Senior Application Security Engineer
Content + Source + Freshness • 14 Feb 2026 • 95% confidence
Offer value
High value role due to critical security responsibilities and the potential for professional growth in an increasingly vital area.
- Critical role in securing applications for fintech customers
- High market demand for cybersecurity expertise
- Opportunities to influence major security protocols
Pros
- Opportunity to work at the forefront of application security
- High demand skills in a growing market
- Influence on security protocols and practices within the company
Cons
- Intense pressure to prevent security breaches
- Potentially stressful environment due to high stakes
- May require continuously adapting to rapidly changing threats
Who it's for
Senior Level • On-site in San Francisco, CA
Good fit
- Experienced application security engineers
- Professionals passionate about safeguarding fintech applications
- Technologically adept candidates willing to work in a high-pressure role
Not recommended for
- Entry-level candidates lacking relevant security experience
- Those preferring relaxed work environments
- Individuals averse to high responsibility roles
Motivation fit
Key skills
About the job
About Airwallex
Airwallex is the only unified payments and financial platform for global businesses. Powered by our unique combination of proprietary infrastructure and software, we empower over 150,000 businesses worldwide – including Brex, Rippling, Navan, Qantas, SHEIN and many more – with fully integrated solutions to manage everything from business accounts, payments, spend management and treasury, to embedded finance at a global scale.
Proudly founded in Melbourne, we have a team of over 1,700 of the brightest and most innovative people in tech across 26 offices around the globe. Valued at US$6.2 billion and backed by world-leading investors including Visa, Airtree, Blackbird, Sequoia, DST Global, Greenoaks, Salesforce Ventures, Lone Pine, and Square Peg, Airwallex is leading the charge in building the global payments and financial platform of the future. If you’re ready to do the most ambitious work of your career, join us.
Your role
As a Senior Application Security Engineer, you will sit within our Security team and work closely with all product and engineering teams across the business.
This role will see you being a critical part of defending both Airwallex and our 150,000 customers by building our application security program and making our platform as secure as possible. Your day to day work will ensure that the Product and Engineering teams have the confidence to build and release products as quickly as possible without compromising security.
From actively identifying vulnerabilities, to partnering with engineers to help prevent vulnerabilities ever existing, your role requires you to get deep into the code base while interacting with and educating the broader business on security best practices.
What you'll be doing
Review the Airwallex platform and products' code to identify security issues and help engineers find more secure solutions.
Proactively work with our product and engineering teams to assess risk and provide policy guidance on secure code review and best practices.
Be the advocate for security architecture best practices across the Product and Engineering organisation, including secure configuration and deployment of new infrastructure and services.
Educate the engineering and product teams on what secure code and design looks like and why it is important.
Continually test our applications, both internally and externally.
Keep up to date across the latest threats and attack techniques and how they apply to our platform.
Coordinate and manage third party application security reviews and penetration tests.
Set standards for identity and access management across the platform.
Review our use of cloud providers, identify risk areas, and help mitigate them.
What you'll bring
A passion for solving the complex challenges of high-growth startups.
Experience with cloud platforms (we use GCP)
Self motivation and drive to learn new skills, or dive deeper into existing skills.
In depth understanding of common attacker tools and techniques, and how they are can be exploited by insecure development practices.
Experience with vulnerability assessment tools.
Strong communication skills with the ability to explain technical security and software concepts to a non-technical audience.
Experience with Kotlin, Typescript, NodeJS, and Kubernetes is a plus.
Any additional training, security certifications, or history of responsible disclosure is a big plus, such as GIAC certifications, OSCP or your HackerOne profile or other bug bounty programs.
Published articles, journals or blogs related to cybersecurity.
Equal opportunity
Airwallex is proud to be an equal opportunity employer. We value diversity and anyone seeking employment at Airwallex is considered based on merit, qualifications, competence and talent. We don’t regard color, religion, race, national origin, sexual orientation, ancestry, citizenship, sex, marital or family status, disability, gender, or any other legally protected status when making our hiring decisions. If you have a disability or special need that requires accommodation, please let us know.
Airwallex does not accept unsolicited resumes from search firms/recruiters. Airwallex will not pay any fees to search firms/recruiters if a candidate is submitted by a search firm/recruiter unless an agreement has been entered into with respect to specific open position(s). Search firms/recruiters submitting resumes to Airwallex on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary.
