Talent.com

Security engineer [h1.location_city]

[job_alerts.create_a_job]

Security engineer • concord ca

[last_updated.last_updated_1_day]
  • [promoted]
Senior Application Security Engineer

Senior Application Security Engineer

RAIN TechnologiesConcord, CA, United States
[job_card.full_time]
Senior Application Security Engineer.Rain is the fastest-growing earned wage access (EWA) fintech in the U.We've raised nearly $400M in fundingincluding the largest Series A in fintech historyand j...[show_more][last_updated.last_updated_1_day]
  • [promoted]
Security Patrol Officer

Security Patrol Officer

Masterguard SecurityConcord, CA, United States
[job_card.full_time]
Join Our Team as a Security Patrol Officer!.We offer competitive pay and benefits with flexible shift options : Day Shift, Swing Shift, Graveyard Shift, and Weekend Shift. As a Security Patrol Office...[show_more][last_updated.last_updated_1_day]
Security Guard - Concord

Security Guard - Concord

Guardian Security AgencyConcord, California, United States of America
[job_card.part_time]
What Qualifications do you need to be a security guard for us : .Must have a valid California Guard Card (check out.Must have a valid Drivers License. Must have reliable transportation to East Bay Are...[show_more][last_updated.last_updated_30]
  • [promoted]
Mobile Security Officer

Mobile Security Officer

Securitas Security Services USA, Inc.Concord, CA, United States
[job_card.full_time]
This position will require a valid drivers license and a driving record meeting the Securitas Safe Driving guidelines.Officer should expect to be sitting and walking for extended periods of time.Te...[show_more][last_updated.last_updated_1_day]
Security Officer (Armed)

Security Officer (Armed)

Paragon SystemsWalnut Creek, CA, USA
[job_card.full_time]
This armed position is under the direct supervision of the Manager for assigned high profile site and performs a variety of security-related duties. In this position, you will observe and report act...[show_more][last_updated.last_updated_30]
Target Security Specialist

Target Security Specialist

TargetPleasant Hill, United States
[job_card.part_time]
Starting Hourly Rate / Salario por Hora Inicial : $22.Working at Target means helping all families discover the joy of everyday life. We bring that vision to life through our values and culture.Asset...[show_more][last_updated.last_updated_variable_days]
Application Security Engineer

Application Security Engineer

Mechanics BankWalnut Creek, California
[job_card.full_time]
Here at Mechanics Bank, we value connection, partnership, long term relationships and working together in person.This role can work remote within the US. Under limited direction, the Application Sec...[show_more][last_updated.last_updated_30]
  • [promoted]
Mobile Security Officer

Mobile Security Officer

SecuritasConcord, CA, United States
[job_card.full_time]
This position will require a valid drivers license and a driving record meeting the Securitas Safe Driving guidelines.Officer should expect to be sitting and walking for extended periods of time.Te...[show_more][last_updated.last_updated_1_day]
Cyber Security Analyst

Cyber Security Analyst

Sunrise SystemsConcord, California, United States
[job_card.full_time]
[filters_job_card.quick_apply]
Job Title : Cyber Security Threat Analyst / Specialist - Senior (AWS).Location : Concord, CA (Hybrid).Duration : 06 months on W2 contract. Work Schedule : Sunday to Thursday (Swing shift) 2 PM to 8 PM.Mon...[show_more][last_updated.last_updated_30]
  • [promoted]
DevOps Engineer (Copado)

DevOps Engineer (Copado)

Staffing the UniverseConcord, CA, United States
[job_card.full_time]
Position Summary : Hours : All positions limit the work week to be 35 hours.The role will support the Legacy Replacement Project effort by working with vendors and client team to address any required...[show_more][last_updated.last_updated_variable_days]
  • [promoted]
L3 Network Security

L3 Network Security

ShiftCode AnalyticsWalnut Creek, CA, United States
[job_card.full_time]
Interview : Phone and Skype Visa : USC, GC, GC EAD, H4, L2 This is onsite from DAY-1 Description : URGENT NEED NEED TECHNICALLY SOLID PROFILES Need a candidate with strong experience on Palo Alto, CIS...[show_more][last_updated.last_updated_variable_days]
Senior Application Security Engineer

Senior Application Security Engineer

RAIN TechnologiesConcord, CA, United States
[job_card.1_day_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Senior Application Security Engineer

Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus. We've raised nearly $400M in fundingincluding the largest Series A in fintech historyand just closed our Series B to fuel our next stage of hypergrowth.

