RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer

3 hours, 5 minutes ago
United Kingdom, Croatia, France, Germany, Greece, Ireland, Italy, Poland, Portugal, Romania, Spain
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS CI/CD JavaScript Kubernetes Penetration Testing Python React Ruby Ruby on Rails
Apply Now
Pennylane

Pennylane

Pennylane offers an all-in-one financial management and accounting platform designed for business leaders and their accountants, enabling them to efficiently manage their finances and accounting in one place while focusing on their core business activi...

Diversified Financial Services
251-1K
Founded 2020
$97M raised
View All Jobs 22

Description

  • Ensure the security of Pennylane’s application, infrastructure, dependencies, code, and configuration.
  • Work with the Product team to integrate security from feature design through delivery.
  • Review code from a secure development perspective across a high release volume.
  • Detect vulnerabilities, propose patches, and help strengthen CI/CD security controls.
  • Secure AWS infrastructure, including the Kubernetes environment, with the DevOps team.
  • Perform regular security assessments such as code reviews, pentests, and bug bounty-related analysis.
  • Strengthen detection of malicious activity and respond to security incidents by investigating logs, blocking attacks, and recommending corrective actions.
  • Support ISO 27001 compliance for development-related controls through training, audits, and non-conformity management.
  • Build and improve secure development training materials and deliver regular training to developers.
  • Promote security awareness across the company and contribute technical input to tenders.

Requirements

  • Experience performing offensive security assessments on applications and infrastructure.
  • Ability to exploit and fix a wide range of web vulnerabilities beyond the OWASP Top 10.
  • Experience with at least one programming language such as Ruby, Python, or JavaScript.
  • Experience with cloud infrastructure security.
  • Ability to explain technical security topics to non-technical audiences.
  • Fluency in French and/or English, both spoken and written.
  • Humble, proactive, organized, and able to work well in a remote, collaborative environment.
  • Quick learner who is comfortable working across application security, cloud security, training, and ISO 27001 topics.
  • English level is assessed and appreciated according to the department.
  • Experience with Ruby on Rails, ReactJS, AWS, and Kubernetes is relevant to the role.

Benefits

  • 25 paid vacation days.
  • Competitive compensation package.
  • Company shares/equity.
  • Home office budget plus a monthly coworking allowance.
  • Access to Gymlib with 8,000 fitness spaces and 300+ wellness activities across Europe.
  • Access to Busuu for English or French language learning.
  • Latest Apple equipment.
  • Remote work from your country of residence in Europe, within a maximum two-hour time difference from CET.
  • For France-based employees: French contract, 6 to 12 RTT, 5 weeks of PTO, Swile lunch credits, and Alan Blue healthcare coverage.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Owner.com

Application Security Engineer

Owner.com 11-50 Internet Software & Services

Owner.com is hiring a remote Application Security Engineer to secure its restaurant-focused AI growth platform by testing, remediating, and preventing application security issues across the product line.

United States Canada Mexico Colombia Full-time Senior Application Security Engineer
$190k-$220k
Penetration Testing
50 minutes ago
Canary

Senior Application Security Engineer

Canary 11-50 Internet Software & Services

Canary Technologies is hiring a Senior Application Security Engineer to embed security into its fully remote engineering organization and help secure and scale its hospitality software platform.

United States Full-time Senior Application Security Engineer
AWS Burp Suite CI/CD Encryption GitHub Actions GitOps Go Helm JavaScript Kubernetes Penetration Testing Python Secrets Management SonarQube Terraform WAF
2 hours, 20 minutes ago
Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
3 hours, 35 minutes ago
Magnet Forensics

Vulnerability Researcher

Magnet Forensics 251-1K Internet Software & Services

Magnet Forensics is hiring a U.S.-based, remote Vulnerability Researcher to support digital investigative software used to analyze evidence from computers, smartphones, tablets, and IoT devices.

United States Full-time Mid Level Application Security Engineer
$150k-$200k
IoT
4 hours, 35 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers