×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Security Manager Data Security

Security Engineer

Job in New York, New York County, New York, 10261, USA
Listing for: Kubelt
Full Time position
Listed on 2026-01-24
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Security Manager, Data Security
Salary/Wage Range or Industry Benchmark: 120000 - 200000 USD Yearly USD 120000.00 200000.00 YEAR
Job Description & How to Apply Below
Location: New York

Location

New York, NY

Employment Type

Full time

Location Type

Hybrid

Department

Engineering

Compensation

  • $120K – $200K
    • Offers Equity
    • Offers Bonus

About the Company

Rain makes the next generation of payments possible across the globe. We’re a lean and mighty team of passionate builders and veteran founders. Our infrastructure makes stable coins usable in the real-world by powering card transactions, cross-border payments, B2B purchases, remittances, and more. We partner with fintechs, neobanks, and institutions to help them launch solutions that are global, inclusive, and efficient. You will have the opportunity to deliver massive impact at a hypergrowth company that is funded by some of the top investors in fintech, crypto, and SaaS, including Sapphire Ventures, Norwest, Galaxy Ventures, Lightspeed, Khosla, and several more.

If you’re curious, bold, and excited to help shape a borderless financial future, we’d love to talk.

Our Ethos

We believe in an open and flat structure. You will be able to grow into the role that most aligns with your goals. Our team members at all levels have the freedom to explore ideas and impact the roadmap and vision of our company.

What You’ll Do

As a Security Engineer with a focus on Application Security, you’ll be a key contributor in embedding security into Rain’s engineering lifecycle and supporting delivery of secure, trusted applications:

  • Lead application security assessments, including vulnerability scanning, code reviews, and threat modeling with engineering teams

  • Partner closely with product and development squads to drive remediation and help teams understand and resolve security findings efficiently

  • Integrate and scale automated security tooling across CI/CD pipelines (SAST, DAST, SCA, IaC) to shift security left

  • Develop and maintain application security standards, patterns, and guardrails that reduce risk and support rapid delivery

  • Drive threat modeling and risk assessments for new features, APIs, and services

  • Collaborate with Cloud & Infrastructure Security to align security controls across layers and support cloud-native security requirements

  • Support incident response for application-level security events and contribute to root-cause analysis and future mitigation strategies

  • Help build internal training and awareness programs to elevate secure coding and developer security literacy

  • Track and surface key security metrics, trends, and continuous improvement insights to leadership

What we re looking for

  • 4–8+ years of experience in security engineering, application security, offensive security, or secure software development; strong track record of securing modern applications

  • Hands-on experience with security tools such as Semgrep, Burp Suite, Snyk, Trivy, or similar for static, dynamic, and dependency security analysis

  • Solid understanding of web, API, and mobile security vulnerabilities (e.g., OWASP Top 10, API Top 10)

  • Experience driving or participating in threat modeling and secure design reviews

  • Familiarity with cloud concepts and securing cloud workloads

  • Collaborative mindset — you enjoy working closely with engineers to co-create practical security solutions

  • Practical understanding of SDLC and integrating security into development workflows

  • Ability to independently identify, prioritize, and drive remediation on critical findings

  • Experience balancing security risk with business and technical constraints

Nice to have, but not mandatory

  • Experience or exposure to runtime application protection (RASP) or advanced monitoring (e.g., eBPF-based tooling)

  • Experience with cloud security automation frameworks such as Security Hub remediations or DLP improvements

  • Security certifications like CISSP, CSSLP, OSCP, GWAPT, or similar

  • Familiarity with compliance frameworks like SOC 2, ISO 27001, OWASP SAMM and aligning controls

  • Prior experience in fintech, payments, or highly regulated environments

  • Exposure to API security tooling and design best practices

Things that enable a fulfilling, healthy, and happy experience at Rain:

  • Unlimited time off
    Unlimited vacation can be daunting, so we require Rainmakers to take at least 10 days off.

  • Flexible working
    We support a flexible workplace. If you feel…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search