Application Security Engineer

About Mesh

Founded in 2020, Mesh is building the first global crypto payments network, connecting hundreds of exchanges, wallets, and financial services platforms to enable seamless digital asset payments and conversions. By unifying these platforms into a single network, Mesh is pioneering an open, connected, and secure ecosystem for digital finance. Mesh has raised over $120M in funding and is backed by notable investors including Paradigm, PayPal Ventures, Galaxy Ventures, Money Forward, QuantumLight, Samsung Next, Consensys, and more. For more information, visit https://www.meshconnect.com/.

Overview

We are seeking an Application Security Engineer to join our dynamic, growing team. This individual will be responsible for implementing security throughout the software development lifecycle, identifying and remediating vulnerabilities in applications, and collaborating with development teams to build secure products. This person should be comfortable with our technology stack and have worked in Azure environments previously. This is a highly-impactful role and ideal for someone who is proactive and has a high sense of ownership.

Responsibilities

• Lead security reviews and threat modeling sessions during application design phases

• Perform static and dynamic application security testing on internal and third-party applications

• Develop and maintain security requirements and standards for software development

• Integrate security tools and processes into CI/CD pipelines

• Conduct code reviews to identify security vulnerabilities and ensure compliance with security standards

• Respond to and remediate security incidents affecting applications

Qualifications

• 5+ years of experience in application security

• Strong understanding of OWASP Top 10 and common application security vulnerabilities

• Proficiency in at least one programming language (e.g. Net, C#)

• Experience with security testing tools (e.g., Snyk, OWASP ZAP, Burp Suite)

• Working knowledge of secure coding practices and secure SDLC methodologies

• Experience with cloud environments, particularly Azure

• Familiarity with CI/CD pipelines and security integrations

• Understanding of regulatory compliance requirements (e.g., SOC 2, GDPR)

Additional Valuable Skills:

• Experience with container security and Kubernetes

• Knowledge of infrastructure security concepts and monitoring

• Familiar with Jira for issue tracking and Notion for documentation

• Experience working in cross-functional teams in fast-paced environments

If you are passionate about building simple solutions to complex problems and are obsessed with creating and building value, we would love to hear from you. Join our dynamic team and contribute to the development of cutting-edge fintech solutions!