Senior Application Security Engineer
Há 17 horas
Join to apply for the Senior Application Security Engineer role at RainRain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus.
We have raised nearly $400M in funding—including the largest Series A in fintech history—and just closed our Series B to fuel our next stage of hypergrowth.We are seeking a skilled and driven Senior Application Security Engineer to join Rain's growing Security team.
This role demands a proactive approach to secure software development and cloud-native defense.
You will partner closely with engineering and development squads, and work alongside our Cloud Security and GRC team members to improve Rain's application and platform security posture.
This position is technically grounded, requiring direct engagement in application-layer matters and security reviews, while also contributing to cloud security automation, awareness initiatives, and secure engineering practices across the SDLC.Key ResponsibilitiesCollaborate with development squads to validate vulnerabilities and provide actionable remediation guidance aligned with business risk.Drive threat modeling sessions (e.g., STRIDE, PASTA) for critical systems and APIs.Design, implement, and oversee automated processes for securely updating application and code dependencies, proactively mitigating issues and ensuring timely vulnerability remediation.Integrate security checks into CI/CD pipelines (SAST, DAST, SCA, IaC), working with tools like Semgrep, Snyk, Trivy, and Burp Suite.Contribute to runtime security initiatives, such as container/Kubernetes hardening, RASP, and eBPF-based detection.Build and maintain a security issues dashboard to track remediation status and metrics.Provide real-time support in the event of cybersecurity incidents impacting applications or cloud infrastructure (exploited vulnerability, credential stuffing, web/API attacks).
Partner with the Cloud Security team on security automation tasks and monitoring improvements (e.g., Security Hub remediation automations, DLP monitoring).
Conduct proactive research on new threats, vulnerabilities, and attack techniques relevant to Rain's architecture.Collaborate with the GRC team to develop and deliver internal security awareness initiatives, phishing campaigns, and developer training (e.g., secure coding, API security).
Participate in the continuous improvement of AppSec maturity (e.g., aligning with OWASP SAMM, ISO 27001, or SOC 2 frameworks).
Required QualificationsFluent English, including strong verbal and written skills.Strong problem-solving and analytical mindset.Excellent communication skills to convey security risks to technical and non-technical stakeholders.3–5+ years of experience in application security, penetration testing roles, and/or secure code development, including work with QA teams.Hands-on experience with SAST, DAST, and SCA tools (e.g., Semgrep, Burp, Snyk).
Deep understanding of web, mobile, and API vulnerabilities (OWASP Top 10, API Top 10, MITRE CWE).
Proven expertise in performing code reviews or security assessments and writing clear reports.Proficiency in at least one backend language (e.g., Go, Python, ) and understanding of React/React Native front-ends.Familiarity with secure architecture of microservices, event-driven systems, and REST APIs using OAuth2/OpenID Connect.Experience securing CI/CD pipelines and integrating AppSec tooling into SDLC.Solid knowledge of containerization and Kubernetes security fundamentals.Understanding of cloud security (preferably AWS), including IAM principles, cloud-native service configurations, and network segmentation.Comfortable with Agile development methodologies and working within cross-functional squads.Software supply chain security (e.g., SBOM, artifact signing).
Preferred QualificationsCertifications such as OSCP, OSWE, GWAPT, CPTE, or CSSLP.AWS, GCP, or Azure Security Specialty certification.Familiarity with bug bounty triage and vulnerability management platforms (e.g., DefectDojo).
Experience implementing RASP or eBP runtime protection tools.Exposure to LLM/AI security considerations and secure code generation practices.Familiarity with logging and monitoring tools (e.g., CloudWatch, Datadog, Grafana).
Who We AreRain is filled with people who are deeply rooted in our mission, who embrace diversity throughout our global team, and who grow personally and professionally.
We own what we do and let data guide our actions while working quickly and adapting to new challenges every day.As part of our dedication to the diversity of our workforce, Rain is committed to Equal Employment Opportunity and does not discriminate based on race, religion, color, national origin, ethnicity, gender, sex (including pregnancy), protected veteran status, age, disability, sexual orientation, gender identity, gender expression, or any unlawful criterion under applicable federal, state, or local laws.If you need assistance or accommodation due to a disability, you may contact us at ******.
#J-18808-Ljbffr
-
Secure Software Development Expert
Há 2 dias
Juazeiro do Norte, Ceará, Brasil beBeeApplicationSecurityEngineer Tempo inteiro US$180.000 - US$240.000We are looking for a highly skilled Senior Application Security Engineer to join our growing team. This role demands a proactive approach to secure software development and cloud-native defense.The successful candidate will partner closely with engineering and development squads, and work alongside our Cloud Security and GRC team members to improve our...
-
Azure Devops Engineer
Há 19 horas
Juazeiro do Norte, Ceará, Brasil Decskill Tempo inteiroOverview Azure DevOps Engineer role at Decskill. This is a remote project in Brazil. Decskill was founded in 2014 as an IT Consulting Company and their main mission is to delivery value through the knowledge. We enable companies to meet the chalenges of digital world by providing our clients with business models that ensure technological capacity,...
