TalentProfile
Back to Jobs
Full-time

Solidgate is hiring an Application Security Engineer

About the Role

The Application Security Engineer will embed security into the software development lifecycle at Solidgate, ensuring secure application architectures, improving coding practices, and reducing product risks across a cloud-native microservices platform that processes millions of payments daily.

What You'll Do

  • Build and maintain secure coding standards and support their adoption across development teams
  • Conduct threat modeling during architecture and design stages
  • Implement and improve application security testing, including SAST, DAST, Dependency and secrets scanning, CI/CD security checks
  • Perform regular application security assessments and maturity evaluations (OWASP ASVS, OWASP SAMM)
  • Manage the full vulnerability lifecycle: triage, prioritization, remediation support, and validation
  • Support external penetration testing and Bug Bounty programs
  • Identify and mitigate security risks in cloud environments and CI/CD pipelines

What We're Looking For

  • At least 2 years of experience in Application Security or Product Security
  • Hands-on experience with OWASP Top 10 vulnerabilities
  • Practical experience with: secure code reviews, threat modeling, SAST and DAST tools and their integration into CI/CD pipelines
  • Strong understanding of web application and API security
  • Ability to communicate clearly with engineers and work as a partner rather than a blocker

Nice to Have

  • Experience with container security and cloud security tooling
  • Familiarity with DevSecOps and shift-left security practices
  • Experience automating application security processes
  • Background as a software engineer or close collaboration with development teams

Technical Stack

  • SAST
  • DAST
  • Dependency scanning
  • Secrets scanning
  • CI/CD security checks
  • Cloud-native platform
  • Microservices
  • OWASP Top 10
  • OWASP ASVS
  • OWASP SAMM

Team & Environment

  • engineering organization with over 120 microservices
  • dedicated Application Security Engineer role within a growing security organization

Benefits & Compensation

  • 30+ days off
  • Unlimited sick leave
  • Free office meals
  • Health coverage
  • Apple gear to keep you productive
  • Courses
  • Conferences
  • Sports and wellness benefits
  • Recommendation bonus for referring top talent

Solidgate is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Required Skills
SASTDASTDependency scanningSecrets scanningCI/CD securityCloud-native platformsMicroservicesOWASP Top 10OWASP ASVSOWASP SAMMSecure code reviewsThreat modelingWeb application securityAPI security SASTDASTDependency scanningSecrets scanningCI/CD securityCloud-native platformsMicroservicesOWASP Top 10OWASP ASVSOWASP SAMMSecure code reviewsThreat modelingWeb application securityAPI security
Visa expiring soon?

Extend or switch without leaving Thailand

Running out of time on your current visa? SVBL identifies your best option — extension, category switch, or long-term visa — and handles the entire process.

Visa extensions & category switches
LTR & DTV visa applications
90-day reporting managed
Overstay prevention
Check your options
Prevent overstay issues
About company
Solidgate
Solidgate empowers outstanding entrepreneurs to build exceptional internet companies by providing the financial infrastructure they deserve. The company aims to become the #1 payments orchestration platform in the world.
All jobs at Solidgate Visit website
Job Details
Category security
Posted 2 months ago

Similar Jobs

Other opportunities you might be interested in

Virginia Department of Taxation

Application Security Engineer

Virginia Department of Taxation

Richmond, Virginia, United States Hybrid
Infiterra

Application Security Engineer

Infiterra

Remote (Global)
Inspire Medical Systems, Inc.

Application Security Engineer | Senior

Inspire Medical Systems, Inc.

Sardine

Senior Application Security Engineer

Sardine

Remote (Global)
Onebrief

Application Security Engineer

Onebrief

remote
EX Squared

Application Security Engineer (Remote - US)

EX Squared

United States Remote (Country)

Related Articles

Insights related to this role

Developer working remotely at night, illustrating the evolution of AI-resilient engineering careers in a changing tech landscape.
career-growth

AI-Resilient Engineering Careers: Skills for the Shift

As Atlassian cuts 1,600 jobs amid AI restructuring, developers must rethink career strategies. Learn how to future-proof your skills in an AI-augmented enterprise landscape.

4 min 10 days ago
Data center with server racks and a technician working, representing AI agent infrastructure jobs in scalable browser cloud environments
job-search

AI Agent Infrastructure Jobs: TestMu Scales Browser Cloud

TestMu AI has launched its Browser Cloud to solve infrastructure bottlenecks in AI agent deployment. The platform supports over 1.5 billion tests annually and opens new remote AI agent infrastructure jobs across Europe and beyond.

3 min 8 days ago
Remote data scientist working with Kubernetes through a low-code platform, enabling cloud-native tools without backend expertise
remote-work

Platform Engineering: Kubernetes for All

With cloud-native adoption nearing 20 million developers, platform engineering is breaking down infrastructure barriers. Now, data scientists and frontend engineers can leverage Kubernetes without deep backend knowledge—thanks to abstraction and unified platforms.

3 min 9 days ago