Job Description
At Beyond Finance we've made it our mission to help everyday Americans escape the endless cycle of crippling debt and step into a brighter financial future. Through compassionate individualized care a culture focused on compliance and ethics supportive user-centric technology and customized financial solutions we've helped over 1 million clients on their path to a brighter future.
While we're proud of what we've already accomplished we're searching for new collaborators to help us get to the next level! If you're looking to join a forward-thinking rapidly growing organization with helping people as its number one goal we want to hear from you.
As our Senior Application Security Engineer you will be the primary owner and driver of our application security program. You’ll work hands‑on with engineering teams to embed secure development practices improve tooling and automation and guide security considerations for new features architectures and services.
This is a high‑impact role where you’ll shape the future of AppSec at a company that values security as a core part of product quality.
What You’ll Do
Application Security Ownership
- Lead and evolve the company’s application security strategy roadmap and day‑to‑day operations.
- Serve as the primary AppSec partner for numerous dev teams working on Ruby on Rails web apps React Native mobile apps and various other projects including Python and Go.
- Provide security guidance during design development and code review for new features and projects.
- Drive adoption of secure coding practices and threat‑modeling across engineering teams.
Tooling & Automation
- Manage and optimize existing AppSec tooling including:
- GitHub Advanced Security (SAST SCA Secret Scanning)
- Invicti (DAST)
- Hadrian (ASM)
- AppDome (mobile application security)
- Cloudflare WAF
- Improve automation and integration of security tools into CI/CD pipelines.
- Identify and implement additional tools or processes to strengthen the security posture.
Secure SDLC & Developer Enablement
- Build and maintain secure development standards playbooks and training materials.
- Partner with engineering teams during sprint planning and feature design to proactively address risks.
- Conduct security reviews code assessments and vulnerability triage with development teams.
Cloud & DevOps Collaboration
- Work with DevOps to ensure secure AWS infrastructure deployments and configurations.
- Contribute to hardening efforts across ECS IAM networking and supporting cloud services.
- Assist in designing and maintaining secure CI/CD workflows.
Incident & Vulnerability Management
- Lead or support investigation and remediation of application‑level vulnerabilities.
- Monitor prioritize and track findings from SAST/DAST/ASM tools.
- Collaborate with engineering to ensure timely and effective remediation.
What We’re Looking For
Required Skills & Experience
- 3–7+ years of experience in Application Security Product Security or related engineering roles.
- Strong understanding of secure coding practices common vulnerabilities (OWASP Top 10) and modern SDLC.
- Experience working with cloud‑native applications ideally in AWS.
- Understanding of SSL certificates & cryptographic key management
- Hands‑on experience with SAST DAST WAFs and/or mobile application security tools.
- Ability to partner effectively with developers and influence secure design decisions.
- Familiarity with GitHub‑based workflows and CI/CD pipelines.
Nice to Have
- Development experience with Ruby on Rails or similar dynamic languages.
- Knowledge of AWS ECS/EKS container security secrets management and infrastructure‑as‑code (CloudFormation Terraform).
- Experience building or maturing an AppSec program from early stages.
- SOAR Automation & Scripting experience
- Experience working in a PCI compliant environment working with annual reporting needs
Why Join Us
- High ownership role where you define the AppSec roadmap.
- Modern engineering environment with strong leadership support for security.
- Opportunity to influence architecture tooling and culture across the entire development organization.
- Competitive compensation benefits and growth opportunities.
#LI-LB2
The base annual salary range is listed below. This role is eligible for additional incentives including an annual bonus.
Why Join Us?
While you make a difference for others we’ll work to make a difference for you providing an uplifting collaborative work environment and benefits that reflect your value to us. For eligible full-time employees we offer:
- Considerable employer contributions for health dental and vision programs
- Generous PTO paid holidays and paid parental leave
- 401(k) matching program
- Merit advancement opportunities
- Career development & training
And finally our team spirit and culture! We cultivate an environment of community connection and belonging across our entire organization.
Beyond Finance does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job positions. No fee will be paid to their parties who submit unsolicited candidates directly to Beyond Finance employees or the Beyond Finance HR team. No placement fee will be paid to any third party unless such a request has been made by the Beyond HR team.
Top Skills
What the Team is Saying






What We Do
Grow along with our rapidly expanding organization and help us build and serve up customized unique technological and client service solutions! We’re pushing the boundaries of what a debt consolidation company can offer. But our mission to uplift isn’t limited to our clients — we know our people deserve to be elevated to their highest potential through growth opportunities a healthy work-life balance and continued support.
Why Work With Us
Our people make a real impact — on our organization as a whole but also on the lives of thousands of Americans. Beyond Finance offers you the chance to have your voice heard help people and grow in a collaborative uplifting environment.
Gallery
Beyond Finance Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
We offer a choice between hybrid remote and in-office work models so you can be where you feel you’ll be the most productive and happy! A few times a year we gather for in-person departmental meetups allowing us to share progress and collaborate.
Explore More
Date Posted
03/26/2026
Views
0
Similar Jobs
Senior Product Manager (Identity and Access Management) -
Views in the last 30 days - 0
View Details