RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer

3 weeks, 4 days ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
Android Go iOS Penetration Testing Python Ruby
Apply Now
Chime

Chime

Chime is a financial technology company that offers banking services with no monthly fees, fee-free overdraft, and credit-building opportunities. They partner with regional banks to provide innovative and inclusive financial products, aiming to make fi...

Banks
1K-5K
Founded 2012
$2300M raised
View All Jobs 5

Description

  • Build and improve security capabilities, automation, and guardrails for mobile applications and backend/API services.
  • Perform application and API/backend penetration testing.
  • Identify, triage, and help remediate vulnerabilities across Chime products.
  • Partner with engineering and product teams to embed security into the development lifecycle across mobile apps, APIs, and backend services.
  • Review architecture and code across iOS, Android, APIs, and backend systems with a focus on secure storage, authentication, authorization, communication, and session/token handling.
  • Leverage AI to accelerate security workflows such as code review support, triage, and threat modeling.
  • Partner with teams building AI-enabled features to define and implement production-grade AI security controls.
  • Own security posture across the full application stack, including identity and authentication flows and CI/CD pipelines.

Requirements

  • 5+ years of experience in application security with strong hands-on experience across both mobile and backend systems.
  • Hands-on experience securing iOS and Android applications in production environments.
  • Strong understanding of mobile threat models and common attack techniques.
  • Experience with mobile security testing techniques, including static and dynamic analysis.
  • Familiarity with iOS and Android platform security features and limitations.
  • Practical coding experience, preferably in Ruby, Go, or Python.
  • Ability to clearly communicate security risks, tradeoffs, and remediation guidance to engineering partners.
  • Experience reviewing distributed systems and modern application architectures is preferred.
  • Experience working with AI-related security workflows or AI-enabled features is preferred.

Benefits

  • Base salary from $213,000 to $295,000, depending on location, skills, qualifications, and experience.
  • Eligible for a bonus and competitive equity package.
  • 401(k) match plus medical, dental, vision, life, and disability benefits.
  • Generous vacation policy and company-wide paid Chime Days.
  • Backup child, elder, and pet care support, plus a subsidized commuter benefit for eligible employees.
  • Annual wellness stipend for eligible wellness-related expenses.
  • Up to 24 weeks of paid parental leave for birthing parents and 12 weeks for non-birthing parents.
  • Access to Maven with $15k lifetime reimbursement for egg freezing, fertility treatments, adoption, and more.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
9 hours, 9 minutes ago
Virtualitics

Lead AppSec Engineer

Virtualitics 51-250 IT Services

Virtualitics is seeking a Lead Application Security Engineer to shape secure AI and application security practices for defense, government, and critical infrastructure systems.

United States Full-time Lead Application Security Engineer
$150k-$220k
AWS Azure Docker GCP Kubernetes
12 hours, 52 minutes ago
GitLab

VP of Product Security

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Vice President of Product Security to lead security strategy and execution for its AI-powered DevSecOps platform, with responsibility for embedding security into product design, delivery, and the supporting cloud and infrastructure systems.

United States Full-time Executive Application Security Engineer Product Manager
$298k-$360k
CI/CD DevSecOps JavaScript Microservices OWASP Secrets Management Serverless
1 day, 16 hours ago
CookUnity

Senior Application Security Engineer

CookUnity 251-1K Hotels, Restaurants & Leisure

CookUnity is hiring a founding Application Security team member to help secure its engineering organization’s applications and build security into the software lifecycle.

Latin America Full-time Senior Application Security Engineer
Agile AWS Azure Burp Suite CI/CD DevSecOps Docker GCP Java Kotlin Kubernetes OAuth OpenID Connect OWASP Penetration Testing SAML TypeScript
4 days, 13 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers