Logo for Moniepoint Group

Senior Application Security Engineer

Role overview

Qualifications

  • 5+ years in application security, including 2+ years in a senior/lead role
  • Expertise in threat modeling (e.g., STRIDE, PASTA), penetration testing, and secure SDLC implementation
  • Proficiency in code review for Java/Python/JavaScript and cloud platforms (AWS/Azure/GCP)
  • Hands-on experience building security tools (e.g., scanners, CI plugins) with Python/Go

Responsibilities

  • Define and execute security strategy for product teams, aligning with business objectives
  • Lead threat modeling, security architecture reviews, and design guidance for diverse software projects
  • Conduct adversarial security analysis using automated tools and manual techniques
  • Partner with the engineering team to embed security controls into CI/CD pipelines and development practices

About the company

Moniepoint Group logo

Moniepoint Group

Financial Services

Moniepoint Inc. is a leading financial technology company that provides a seamless platform for businesses, their employees and customers, to accept payments digitally, receive credit and access business management tools that enable them to grow with ease. We are the parent company of TeamApt Ltd and Moniepoint MFB and we support over 1,800,000 businesses to process $12 billion monthly through our digital payment acceptance channels. For our work in making digital payment accessible to businesses in emerging markets, our Nigerian subsidiary was awarded the National Inclusive Payment Initiative Award by the Central Bank of Nigeria. In 2022, CB insights recognised us as a top global fintech. We are backed by QED, British International Investment, FMO, and other leading global venture capital funds. Moniepoint Inc. is a fully remote tech company with a diverse workforce worldwide and is headquartered in London, with offices in the US, Nairobi and Lagos. Join us as a #DreamMaker to help power the dreams of businesses globally.

Company details

Company typeLarge
IndustryFinancial Services
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Who we are

Moniepoint Inc. is Africa’s all-in-one financial platform, helping 20 million businesses and individuals access seamless payments, banking, credit, cross-border, and business management tools each month. 

As Nigeria’s largest merchant acquirer, we power most of the country’s point-of-sale (POS) transactions. Through our subsidiaries, Moniepoint Inc. processes over $250 billion in digital payment transaction value annually.

About the role

As a Senior Application Security Engineer, you will champion secure innovation by embedding security into the fabric of our software development lifecycle. You'll partner closely with engineering teams to safeguard customer trust while they build cutting-edge services. Your expertise will directly shape secure design through threat modeling and code review, drive efficiency via security automation, and mentor developers to elevate our collective security posture.

The ideal candidate is a technical leader who blends deep security expertise with exceptional influence. You possess broad security knowledge anchored by specialization in critical areas, and excel at translating complex risks into actionable insights for both engineers and executives. Your strength lies in harmonizing diverse perspectives, strategically prioritizing risks, and guiding partners to implement resilient, secure solutions that balance speed and safety.

Key Responsibilities

Security Strategy & Leadership

  • Define and execute security strategy for product teams, aligning with business objectives.
  • Lead threat modeling, security architecture reviews, and design guidance for diverse software projects.
  • Mentor engineers technically and professionally, fostering a culture of security excellence.

Advanced Technical Execution

  • Conduct adversarial security analysis using automated tools and manual techniques (e.g., custom exploit development).
  • Perform manual/automated secure code reviews across Java, Python, JavaScript, and cloud-native stacks.
  • Develop security automation tools to scale vulnerability detection (SAST/DAST/IAST enhancements).

Risk Mitigation & Innovation

  • Identify complex risks through offensive security research; advocate for cutting-edge mitigation technologies.
  • Solve novel security problems lacking predefined solutions (e.g., zero-day vulnerabilities, emergent attack vectors).
  • Maintain and evolve threat models for critical applications and microservices architectures.

Collaboration & Enablement

  • Partner with the engineering team to embed security controls into CI/CD pipelines and development practices.
  • Design/deliver security training programs tailored to development teams and business stakeholders.
  • Lead incident response for application security events and drive root-cause analysis.

Qualifications Required

  • 5+ years in application security, including 2+ years in a senior/lead role.
  • Expertise in threat modeling (e.g., STRIDE, PASTA), penetration testing, and secure SDLC implementation.Proficiency in code review for Java/Python/JavaScript and cloud platforms (AWS/Azure/GCP).
  • Hands-on experience building security tools (e.g., scanners, CI plugins) with Python/Go.
  • Proven track record in security architecture design and risk-based decision-making.

Preferred

  • OSCP, OSCE, GXPN, or similar offensive security certifications.
  • Contributions to security tooling/open-source projects.
  • Experience with container security (Kubernetes, Docker), serverless, or infrastructure-as-code.

Skills

  • Leadership: Ability to define team strategy, mentor engineers, and influence stakeholders.
  • Innovation: Aptitude for researching/implementing novel solutions to ambiguous security challenges.
  • Technical Depth: Mastery of application security frameworks (OWASP, NIST) and exploit techniques.
  • Communication: Translate technical risks to business impact for executives and engineers alike.
  • Execution: Drive implementation of security controls 

What we can offer you

  • Culture -We put our people first and prioritize the well-being of every team member. We’ve built a company where all opinions carry weight and where all voices are heard. We value and respect each other and always look out for one another. Above all, we are human.
  • Learning - We have a learning and development-focused environment with an emphasis on knowledge sharing, training, and regular internal technical talks.
  • Compensation - You’ll receive an attractive salary, pension, health insurance,, Employee Stock Options, annual bonus, plus other benefits.

What to expect in the hiring process

  • Preliminary phone call with the recruiter
  • Take home assessment
  • Technical interview with a Lead in our Engineering Team
  • Behavioural and technical interview with a member of the Executive team. 

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Security Engineer Related jobs

Other jobs at Moniepoint Group

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.