Application Security Engineer

Job not on LinkedIn

September 19

Apply Now

Receive Emails with Similar Jobs

Unit21

WebsiteLinkedInAll Job Openings

Fintech • Cybersecurity • Compliance

Unit21 is a customizable platform designed to transform fraud prevention and anti-money laundering (AML) operations. It enables organizations to run custom detection logic, automate investigations, and seamlessly manage regulatory compliance. With features like real-time payment fraud prevention, transaction monitoring, and automated case management, Unit21 provides comprehensive solutions that adapt to unique business needs, ensuring security and efficiency in the financial technology space.

51 - 200 employees

Founded 2018

💳 Fintech

🔒 Cybersecurity

📋 Compliance

💰 $34M Series B on 2021-07

📋 Description

• Design, code, and deploy automated security controls, services, and frameworks to prevent vulnerabilities at scale • Build, own, and operate the tools and infrastructure for the application security program (SAST, DAST, SCA, secret scanning) • Perform hands-on threat modeling, security architecture reviews, and in-depth code reviews (Python/TypeScript) • Conduct penetration tests and vulnerability assessments against applications and APIs • Develop custom tools and automation to streamline security operations and enhance detection and response • Act as a key member of the incident response team during security events • Mentor and educate product engineers on secure coding best practices

🎯 Requirements

• 4+ years of hands-on experience in a software engineering or application security role • Demonstrated history of successful cross-organizational efforts and ability to drive complex technical projects to completion • Expert-level proficiency in Python, including experience building security tools, automation scripts, or backend services • Professional experience with Go or TypeScript is a significant plus • Deep, hands-on knowledge of common application vulnerabilities, such as the OWASP Top 10, and their mitigation techniques • Proven experience integrating, fine-tuning, and operating security tools (e.g., SAST, DAST, SCA) within developer workflows • Experience conducting manual penetration tests and vulnerability assessments on web applications and APIs • Previous experience implementing protections for Generative AI systems is a significant plus • Hands-on experience securing public cloud environments (AWS or GCP) • Basic proficiency with Infrastructure as Code (e.g., Terraform) and containerization technologies (e.g., Docker, ECS, or Kubernetes) • Familiarity with security basics for cloud infra (infrastructure security engineer on staff) • Ability to mentor and educate product engineers on secure coding best practices

🏖️ Benefits

• Competitive salary and pre-IPO stock options • 100% company-paid medical, dental and vision insurance (for employee) • Optional HSA and FSA medical reimbursement accounts • Unlimited paid time off • Generous leave programs for life events • 401(k) • Charity matching • Annual Learning & Development stipend • One-time Home office set-up stipend • Commuter benefits • Wellness Bundle: One Medical, Headspace, Gympass and Carrot Fertility • Happy hours and team-building events • Great office space in the San Francisco Financial District • Fully stocked kitchen • Lunch and dinner provided in SF office at least 3x per week • A great company culture with a strong emphasis on diversity, equity and inclusion