We are seeking a skilled and driven Senior Application Security Engineer to join Rain's growing Security team. This role demands a proactive approach to secure software development and cloud-native defense. You will partner closely with engineering and development squads, and work alongside our Cloud Security and GRC team members to improve Rain's application and platform security posture.

This position is technically grounded, requiring direct engagement in application-layer matters and security reviews, while also contributing to cloud security automation, awareness initiatives, and secure engineering practices across the SDLC.

Key Responsibilities :

  • Collaborate with development squads to validate vulnerabilities and provide actionable remediation guidance aligned with business risk.
  • Drive threat modeling sessions (e.g., STRIDE, PASTA) for critical systems and APIs.
  • Design, implement, and oversee automated processes for securely updating application and code dependencies, proactively mitigating issues and ensuring timely vulnerability remediation.
  • Integrate security checks into CI / CD pipelines (SAST, DAST, SCA, IaC), working with tools like Semgrep, Snyk, Trivy, and Burp Suite.
  • Contribute to runtime security initiatives, such as container / Kubernetes hardening, RASP, and eBPF-based detection.
  • Build and maintain a security issues dashboard to track remediation status and metrics.
  • Provide real-time support in the event of cybersecurity incidents impacting applications or cloud infrastructure (exploited vuln, credential stuffing, web / API attacks).
  • Partner with the Cloud Security team on security automation tasks and monitoring improvements (e.g., Security Hub remediation automations, DLP monitoring, etc.).
  • Conduct proactive research on new threats, vulnerabilities, and attack techniques relevant to Rain's architecture.
  • Collaborate with the GRC team to develop and deliver internal security awareness initiatives, phishing campaigns, and developer training (e.g., secure coding, API security).
  • Participate in the continuous improvement of AppSec maturity (e.g., aligning with OWASP SAMM, ISO 27001, or SOC 2 frameworks).

Required Qualifications :

  • Fluent English, including strong verbal and written skills.
  • Strong problem-solving and analytical mindset.
  • Excellent communication skills to convey security risks to technical and non-technical stakeholders.
  • 35+ years of experience in application security, penetration testing roles, and / or secure code development, including work with QA teams.
  • Hands-on experience with SAST, DAST, and SCA tools (e.g., Semgrep, Burp, Snyk).
  • Deep understanding of web, mobile, and API vulnerabilities (OWASP Top 10, API Top 10, MITRE CWE).
  • Proven expertise in performing code review or security assessments and writing clear reports.
  • Proficiency in at least one backend language (e.g., Go, Python, Node.js) and understanding of React / React Native front-ends.
  • Familiarity with secure architecture of microservices, event-driven systems, and REST APIs using OAuth2 / OpenID Connect.
  • Experience securing CI / CD pipelines and integrating AppSec tooling into SDLC.
  • Solid knowledge of containerization and Kubernetes security fundamentals.
  • Understanding of cloud security (preferably AWS), including IAM principles, cloud-native service configurations, and network segmentation.
  • Comfortable with Agile development methodologies and working within cross-functional squads.
  • Software supply chain security (e.g., SBOM, artifact signing).

    • Preferred Qualifications :

  • Certifications such as OSCP, OSWE, GWAPT, CPTE, or CSSLP.
  • AWS, GCP, or Azure Security Specialty certification.
  • Familiarity with bug bounty triage and vulnerability management platforms (e.g., DefectDojo).
  • Experience implementing RASP or eBPF runtime protection tools.
  • Exposure to LLM / AI security considerations and secure code generation practices.
  • Familiarity with logging and monitoring tools (e.g., CloudWatch, Datadog, Grafana).

    • Who We Are :

    Rain is filled with people with a deeply rooted passion for our mission, who embrace diversity throughout our global team, and grow personally and professionally. We own what we do and let data guide our actions while working quickly and adapting to new challenges everyday.

    As part of our dedication to the diversity of our workforce, Rain is committed to Equal Employment Opportunity and does not discriminate based on race, religion, color, national origin, ethnicity, gender, sex (including pregnancy), protected veteran status, age, disability, sexual orientation, gender identity, gender expression, or any unlawful criterion existing under applicable federal, state, or local laws. If you need assistance or accommodation due to a disability, you may contact us at HR-US@rain.us.