Security Engineer Application Security
@ Rogo

New York, New York, United States
$150,000
On Site
Posted 24 days ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXXXX XXXXXXX****** @rogo.com
Recommended after applying

Job Details

Overview

At Rogo, our mission is to transform finance with AI-powered solutions. As a Security Engineer Application Security, you will play a key role in enhancing the security of our products, applications, and cloud environments. Your work ensures that our AI-driven platform remains secure and resilient in a fast-paced industry.

The Role

In this role, you will:

  • Perform dynamic security reviews, threat modeling, and penetration testing on applications and APIs.
  • Own automated security review implementations within the software development lifecycle.
  • Review and remediate vulnerabilities using tools like SAST, DAST, SCA, and IaC.
  • Design security tools and automation that integrate with our platform.
  • Secure cloud infrastructure with hands-on Terraform and infrastructure-as-code practices.
  • Build test environments to validate security controls at scale.
  • Partner with development teams to embed secure coding practices in CI/CD pipelines.
  • Provide training on secure coding standards and respond to security incidents.
  • Collaborate with our Bug Bounty program to manage vulnerability reports.

What You Will Need

Required skills & experience include:

  • Deep expertise in application security testing and code review.
  • Experience with security tools such as Burp Suite, OWASP ZAP, and Snyk.
  • Knowledge of integrating SAST, DAST, and SBOM/SCA tooling in CI/CD workflows.
  • Familiarity with Terraform and securing infrastructure-as-code.
  • Proficiency in a strongly typed language like Rust, C++, or Java.
  • Strong communication skills for effective collaboration.
  • Understanding of threat modeling, cryptography, and vulnerability management.
  • Familiarity with security frameworks such as SOC2, CIS, ISO 27001/42001, or NIST CSF.

Bonus Skills

Additional advantages include:

  • Hands-on cloud security experience in AWS or GCP.
  • Familiarity with Kubernetes security components including RBAC and network policies.

Who You Are

You thrive in a fast-paced startup environment, are ambitious, curious, and autonomous with a collaborative spirit.

Why Join Rogo?

Working at Rogo means being part of a team with exceptional traction, a world-class talent density, rapid growth, and cutting-edge technology transforming global finance.

Key skills/competency

Application Security, Penetration Testing, CI/CD Security, Terraform, Code Review, Vulnerability Management, Secure Coding, Automation, Cloud Security, Threat Modeling

Apply without a personalized resume

How to Get Hired at Rogo

🎯 Tips for Getting Hired

  • Customize your resume: Tailor for security engineering roles at Rogo.
  • Leverage security expertise: Highlight penetration testing and automation skills.
  • Research Rogo: Understand their AI-driven finance transformation.
  • Prepare for technical interviews: Review threat modeling and secure coding practices.

📝 Interview Preparation Advice

Technical Preparation

Review latest SAST and DAST tools.
Practice Terraform and infrastructure security tests.
Study secure coding practices in CI/CD.
Run sample penetration testing exercises.

Behavioral Questions

Describe teamwork in stressful security scenarios.
Explain decision-making during a security breach.
Share past experiences with code review conflicts.
Discuss adapting to rapidly changing threats.

Frequently Asked Questions