-
Senior .NET Software Developer
1 semana atrás
Juazeiro do Norte, Ceará, Brasil beBeeSoftwareDeveloper Tempo inteiroJob DescriptionWe are seeking an experienced software developer to join our team in delivering high-quality solutions for clients worldwide. As a key member of our development team, you will be responsible for designing, developing, and implementing software applications using .NET technologies.The ideal candidate will have a strong background in computer...
-
Cloud Infrastructure Specialist
Há 19 horas
Juazeiro do Norte, Ceará, Brasil beBeeCloudInfrastructureEngineer Tempo inteiro R$90.000 - R$120.000Cloud Infrastructure EngineerAzure Cloud Infrastructure Engineer role involves designing, implementing and managing scalable infrastructure using Terraform across AWS and Azure cloud environments. This position is responsible for ensuring that the company's cloud infrastructure is secure, efficient and aligned with business objectives.The ideal candidate...
-
Chief Industries, Inc Careers
4 semanas atrás
Viçosa do Ceará, Ceará, Brasil Chief Industries, Inc. Tempo inteiroChief Industries, Inc Careers - Exterior Wall BuilderJoin to apply for the Chief Industries, Inc Careers - Exterior Wall Builder role at Chief Industries, Inc.Chief Industries, Inc Careers - Exterior Wall Builder1 day ago Be among the first 25 applicantsJoin to apply for the Chief Industries, Inc Careers - Exterior Wall Builder role at Chief Industries,...
-
Senior Application Security Engineer
Há 2 dias
Caxias do Sul, Rio Grande do Sul, Brasil Rain Tempo inteiroOverview Senior Application Security Engineer role at Rain. Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus. We have raised nearly $400M in funding including the largest Series A in fintech history and just closed our Series B. This role is on Rain's...
-
Senior Application Security Engineer
Há 3 dias
Caxias do Sul, Rio Grande do Sul, Brasil Rain Tempo inteiroOverviewSenior Application Security Engineer role at Rain.Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus.We have raised nearly $400M in funding including the largest Series A in fintech history and just closed our Series B. This role is on Rain's Security...
-
Senior Application Security Engineer
Há 2 dias
São Gonçalo do Amarante, Brasil Rain Tempo inteiroOverview Senior Application Security Engineer at Rain. Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus. We have raised nearly $400M in funding—including the largest Series A in fintech history—and recently closed our Series B to fuel our next stage of...
-
Senior Application Security Engineer
Há 3 dias
Rio Grande do Sul, Brasil Rain Tempo inteiroOverview Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus. We have raised nearly $400M in funding—including the largest Series A in fintech history—and just closed our Series B to fuel our next stage of hypergrowth. We are seeking a skilled and driven...
-
Senior Application Security Engineer
Há 17 horas
São Gonçalo do Amarante, Brasil Rain Tempo inteiroOverviewSenior Application Security Engineer at Rain.Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus.We have raised nearly $400M in funding—including the largest Series A in fintech history—and recently closed our Series B to fuel our next stage of...
-
Senior Application Security Professional
Há 2 dias
São Gonçalo do Amarante, Brasil beBeeSecurity Tempo inteiro US$180.000 - US$250.000Secure Software Engineer OpportunityWe are seeking an accomplished Senior Application Security Engineer to join our team. The successful candidate will be responsible for developing and implementing secure software development practices, collaborating with engineering squads, and driving cloud security automation initiatives.This role emphasizes hands-on...
-
Chief Information Security Architect
Há 3 dias
Rio Grande do Sul, Brasil beBeeApplicationSecurity Tempo inteiro US$200.000 - US$250.000Our team is seeking a skilled and experienced Senior Application Security Engineer to join our growing organization.This role will involve working closely with development teams to identify and remediate vulnerabilities in software applications, as well as driving threat modeling sessions for critical systems and APIs.We are looking for someone who has...
-
Devops Engineer
2 semanas atrás
São Bernardo do Campo, São Paulo, Brasil Agileengine Tempo inteiro3 days ago Be among the first 25 applicantsAgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries.We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.If you're looking for...
-
IT Security Engineer
Há 19 horas
Região Geográfica Intermediária do Recife, Brasil Rocket Tempo inteiroOverview You will report to our Head of Security and join the Security team. On TheOrg you can view the complete structure of our organisation, including information about every team member, hiring managers and the size of each department. The IT Security Engineer plays a key role at the intersection of cybersecurity and IT operations. This position supports...
-
Infrastructure Security Specialist
1 semana atrás
São Bernardo do Campo, São Paulo, Brasil beBeeVulnerability Tempo inteiro R$100.000 - R$150.000Job OverviewA Site Reliability Engineer is responsible for ensuring the production security, leading OS upgrades, managing software dependencies and collaborating on security initiatives.
