Remote Product Security Engineer

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • OnePay is a consumer financial services app focused on helping people achieve financial progress.
  • The company aims to provide accessible banking, credit, and payment products to unbanked and underbanked Americans.
  • The Product Security Engineer will ensure secure and reliable applications at scale by collaborating with engineers to integrate security into the product development process.
  • Responsibilities include architecting secure AWS configurations, securing CI/CD pipelines, enhancing container security, conducting threat modeling, performing secure code reviews, automating security tasks, and maintaining security architecture.
  • The role requires a champion of modern Product Security Engineering to impact the security of all OnePay products.

Requirements:

  • Candidates must have 10+ years of experience in security engineering, DevSecOps, and application development.
  • A strong knowledge of CVSS, MITRE ATT&CK, and OWASP Top 10 is required.
  • Practical understanding of AWS core services (VPC, EC2, RDS) is essential.
  • Hands-on experience with securing Infrastructure as Code (IaC) and CI/CD pipelines is necessary.
  • Strong knowledge of container security best practices and orchestration platforms is required.
  • Practical experience in application security, including threat modeling, secure code review, and penetration testing is needed.
  • Familiarity with detection engineering, SIEM tuning, and scripting automation is preferred.
  • Candidates should have experience in modern application architecture and deployment practices.
  • Expertise in identifying and communicating common security vulnerabilities to both technical and non-technical partners is essential.
  • Experience in defining security architecture patterns and standards is preferred.
  • Understanding of regulatory compliance concerns (GLBA, CCPA, PCI) is a plus.
  • Candidates should embody the Triple H Factor: Humble, Hungry, and Honest.

Benefits:

  • OnePay offers a competitive base salary, stock options, and health benefits starting from Day 1.
  • A 401(k) plan with company match is provided.
  • The position is remote-friendly (US) with flexible time off (FTO) and opportunities for growth.
  • Employees will be part of a high-growth, mission-driven, inclusive culture where their work has a real impact.
About the job
Posted on
Job type
Full-time
Salary
$ 170,000 - 210,000 USD / year
Location requirements
United States - Remote North America - Remote
Position
Cybersecurity Engineer
Experience level
Lead
Technology stack
Docker AWS Kubernetes CI/CD
O
OnePay's company logo
OnePay
View company profile Visit onepay.com
Leave a feedback