Senior Application Security Engineer

🕒 March 28

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

RevenueCat

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2017

☁️ SaaS

🔌 API

🤝 B2B

💰 $40M Series B on 2021-05

SaaS • API • B2B

RevenueCat is a platform that helps developers build and grow their subscription-based apps by simplifying in-app purchase management across iOS, Android, and the web. Trusted by over 32,000 apps, RevenueCat offers a suite of tools for subscription data management, customer support, marketing, and engineering teams. The platform enables businesses to implement in-app purchases faster, automate receipt validation, and provide a central source of truth for subscription data. RevenueCat also supports A/B testing and provides actionable insights through a unified view of cross-platform usage, helping apps to drive growth and optimize revenue strategies. With its comprehensive API, RevenueCat facilitates the integration of subscriptions with existing marketing and analytics tools, allowing developers to focus on building impactful app features.

📋 Description

• Work closely with engineering teams, PMs and external parties to ensure that RevenueCat's products are secure. • Help to keep security at that speed, invest in automatic tooling to prevent certain kinds of security issues, identify common patterns and create frameworks that make building secure applications the default. • Participate in security code and system reviews, threat modeling and risk assessments. • Support the Bug Bounty program, helping teams on triaging, prioritizing and fixing issues.

🎯 Requirements

• Deep understanding of common security flaws and ways to address them, both in web and mobile app environments. • Experience identifying security issues through code review. • Experience with common security tools and services, like SAST tools, proxies… • Familiar with new AI security risks regarding MCPs, prompt injection and others. • Experience securing mobile SDKs (iOS/Android) and backend services (Python) is highly valued. • You see what is needed, you take action and own problems to turn them into solutions. • You love building frameworks and automation. You see that the best way to ensure that security and best practices are followed is to make something so easy and joyful to use that nobody wants to use anything else. • You understand how LLMs and AI coding tools are changing engineering, you want to embrace and use them effectively to keep security level up. • You move fast, iterate quickly, pivot and reprioritize when needed to maximize impact.

🏖️ Benefits

• Offers Equity