AppSec Engineer

About Payoneer

Founded in 2005, Payoneer is the global financial platform that removes friction from doing business across borders, with a mission to connect the world's underserved businesses to a rising global economy. We're a community with over 2,500 colleagues all over the world, working to serve customers, and partners in over 190 markets.

By taking the complexity out of the financial workflows–including everything from global payments and compliance, to multi-currency and workforce management, to providing working capital and business intelligence–we give businesses the tools they need to work efficiently worldwide and grow with confidence.

Responsibilities:

• Collaborate with Payoneer Application Security team and aligning with Payoneer Application and Product Security posture.

• Review and approve secure architecture designs for developments and architects, both for the product environment and 3rd party integrations, considering best practices, regulatory requirements and business objectives.

• Provide technical guidance and expertise to internal teams in selecting and integrating in-house solutions or third-party vendors.

• Overall responsibility of the SSDLC of the organization and how security is integrated into the product's life cycle, from the design stage, into the development (choosing and implementing tools like SCA and SAST into the development pipeline and defining policies, managing the penetration testing policy and operations) and throughout the production environment.

• Assure Vulnerability Management processes are well implemented and enforced.

• Serve as a subject matter expert on application security, providing guidance and mentorship to other teams in the company.

• Leading Cyber Security incidents handling in Production.

• Assist the Payoneer global cyber operations team with aligning with Payoneer policies and controls.

Requirements:

• 5 years' experience in security architecture, software development, cloud security, or a related field.

• 3 years in a leadership role.

• Networking Knowledge: Understanding TCP/IP, firewalls, VPNs, IDS/IPS, and proxy servers.

• Experience and in-depth understanding of CI/CD workflows and methodology

• Strong knowledge of cloud computing platforms such as AWS, Azure, or Google Cloud, and their associated security services and features and deep understanding of cloud security principles and industry best practices.

• Multi-task skills: ability to work on multiple projects in parallel, providing application security support for different teams and initiatives in the company.

• Excellent communication and collaboration skills, with the ability to effectively convey complex security concepts to technical and non-technical stakeholders.

• Excellent verbal and written English skills.

Good To Have:

• Bachelor's degree in Computer Science, Information Security, or a related field.

• Professional security certifications (e.g., CISSP, CISM, CCSP, OSCP) are highly desirable.

• Knowledge and experience with cloud security products such as Wiz, Aqua, etc.

• Strong knowledge and experience with Kubernetes platform and services.

• Experience in evaluating and selecting cloud security solutions from both in-house solutions and third-party vendors.

• Experience/familiarity (hands-on) with security tools integrated into the CI/CD and production environments (SAST, CSA, DAST).

• Experience in fintech or financial services industry

• Familiarity with regulatory requirements and compliance standards in the financial industry, such as PCI DSS, PSD2 and GDPR

#LI-PP1
#LI-Onsite

The Payoneer Ways of Working

Act as our customer's partner on the inside
Learning what they need and creating what will help them go further.

Continuously improve
Always striving for a higher standard than our last.

Do it. Own it.
Being fearlessly accountable in everything we do.

Build each other up
Helping each other grow, as professionals and people.

If this sounds like a business, a community, and a mission you want to be part of, click now to apply.

We are committed to providing a diverse and inclusive workplace. Payoneer is an equal opportunity employer, and all qualified applicants will receive consideration for employment no matter your race, color, ancestry, religion, sex, sexual orientation, gender identity, national origin, age, disability status, protected veteran status, or any other characteristic protected by law. If you require reasonable accommodation at any stage of the hiring process, please speak to the recruiter managing the role for any adjustments. Decisions about requests for reasonable accommodation are made on a case-by-case basis.