Upside is a technology company that increases the financial power of people and businesses in the real world. Our technology has helped millions of people get more purchasing power on the things they need, and tens of thousands of brick-and-mortar businesses earn measurable profit. Billions of dollars in commerce run through the Upside platform every year, and that value goes directly back to our retailers, the consumers they serve, and towards important sustainability initiatives.
Staff Application Security Engineer
Location
District Of Columbia
Posted
1 day ago
Salary
$210K - $230K / year
Seniority
Senior
Job Description
Meet Upside:
We created Upside to transform brick-and-mortar commerce. Our technology uses the sophistication of online retail—profit measurement, attribution, and incrementality—to provide users with more value on their everyday purchases and brick-and-mortar businesses with new, profitable customers. We’ve helped millions of users earn 2 to 3 times more cashback than any other product, and hundreds of thousands of brick-and-mortar businesses earn measurable profit. Billions of dollars in commerce run through the Upside platform every year, and that value goes directly back to our retailer partners, the consumers they serve, and important sustainability initiatives.
The Impact You’ll Make:
You’ll report into the Director, Information Security and build relationships with technology stakeholders. You’ll leverage your knowledge of secure code practices and payment systems to identify and remediate application vulnerabilities. This individual contributor role will innovate for our AppSec team, increase our AppSec posture and enable our engineers to code safely.
Innovate with AI and deliver security solutions to mitigate application vulnerabilities
Run security code tests (SAST, SCA) and partner with engineers to remediate unsafe code
Create threat models and engage technology teams to review and document risks
Guide leadership on security architecture, design and best AppSec practices
Train and upskill engineers on safe coding and vulnerability management
Assist penetration testing initiatives and/or help manage bug bounties
Support administration of AWS Control Tower and IAM provisioning
Interact with the security community and keep aware of trends
What You Should Have:
6+ years of application or product security inclusive of reviewing Python code
Experience with innovating and delivering solutions related to vulnerability management
Deep knowledge of AWS and Lambda security architecture and AWS Control Tower
Strong understanding and adoption of AI technologies
Bachelor’s degree in Computer Science or Engineering highly preferred
Exceptional customer service and people skills
Tools We Use:
Github Suite (Advanced Security, Actions, Copilot)
Python
Terraform
AWS Lambda, DynamoDB, S3, SNS, SQS, IAM, VPCs
ChatGPT
Snowflake
SQL
Location:
This role offers location flexibility, however, if you’re based in the Washington, D.C., Austin, Chicago, or NYC metropolitan regions, in-office attendance is required on a hybrid basis.
Compensation:
The US base salary range for this full-time position is $210,000 - $230,000 + equity + benefits. The final starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. Your recruiter can share more about the specific salary range during the hiring process.
#LI-Hybrid
#LI-NE1
Benefits:
Medical, dental, and vision coverage starting on Day 1
Equity (ISOs)
401(k) program
Family planning programs + paid parental leave
Physical fitness and wellness memberships
Emotional and mental health support programs
Unlimited PTO + 10 paid federal holidays + our annual, week-long Winter Break
Flexible work environment
Lunch reimbursement for in-office employees
Employee Resource Groups
Learning and Development stipend
Transparent culture
Amazing mission!
Diversity and Inclusion:
Diversity drives innovation, and our differences make us stronger. We‘re passionate about building a workplace that represents a variety of backgrounds, skills, and perspectives, and we do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Everyone is welcome here!
If there's anything we can do to support a disability or special need during your application or interview process, please email accommodations@upside.com.
This email is for accessibility accommodations only, it should not be used to submit job applications.
Notice To Recruiters And Placement Agencies:
This is an in-house search with a dedicated recruiter. Please do not submit resumes to any person or email address at Upside. Upside is not liable for, and will not pay, placement fees for candidates submitted by any party or agency other than its approved recruitment partners.
Benefits
- 401(K), Adoption Assistance, Childcare benefits, Commuter benefits, Company equity, Company-sponsored outings, Continuing education stipend, Customized development tracks, Dental insurance, Disability insurance, Diversity manifesto, Documented equal pay policy, Volunteer in local community, Family medical leave, Fitness stipend, Flexible Spending Account (FSA), Flexible work schedule, Free daily meals, Generous parental leave, Generous PTO, Company-sponsored happy hours, Health insurance, Job training & conferences, Open door policy, Life insurance, Mean gender pay gap below 10%, Mentorship program, Paid volunteer time, Online course subscriptions available, Open office floor plan, Paid holidays, Paid industry certifications, Paid sick days, Partners with nonprofits, Pet insurance, Promote from within, Lunch and learns, Remote work program, Restricted work hours, Free snacks and drinks, Team based strategic planning, OKR operational model, Team workouts, Continuing education available during work hours, Mandated unconscious bias training, Unlimited vacation policy, Vision insurance, Wellness programs, Some meals provided, Mental health benefits, Home-office stipend for remote employees, Diversity employee resource groups, Hiring practices that promote diversity, Fertility benefits, Employee resource groups, Employee-led culture committees, Quarterly engagement surveys, Hybrid work model, In-person all-hands meetings, In-person revenue kickoff, President's club, Employee awards, Diversity recruitment program, Pay transparency, Abortion travel benefits, Mother's room, Personal development training, Virtual coaching services, Flexible time off, Bereavement leave benefits, Company-wide vacation
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
The role involves acting as a subject matter expert for separation equipment, proactively identifying opportunities to enhance offerings, and supporting the Service Sales team as a business partner. The expert will also directly support customers by providing technical partnership, product presentations, and customized value propositions.
Professional Application Designer
HJ StaffingProviding the highest level of professional personnel solutions and placing top talent to all organizations.
The role involves designing, developing, installing, testing, and documenting complex applications software, acting as a domain expert to bridge architects and development teams. Responsibilities include creating high-level and component-level designs, serving as a technical liaison, and providing mentorship to less experienced personnel.
Application Engineer II
Higher LogicSome people connect businesses to people. Others connect people to people. We do both. #AllTogether
Technical support for customer services and troubleshooting software services
The analyst serves as the Subject Matter Expert, focusing on projects, changes, and break/fix escalations, which includes configuration, documentation, and testing of assigned Epic applications. They are also responsible for in-depth analysis, troubleshooting, and coordinating system changes with governance teams and third-party vendors.
