Back to jobsApply
PayNearMe logo
PayNearMe

Every payment. Every time.

Senior Manager, Application Security

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 51-200H1B No SponsorCompany SiteLinkedIn

Location

California

Posted

14 days ago

Salary

$200K - $230K / year

Seniority

Senior

Bachelor Degree8 yrs expEnglishAWSCloudMicroservicesRubyRuby ON RailsSDLCGo

Job Description

• Lead the Application Security team, including hiring, mentoring, and performance management. • Define and execute the Application Security roadmap aligned with business priorities and regulatory obligations (e.g., PCI, SOC 2). • Partner closely with Engineering, Product, QA, Infrastructure, and DevOps leadership to embed security early in the SDLC. • Oversee security design reviews and code security reviews across: Go-based microservices Ruby-based monolith applications. • Provide technical guidance on secure architecture decisions in a cloud-first (AWS) environment. • Own and continuously improve the organization’s threat modeling framework and ensure it’s embedded in new feature development and architectural changes. • Ensure SAST and SCA tooling is integrated into CI/CD and appropriately tuned to reduce false positives. • Drive meaningful reporting dashboards for Development and Engineering leadership. • Establish and operationalize a risk-based vulnerability prioritization framework and scoring rubric aligned with OWASP guidance and applicable industry standards. • Act as a trusted advisor to Engineering leadership and influence architectural decisions that reduce systemic risk.

Job Requirements

  • 8+ years of experience in Application Security or Secure Software Engineering
  • 3+ years leading or managing technical security teams
  • Strong hands-on experience with Ruby (Rails) application security
  • Strong hands-on experience with Go (Golang) application security
  • Deep knowledge of Secure SDLC practices
  • Deep knowledge of Threat modeling methodologies (e.g., STRIDE, attack trees)
  • Familiarity with SAST and SCA tools and rule tuning
  • Understanding of OWASP Top 10 and API Security Top 10
  • Experience integrating security tools into CI/CD pipelines
  • Familiarity with cloud-native application security in AWS environments
  • Strong understanding of microservices security patterns (service-to-service auth, token handling, API gateways, etc.)
  • Strong communicator capable of influencing senior engineering leaders.

Benefits

  • Competitive salary and benefits with growth-company options grant
  • Fast- paced and professional work culture
  • Stock options with standard startup vesting - 1 year cliff; 4 years total
  • $50 monthly communication expense stipend to go towards your phone/internet bill
  • $250 stipend to enhance your WFH setup
  • Reimbursement for peripheral equipment: monitor (up to $400), keyboard and mouse (up to $200)
  • Premium medical benefits including vision and dental (100% coverage for employees)
  • Company-sponsored life and disability insurance
  • Paid parental bonding leave
  • Paid sick leave, jury duty, bereavement
  • 401k plan
  • Flexible Time Off (our team members typically take off ~3-4 weeks per year)
  • Volunteer Time Off
  • 13 scheduled holidays

Related Categories

Security Engineer

Related Job Pages

Security Engineer Jobs in CaliforniaRemote Full-time Jobs (US)More US Remote Jobs

More Security Engineer Jobs

Allied Universal logo

Physical Security Project Manager

Allied Universal

Deposita(TM), An Allied Universal(R) Company has perfected the art of cash management using world-class innovation, technology, and tailored solutions. We serve customers in retail, wholesale and banking sectors through in-depth consultations. We ensure every security need is met and exceeded every step of the way. Join our Phenomenal team today!

Security Engineer14 days ago
Full TimeRemoteTeam 10,001

Allied Universal is looking to hire a Physical Security Project Manager. This position is responsible for working with our clients corporate leaders to evaluate the company’s threat and risk conditions. This role will work closely with functional stakeholders and corporate leader...

View details: Physical Security Project Manager
United States
Apply
Zions Bancorporation logo

Manager – Quantum Safe Cybersecurity Program (Remote)

Zions Bancorporation
Security Engineer14 days ago
Full TimeRemoteTeam 10,001

This role is responsible for building and running the enterprise Quantum-Safe Program, owning the strategy, roadmap, and delivery of post-quantum cryptography and quantum-safe networking initiatives. Key duties include driving cryptographic modernization, governing algorithm agility, securing R&D environments, and ensuring future readiness against quantum threats.

CybersecurityNetwork SecurityCryptographyPKITLSSSHIPsecGoRustJavaPythonCloud SecurityAWSAzureGCPKubernetesCISSPCISM
View details: Manager – Quantum Safe Cybersecurity Program (Remote)
United States
$160K - $210K / year
Apply
Paytient logo

Senior Manager, Information Security Officer

Paytient

Paytient Health Payment Accounts help people better access and afford care.

Security Engineer14 days ago
Full TimeRemoteTeam 51-200Since 2018H1B No Sponsor
Company SiteLinkedIn

This role involves developing and implementing security policies, standards, and procedures while documenting data architecture and security controls to protect organizational assets. The manager will also lead the Information Security team, analyze enterprise security needs, and manage security tools like zero-trust access solutions.

Information SecurityEndpoint ManagementZero Trust ArchitectureNISTSOC2Network SecurityCloud SecuritySaaS SecurityEncryptionScriptingGoogle Workspace AdministrationMDM ManagementIncident ResponseVulnerability Management
View details: Senior Manager, Information Security Officer
United States
Apply
Diné Development Corporation logo

Information Assurance (IA)/Cybersecurity Engineer

Diné Development Corporation

DDC delivers a robust suite of IT solutions designed to help our clients address the challenges of the digital revolution and embrace the opportunities of digital transformation. We provide a full spectrum of IT solutions that support clients in the defense, healthcare, national security, law enforcement, and intelligence communities. With a central focus on innovation, we translate modern technologies, industry best practices, and proven methodologies into client-driven solutions. Our teams of technologists are organized around digital solutions in the areas of systems/software engineering, data management, cloud adoption, and cybersecurity. As thought leaders and strategic partners, we provide a deliberate mix of people, processes, and technology to advance mission goals. Our IT companies have been consistently recognized for driving mission success through process efficiencies, reduced costs, and exploited technologies.

Security Engineer14 days ago
Full TimeRemote

We are seeking an Information Assurance (IA) / Cybersecurity Engineer to support and maintain the security posture of mission systems in a DoD environment. The role focuses on implementing security controls, supporting compliance activities, and coordinating remediation across Az...

View details: Information Assurance (IA)/Cybersecurity Engineer
United States
Apply