Remote Application Security Engineer

Description:

• The Prelim team is seeking an Application Security Engineer to join their fully remote US team.
• This role is the first dedicated security hire, providing the opportunity to architect and build security systems for financial institutions.
• The engineer will own the security of the platform that powers digital account opening for financial institutions globally.
• Responsibilities include working with the engineering team, financial institution customers, and compliance stakeholders to design and implement security solutions.
• Key responsibilities involve architecting and implementing security controls across the entire stack, hunting for and remediating vulnerabilities, and building authentication and session management systems.
• The engineer will design security monitoring, automated threat detection, and incident response systems.
• Compliance requirements for PCI DSS, SOX, GDPR, and SOC 2 must be navigated and implemented in a practical manner.
• The role includes leading security code reviews and establishing scalable security practices.
• The engineer will make security architecture decisions that impact millions of users accessing financial services.

Requirements:

• Candidates should have 2-5 years of experience in application security, security engineering, or software development with a strong security focus.
• A deep understanding of web application security, including OWASP Top 10, authentication systems, and common vulnerability classes is required.
• Experience with security testing tools (SAST, DAST, dependency scanning) and the ability to build custom security tooling is necessary.
• Knowledge of secure coding practices, security architecture, and threat modeling is essential.
• Familiarity with cloud security (preferably AWS) and infrastructure security concepts is expected.
• Understanding of compliance frameworks (PCI DSS, SOC 2) or a willingness to quickly become an expert is required.
• Candidates should approach security problems systematically, balancing security with business impact.
• Strong communication skills to convey complex security concepts to both technical and non-technical stakeholders are necessary.
• A passion for mentoring other engineers and building a security culture across the organization is important.

Benefits:

• The position offers a salary range of $120,000 - $150,000 a year, along with meaningful equity.
• Early employees receive meaningful equity grants with minimal dilution, providing real ownership in the company.
• The role allows for the unique opportunity to build security architecture from the ground up.
• Employees will work with major financial institutions and have a significant impact on protecting sensitive financial data.
• The company offers a fast-paced remote environment where security expertise will shape the future of financial institutions.
• There is direct access to leadership and immediate impact on product decisions, with opportunities for growth into leading the security team as the company scales.