Solidgate is hiring an Application Security Engineer

About the Role

As an Application Security Engineer, you will play a key role in shaping the security posture of a rapidly evolving financial technology platform. Your focus will be on integrating security deeply into the software development lifecycle, ensuring resilience across a cloud-native architecture composed of over 120 microservices.

What You'll Do

Develop and promote secure coding standards, working closely with development teams to ensure broad adoption
Lead threat modeling sessions during design and architecture phases to identify and address risks early
Implement and refine automated security testing across the pipeline, including static, dynamic, dependency, and secrets scanning
Integrate security checks into CI/CD workflows to enable fast, secure delivery
Conduct regular security assessments using frameworks like OWASP ASVS and OWASP SAMM to measure and improve maturity
Oversee the end-to-end vulnerability management process—from triage and prioritization to remediation guidance and verification
Coordinate external penetration tests and manage bug bounty initiatives
Identify and help resolve security gaps in cloud environments and delivery pipelines

What We're Looking For

Minimum of 2 years in application or product security roles
Proven experience addressing OWASP Top 10 risks and conducting secure code reviews
Hands-on use of SAST, DAST, and related tools within CI/CD environments
Strong grasp of web application and API security principles
Ability to collaborate effectively with engineers, offering guidance without slowing innovation

Nice to Have

Experience securing containerized environments and cloud infrastructure
Familiarity with DevSecOps and shift-left methodologies
Track record of automating security workflows
Background in software development or deep collaboration with engineering teams

Benefits

You’ll enjoy over 30 days off annually, unlimited sick leave, and comprehensive health coverage. The role includes wellness benefits, access to professional development courses and conferences, company-provided Apple equipment, and free daily meals. A referral bonus is available when you help bring qualified candidates onto the team.

Our Culture

We support builders shaping the digital economy. Our environment encourages ownership, curiosity, and experimentation. Security is a shared mission—approached through collaboration, not control. You’ll work in a space where impact is visible, questions are welcomed, and partnership drives progress.

Required Skills

SASTDASTDependency scanningSecrets scanningCI/CD securityCloud-native platformsMicroservicesOWASP Top 10OWASP ASVSOWASP SAMMSecure code reviewsThreat modelingWeb application securityAPI security SASTDASTDependency scanningSecrets scanningCI/CD securityOWASP ASVSOWASP SAMMCloud-native platformsMicroservicesSecure code reviewsThreat modelingWeb application securityAPI security

Starting a business in Thailand?

Company registration done right

Foreign ownership rules, licenses, tax registration — Thai business setup has many moving parts. SVBL guides you through every step with full legal compliance.

Company registration & structure

Foreign ownership solutions

License & tax registration

BOI promotion eligibility

Start your business

100% foreign ownership possible

About company

Solidgate empowers outstanding entrepreneurs to build exceptional internet companies by providing the financial infrastructure they deserve. The company aims to become the #1 payments orchestration platform in the world.

All jobs at Solidgate Visit website

Job Details

Category security

Posted 3 months ago