Senior Cybersecurity Engineer- AppSec

Job Description

Beyond Finance is seeking a Senior Cybersecurity Engineer to enhance its application security program. The candidate will be responsible for safeguarding the infrastructure, collaborating with the development team, and refining security processes. This role involves maturing the security posture, driving automation, and promoting best practices across the organization. The candidate may also assist with vulnerability management, GRC, alerting, and monitoring.

• Architecting and implementing cloud-native security solutions.
• Managing WAF controls with Cloudflare.
• Integrating and managing security tools like Wiz and Datadog SIEM.
• Driving security best practices across the CI/CD pipeline.
• Developing threat models and security standards.
• Leading Zero Trust architecture initiatives.
• Collaborating with DevOps, Infrastructure, and Engineering teams.
• Conducting risk assessments and security incident investigations.
• Automating security tasks.
• Mentoring junior team members.

• 5+ years in cybersecurity with 3+ years of AWS security engineering experience.
• Knowledge of application security (AppSec) practices and Zero Trust frameworks.
• Experience with implementing and tuning WAF controls.
• Expertise in AWS security, Wiz, Datadog SIEM, or comparable tools.
• Understanding of IAM, VPC security, and KMS.
• Experience with SAST, DAST, threat modeling, and SDLC integration.
• Familiarity with Infrastructure as Code (Terraform, CloudFormation) and automation (Python, Bash).
• Experience in regulated environments (PCI-DSS, SOC 2, ISO 27001, etc.).
• Excellent communication skills.

• Considerable employer contributions for health, dental, and vision programs
• Generous PTO, paid holidays, and paid parental leave
• 401(k) matching program
• Merit advancement opportunities
• Career development & training