SantaClaraRecruiter Since 2001
the smart solution for Santa Clara jobs

Application Security Engineer

Company: PayNearMe
Location: Santa Clara
Posted on: May 16, 2022

Job Description:

Job DescriptionPayNearMe, a service of Handle Financial, is the industrys only platform that facilitates cash, debit, credit and ACH payments. With its great mobile experience, PayNearMes technology provides a simple way for businesses to collect payments through an intuitive, consistent experience for their customers. PayNearMe is the technology company thats changing how payments are made.We are a diverse and collaborative company that loves to delight its customers (merchants, consumers, etc.) with simple, useful and practical product/service offerings. Were headquartered in Silicon Valley with our employees distributed all across the US. Help us reimagine payments!Were in growth mode and looking to add a dynamic Application Security Engineer to our PayNearMe team. This position will report to the Director of Security Engineering.Who You Are:Youre an application security person, a special kind of coder. You have a nose for ways systems break when actively exploited. You dont just care that they work for the typical user: you care that against a hostile party, they dont give up the goods. You know that while the attackers only need to be right once, we need to be right every time. While you may specialize in Go, you love dabbling in other coding languages.What Youll Do:Youll ensure our transaction processing applications cant be breached. We run a regulated payment network, so youre playing in the big league. We must be fundamentally reliable. You will be responsible for reviewing design and implementation to make sure this happens.Security isnt an afterthought, and we practice what we preach. This company was built on solid principles from Day 1. You wont walk into a place where your job is to backfill a bunch of deeply-hidden weaknesses and clean up a bunch of technical debt. Since you are a coder, youll also build security tools. Youll work alongside your security team members to find the gaps in our current toolset and build utilities to bridge those gaps.You are also wrapped in a solid security team that comprehensively covers all aspects of our mission and an engineering team here to support your successful career.What youll own and be responsible for:

  • Keep us secure!
  • Review the design of new features and products
  • Review the implementation of all code (youll be focusing on our Go code with some oversight of our Ruby code)
  • Think critically about architectural strengths and weaknesses
  • Evangelize and mentor the engineering team about secure coding
  • Build security tools
  • Create automated security tests for existing code
  • Be innately curious about how applications are broken, breached, or abused
  • Recommend new tools and technologies for us to implement a stronger security program.
  • Advocate for better application security and train our software engineers on best practicesRequirements
    • 3 or more years developing and/or security-reviewing Go code
    • Thorough understanding of typical security vulnerabilities
    • Knowledge of authentication and authorization, applied cryptography
    • Knowledge of web technologies and network protocols
    • Bachelor's degree in CS, engineering, or related field, or equivalent experience
    • Have an understanding of static and dynamic code analysis tools
    • Ability to communicate about security
    • Optional: you understand AWS security services (such as IAM and CloudTrail) as well as data storage and processing (such as Kinesis, RDS, and DynamoDB).
    • Passion in all aspects of security research and development Location: Remote/flexible - Must be located in the United StatesTravel: Twice a year for company gatherings (COVID-19 permitting)Benefits
      • Great compensation package plus extensive benefits
      • Remote working opportunity
      • Fast-paced and professional work culture
      • Company-paid health insurance including medical, dental, and vision
      • Company-sponsored life and disability insurance
      • Stock options package
      • Stimulating start-up culture committed to diversity and inclusion
      • Flexible time off
      • Paid parental bonding leave
      • Team outings and events when permittedPayNearMe strives to create a workplace where all employees thrive. Our core values represent who we are today and we take pride in the way we work with each other as well as with our stakeholders.Were in this together to do the right thing. We deliver real results we are proud of while remaining respectful, transparent, and flexible.PayNearMe is an equal opportunity employer. We are diligently and thoughtfully working towards cultivating a diverse workforce which in turn, enhances our products and services for the communities we serve. Applicants who represent all backgrounds are strongly encouraged to apply.CALIFORNIA CONSUMER PRIVACY ACT: APPLICANT NOTICEEffective Date: January 1, 2020Last Reviewed on: December 23, 2019PayNearMe MT, Inc. and Handle Financial, Inc. (collectively, the Company) are providing you with this Notice (Notice) to inform you about:
      • the categories of Personal Information that the Company collects and maintains about applicants; and
      • the purposes for which the Company uses that Personal Information.For purposes of this Notice, Personal Information means information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly with, a natural person that the Company may collect in connection with screening applicants for job openings at the Company.
      • Identifiers and Professional or Employment-Related Information. The Company collects identifiers and professional or employment-related information, which may include some or all the following: real name, nickname or alias, postal address, telephone number, e-mail address, membership in professional organizations, professional certifications, language skills, and current and past employment history. The Company collects this Personal Information to evaluate previous job performance and consider applicants for positions, to develop a talent pool and plan for succession, to conduct applicant surveys, to maintain an internal applicant directory and for purposes of identification, to promote the Company as a place to work, and for workforce reporting and data analytics/trend analysis.
      • Personal Information Categories from Cal. Civ. Code 1798.80(e). The Company may collect categories of Personal Information listed in Cal. Civ. Code 1798.80(e), other than those already listed above, (a) to the extent necessary to comply with the Companys legal obligations, such as to accommodate disabilities; (b) to conduct a direct threat analysis in accordance with the Americans with Disabilities Act and state law; (c) for occupational health and safety compliance and record-keeping; and (d) to respond to an applicants medical emergency.
      • Characteristics of Protected Classifications Under California or Federal Law. The Company may collect information about race, age, national origin, disability, sex, and veteran status as necessary to comply with legal obligations, including the reporting requirements of the federal Equal Employment Opportunity Act, the federal Office of Contracting Compliance Programs (applicable to government contractors), and Californias Fair Employment and Housing Act. The Company collects this Personal Information for purposes including: to comply with Federal and California law related to accommodation. The Company also collects this category of Personal Information on a purely voluntary basis, except where required by law, and uses the information only in compliance with applicable laws and regulations.
      • Education Information. The Company collects education information such as resumes and graduation records. The Company collects this Personal Information to determine suitability for roles, to determine eligibility for training courses, and to assist with professional licensing.
      • Profile Data. The Company may collect profile data, including the following: psychological assessments, behavior analyses, or other profiling of its applicants. The Company collects this Personal Information to determine aptitude for certain positions and job assignments as well.
      • Background Screening Information. In the event that an applicant is given a formal job offer, the Company collects background screening information prior to hiring, including results of the following types of background screening: criminal history; sex offender registration; motor vehicle records; credit history; employment history; drug testing; and educational history. The Company collects this Personal Information to screen for risks to the Company and its clients, and continued suitability for their jobs and to evaluate applicants for promotions.Assistance for Disabled ApplicantsAlternative formats of this Notice are available to individuals with a disability. Please let us know if you need assistance.#LI-remote

Keywords: PayNearMe, Santa Clara , Application Security Engineer, Engineering , Santa Clara, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Santa Clara RSS job feeds