Application Security Engineer

Application Security Engineer

North- Must be in Eastern Time Zone

What you'll be doing:

• Perform architecture and security reviews on highly complex products to identify vulnerabilities.

• Work with development teams to integrate software security design patterns throughout the application lifecycle.

• Ensure critical application design and implementation decisions are based on sound security patterns, facilitate analytics process for application abuse detection, support application protection efforts, incident response and fraud.

• Find security threats and vulnerabilities in applications and recommend mitigation strategies.

• Participate in evaluation, deployment and operations of innovative security solutions.

• Conduct static and dynamic application security testing (SAST/DAST), code reviews, security assessments and evaluations.

• Implement and manage security tools, including SAST, DAST, Software Composition Analysis (SCA), and other security scanning solutions.

• Drive the implementation of authentication, authorization, and access control mechanisms for APIs and platforms.

• Partner with application development, engineering and operations teams to ensure a security-first approach in CI/CD pipelines.

• Work closely with the offensive security team to help identify, uncover and validate weakness and exposures in critical applications.

• Support incident response efforts and mitigations related to application security vulnerabilities and weaknesses.

• Provide security awareness training and guidance to development teams on secure coding practices.

• Lead implementation of strategic security initiatives that improve application security across the organization.

• Ensure application security practices align with regulatory standards such as PCI-DSS, NIST, and OWASP guidelines.

What we need from you:

• Education: Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or relevant equivalent experience.

• Experience: 5+ years of experience in application security, secure software development, and vulnerability management.

• Experience with containerization technologies, the principles of container operation, and implementing secure operational states for containerization technologies.

• Direct experience with security tools such as vulnerability scanners, DAST and SAST solutions, application testing tools, and application analysis tools.

• Experience with application security practices in enterprise environments. 

• Strong knowledge of secure coding practices and common security vulnerabilities.

• Familiarity with DevSecOps principles and integrating security into CI/CD pipelines.

• Understanding of regulatory frameworks and compliance requirements (e.g., PCI-DSS, NIST, OWASP etc)

• Comfortable with scripting and automation using languages such as Python, PowerShell, or Bash

Salary Range: $105,000- $140,000

Pay within this range varies by work location and on job-related knowledge, skills, and experience. We look forward to discussing your salary expectations and our full total rewards offerings throughout the interview process.

What we offer: 

We offer a comprehensive benefits package that enables our teams to live a life well lived, both personally and professionally. Some of our perks include:

• Medical, Dental, & Vision Coverage

• Flexible Paid Time Off

• 401(k) + Match

• Mental Health Support & Well-Being Program

• Paid Maternity & Paternity Leave

• Education Assistance

• Company-funded Lifestyle Spending Account

Please note: North is a US based company and this role is not eligible for current or future sponsorship.

Let’s go North, together. 

Join our mission to build the largest suite of credit card processing and merchant services. It’s one simple payment platform backed by the most diverse payment companies. From credit card processing to back-office management, North points the way to smarter, faster, and just plain better payment solutions.

Who we are: 

North, and our family of companies, are committed to helping entrepreneurs grow their businesses. As an end-to-end payment solutions company, we provide everything business owners need to get paid, whether they serve customers in a physical storefront, online, or both. We pride ourselves on being large enough to offer customized solutions to our enterprise-level clients while remaining agile enough to take an award-winning, hands-on approach to personal service that our merchants won’t find anywhere else.

Let’s go North, together! Our most important resource is our people. Join our diverse team of innovators and do-ers and make your mark on the future of payments technology. We're proud to offer benefits that help our team members further their overall well-being through unique initiatives that are both personally and professionally fulfilling. 

At North, we celebrate diversity and create an inclusive environment for everyone. We are an equal opportunity employer.

To learn more about North, and our family of companies, visit our website: north.com