Want to get hired at Rogo?

Security Engineer Application Security

Rogo

New York, New York, United StatesOn Site

Original Job Summary

Overview

At Rogo, our mission is to transform finance with AI-powered solutions. As a Security Engineer Application Security, you will play a key role in enhancing the security of our products, applications, and cloud environments. Your work ensures that our AI-driven platform remains secure and resilient in a fast-paced industry.

The Role

In this role, you will:

  • Perform dynamic security reviews, threat modeling, and penetration testing on applications and APIs.
  • Own automated security review implementations within the software development lifecycle.
  • Review and remediate vulnerabilities using tools like SAST, DAST, SCA, and IaC.
  • Design security tools and automation that integrate with our platform.
  • Secure cloud infrastructure with hands-on Terraform and infrastructure-as-code practices.
  • Build test environments to validate security controls at scale.
  • Partner with development teams to embed secure coding practices in CI/CD pipelines.
  • Provide training on secure coding standards and respond to security incidents.
  • Collaborate with our Bug Bounty program to manage vulnerability reports.

What You Will Need

Required skills & experience include:

  • Deep expertise in application security testing and code review.
  • Experience with security tools such as Burp Suite, OWASP ZAP, and Snyk.
  • Knowledge of integrating SAST, DAST, and SBOM/SCA tooling in CI/CD workflows.
  • Familiarity with Terraform and securing infrastructure-as-code.
  • Proficiency in a strongly typed language like Rust, C++, or Java.
  • Strong communication skills for effective collaboration.
  • Understanding of threat modeling, cryptography, and vulnerability management.
  • Familiarity with security frameworks such as SOC2, CIS, ISO 27001/42001, or NIST CSF.

Bonus Skills

Additional advantages include:

  • Hands-on cloud security experience in AWS or GCP.
  • Familiarity with Kubernetes security components including RBAC and network policies.

Who You Are

You thrive in a fast-paced startup environment, are ambitious, curious, and autonomous with a collaborative spirit.

Why Join Rogo?

Working at Rogo means being part of a team with exceptional traction, a world-class talent density, rapid growth, and cutting-edge technology transforming global finance.

Key skills/competency

Application Security, Penetration Testing, CI/CD Security, Terraform, Code Review, Vulnerability Management, Secure Coding, Automation, Cloud Security, Threat Modeling

How to Get Hired at Rogo

🎯 Tips for Getting Hired

  • Customize your resume: Tailor for security engineering roles at Rogo.
  • Leverage security expertise: Highlight penetration testing and automation skills.
  • Research Rogo: Understand their AI-driven finance transformation.
  • Prepare for technical interviews: Review threat modeling and secure coding practices.

📝 Interview Preparation Advice

Technical Preparation

Review latest SAST and DAST tools.
Practice Terraform and infrastructure security tests.
Study secure coding practices in CI/CD.
Run sample penetration testing exercises.

Behavioral Questions

Describe teamwork in stressful security scenarios.
Explain decision-making during a security breach.
Share past experiences with code review conflicts.
Discuss adapting to rapidly changing threats.