior Security Engineer, Blockchain to join our team. As a key member of our blockchain security team, you will be responsible for reviewing blockchain applications for security vulnerabilities, leveraging your expertise in Go and/or Rust to review off-chain code or...


  • New York, New York, United States Keeper Security Full time

    About the RoleWe are seeking a highly motivated and experienced Senior Software Engineer to join our Keeper Dev team.As a Senior Software Engineer, you will play a pivotal role in designing, developing, and maintaining one of our core products, Keeper Secrets Manager.You will work closely with cross-functional teams to deliver high-quality software solutions...


  • New York, New York, United States Datadog Full time

    Senior Engineer - Core Security ResponseAbout the Role:We are seeking a highly skilled Senior Engineer to join our Core Security Response team at Datadog. As a key member of our security team, you will play a vital role in maintaining the stability and integrity of our systems and data.Key Responsibilities:Investigate, contain, and remediate security threats...


  • New York, New York, United States Motion Recruitment Full time

    Job Title:Senior Software Engineer - Financial ApplicationsLocation:Fully remote (must be in CST or EST)Job Summary:We are seeking a highly skilled Senior Software Engineer to join our team and lead the development of financial applications for our online lending platform. As a key member of our engineering team, you will be responsible for designing,...


  • New York, New York, United States Copia Automation Full time

    We are seeking a highly skilled Senior Field Applications Engineer to support the implementation of Copia's DeviceLink product in industrial automation settings.This role is part of our Strategy and Operations team, partnering with sales and customer success to accelerate time to value for our customers.You will be responsible for collaborating closely with...


  • New York, New York, United States New Directions Staffing Full time

    Job Opportunity: Applications Security Sales EngineerWe are seeking a highly motivated and experienced Applications Security Sales Engineer to join our team at New Directions Staffing. As a key member of our sales team, you will be responsible for educating prospects and customers on SaaS-based applications security products.Key Responsibilities:Deliver...


  • New York, New York, United States New Directions Staffing Full time

    Unlock Your Career Potential as an Application Security Sales EngineerWe are seeking a highly motivated and experienced Application Security Sales Engineer to join our team at New Directions Staffing. As a trusted advisor to our clients, you will work closely with account executives to educate prospects and customers on SaaS-based applications security...


  • New York, New York, United States Oscar Health Full time

    Job Title: Senior Manager, Platform Security EngineeringWe are seeking a highly skilled Senior Manager, Platform Security Engineering to join our Security team at Oscar Health.About the RoleThis is a hybrid role in our New York City office (in Hudson Square) where you will work part of the time in the office and part of the time remote / work-from-home.As a...


  • New York, New York, United States Citizens Full time

    Job DescriptionIn this role, you will be part of a collaborative team working to identify, interpret, and drive vulnerability remediation in enterprise applications. You will be responsible for participating in the coordination and presentation of application vulnerability reviews to development, risk, audit, and business teams.This role is technical and...


  • New York, New York, United States Mizuho Bank Ltd Full time

    Job SummaryWe are seeking a highly skilled Senior Security Engineer to join our team at Mizuho Bank Ltd. As a key member of our security team, you will be responsible for ensuring the security and integrity of our systems and data.Main Responsibilities:Design and implement secure systems and architecturesConduct vulnerability assessments and penetration...

Senior Application Security Engineer

3 months ago


New York, New York, United States SoFi Full time

Employee Applicant Privacy Notice
Who we are:
Shape a brighter financial future with us.
Together with our members, we're changing the way people think about and interact with personal finance.
We're a next-generation financial services company and national bank using innovative, mobile-first technology to help our millions of members reach their goals. The industry is going through an unprecedented transformation, and we're at the forefront. We're proud to come to work every day knowing that what we do has a direct impact on people's lives, with our core values guiding us every step of the way. Join us to invest in yourself, your career, and the financial world.
About The role
SoFi Application Security team assists and partners with engineering, product and design organizations. Our mission is to secure the products and services delivered to our members and customers. We deploy best in class Application Security practices, compliance frameworks, and design patterns by collaborating with product owners, engineers, and executives. The mission is core to SoFi's value "Put our member's interest first".
As a Senior Application Security Engineer, you will be responsible for building and implementing security tools and services to support the development of SoFi's platforms, products, and services. You will work in conjunction with Product security engineers, development, and product teams to to bake security controls into software development lifecycle. This role is pivotal to build security with agility and help SoFi scale.
The ideal candidate will be highly collaborative, balancing the right level of security with business objectives, and working to creatively solve complex Application Security related problems in an agile environment.
What you'll do:

  • Conduct application security design reviews to identify potential vulnerabilities and recommend mitigation strategies.
  • Perform comprehensive code reviews to ensure adherence to security best practices and identify security flaws.
  • Develop and implement security services, leveraging coding skills to create robust and scalable solutions.
  • Collaborate with development teams to integrate security into the software development lifecycle.
  • Design security features and controls to protect applications from threats and ensure compliance with security standards.
  • Provide guidance and mentorship to developers on secure coding practices and security architecture.
  • Stay current with the latest security trends, tools, and technologies to proactively address emerging threats.
  • Contribute to the continuous improvement of security processes and practices within the organization.

What you'll need:

  • At least 3-5 years of experience in Python, Java or Golang, emphasizing writing clean, maintainable, and secure code.
  • Deep understanding of security fundamentals, including the OWASP Top 10 and best practices for application security.
  • Demonstrated understanding on CI/CD pipeline security best practices.
  • Knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols) and their security implications.
  • Understanding of the Application Layer of the OSI model and its security considerations.
  • Experience with securing mobile applications, understanding of mobile security best practices, and knowledge of platform-specific security features.
  • Strong understanding of API security, including best practices for securing RESTful and GraphQL APIs.
  • Ability to effectively prioritize and manage multiple work streams, ensuring timely and accurate delivery of security solutions.
  • Strong written and verbal communication skills for articulating complex security concepts and solutions to technical and non-technical stakeholders alike.
  • Strong understanding of data security principles and cryptography.

Preferred Qualifications:

  • Bachelor's degree in computer science or equivalent from a fully accredited college or university
  • 4+ years' experience in Application security engineering
  • Experience with cloud-native products and an in-depth understanding of microservice topologies and implementations
  • 4+ years of experience with programming in Golang or Python
  • Knowledge of CI/CD, application development, and testing tools
  • Ability to work in a fast-paced and Agile development environment
  • Work and play well with others; SoFi is a collaborative environment
  • Experience implementing data security solutions such as encryption, masking or tokenization

Nice to have:

  • Open-source projects and/or contributions to open-source community
  • AWS Certified Security / Solution Architect
  • Master's or PhD in Computer Science or Engineering
  • Financial services experience

Compensation and Benefits
The base pay range for this role is listed below. Final base pay offer will be determined based on individual factors such as the candidate's experience, skills, and location.
To view all of our comprehensive and competitive benefits, visit our Benefits at SoFi page
SoFi provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law.
The Company hires the best qualified candidate for the job, without regard to protected characteristics.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
New York applicants: Notice of Employee Rights
SoFi is committed to embracing diversity. As part of this commitment, SoFi offers reasonable accommodations to candidates with physical or mental disabilities. If you need accommodations to participate in the job application or interview process, please let your recruiter know or email
Due to insurance coverage issues, we are unable to accommodate remote work from Hawaii or Alaska at this time.
Internal Employees
If you are a current employee, do not apply here - please navigate to our Internal Job Board in Greenhouse to apply to our open roles.