Senior Application Security Engineer

📋 Description

• Conduct threat modelling reviews of TDDs with actionable security recs early
• Perform app security assessments including pentesting and vuln mgmt
• Investigate Bug Bounty submissions; drive remediation with eng
• Own and tune Cloudflare WAF and related protections
• Embed security practices across the SDLC with engineering teams
• Research threats and translate into mitigations for our stack

🎯 Requirements

• Breadth across web/mobile app security, infra and cloud security
• Hands-on white-box, source-code-assisted web/mobile pentesting
• Read/review code to identify security issues; focus on JavaScript/TypeScript
• Strong Threat Modelling and SDLC integration
• Experience with web application firewalls to protect apps
• Experience embedding security in CI/CD; collaborate with engineering

🎁 Benefits

• Competitive salary package
• Equity package: ownership for MoonPay employees
• Pay for performance equity bonus
• Moonshot award
• Unlimited holidays
• Hybrid working schedule: work remotely or from Moonbase