Senior Application Security Engineer

Join to apply for the Senior Application Security Engineer role at Félix

About Us At Félix, we're building the financial ecosystem for Latin immigrants in the U.S., starting with a revolution in remittances. Our core product is an AI-powered chatbot powered by WhatsApp, allowing our users to send money home as easily as sending a text message. We leverage cutting-edge technology like AI, blockchain, and stablecoins to make cross-border payments faster, more affordable, and more accessible than ever before.

We are a hyper-growth Series B company, backed by over $100 million in funding from top-tier global investors, including QED, Castle Island, Switch Ventures, HTwenty, Monashees, and General Catalyst Customer Value Fund. This isn't just about the numbers; it's a testament to the trust our investors have in our vision and our team. Additionally, Félix was selected as an “Endeavour Entrepreneur” and was a recipient of the CrossTech Fintech Startups Award. We are a group of extremely talented and dedicated high-performers, united by our shared obsession with a single goal : empowering our customers.

Joining Félix means you will be part of a team building a legacy, a company that will outlive us all. This is a rare opportunity to apply your skills to a deeply meaningful mission—serving a community that has been underserved for too long. We are a team that is fiercely loyal to each other, where radical transparency and constructive feedback are how we grow and push for excellence.

The Role : As a Senior Application Security Engineer, you will be a critical part of our SecOps team, working alongside Damian Finol, our Head of EngOps. You will be responsible for embedding security into every stage of our software development lifecycle (SDLC). This is a hands-on role for a builder who is passionate about shifting security left and empowering developers to ship secure code, quickly and confidently.

What You'll Do :

• Build and Automate Secure CI / CD Pipelines : Design, implement, and maintain security controls within our GitHub Actions CI / CD pipelines. You will be hands-on with tools for Static Application Security Testing (SAST), Software Composition Analysis (SCA), Infrastructure-as-Code (IaC) scanning, and secret detection.
• Drive Vulnerability Management : Take ownership of our vulnerability management program using platforms like DefectDojo. You will work closely with engineering teams to triage findings, prioritize remediation efforts, and reduce our overall risk profile.
• Champion Secure Development : Act as a security subject matter expert for our product engineering teams. You will conduct security architecture reviews, perform threat modeling for new features, and promote secure coding best practices across our Python-based services.
• Coordinate Security Assessments : Manage and support internal and external penetration testing engagements, track findings, and drive remediation efforts with the relevant teams.
• Develop Security Standards : Help define and document foundational security requirements for source code management, secrets management, and our CI / CD processes to ensure they are secure by design.
• Support Compliance Initiatives : Partner with our GRC function to implement necessary application security controls and gather evidence to support our SOC 2 and PCI compliance audits.

Qualifications :

Nice to Haves :

What We Offer

Equal Opportunity Employer At Félix, we are committed to providing equal employment opportunities to all qualified employees and applicants without regard to race, religion, nationality, sex, sexual orientation, gender identity, age, or disability.

#J-18808-Ljbffr