Senior Application Security Engineer at Felix Technologies, Inc.
Felix Technologies, Inc.
Posted on
NewJob Function:Information Technology
New job! Apply early to increase your chances of getting hired.
Explore Related Opportunities
About This Position
About Us
At Félix, we're building the financial ecosystem for Latin immigrants in the U.S., starting with a revolution in remittances. Our core product is an AI-powered chatbot built on WhatsApp, allowing our users to send money home as easily as sending a text message. We leverage cutting-edge technology like AI, blockchain, and stablecoins to make cross-border payments faster, more affordable, and more accessible than ever before.
We are a hyper-growth Series B company, backed by over $100 million in funding from top-tier global investors, including QED, Castle Island, Switch Ventures, HTwenty, Monashees, and General Catalyst Customer Value Fund. This isn't just about the numbers; it's a testament to the trust our investors have in our vision and our team. Additionally, Félix was selected as an “Endeavour Entrepreneur” and was a recipient of the CrossTech Fintech Startups Award. We are a group of extremely talented and dedicated high-performers, united by our shared obsession with a single goal: empowering our customers. We are all owners of Félix, driven by a bias for action and a true experimentation spirit to get shit done with urgency and focus.
Joining Félix means you will be part of a team building a legacy, a company that will outlive us all. This is a rare opportunity to apply your skills to a deeply meaningful mission—serving a community that has been underserved for too long. We are a team that is fiercely loyal to each other, where radical transparency and constructive feedback are how we grow and push for excellence. We are bold, we care less about what others are doing, and more about creating sustainable value and a product that truly makes our users' lives better. We are building the future, today.
About the Role
Félix is looking for a Senior Application Security Engineer to help scale the security of our software development lifecycle in a fast-growing, cloud-native fintech platform.
This is a hands-on role focused on embedding security across CI/CD pipelines and developer workflows. You will work closely with SecOps and engineering teams to ensure that security controls are integrated early in the development process, enabling teams to ship secure code quickly and confidently.
You will be responsible for building and improving our DevSecOps capabilities, including security automation, vulnerability management, and secure coding practices. This role requires a strong technical understanding of modern application architectures, as well as the ability to evaluate how security controls operate in practice across our environment.
Your mission is to ensure that application security is consistently integrated into Félix’s SDLC, strengthening our overall security posture while supporting rapid product development.
Responsibilities
Requirements
What We Offer
Equal Opportunity Employer
At Félix, we are committed to providing equal employment opportunities to all qualified employees and applicants without regard to race, religion, nationality, sex, sexual orientation, gender identity, age, or disability. This policy applies to all terms and conditions of employment, including recruitment, hiring, placement, promotion, training, compensation, benefits, and termination.
Want to learn more about our privacy practices? Check out our Privacy Policy.
At Félix, we're building the financial ecosystem for Latin immigrants in the U.S., starting with a revolution in remittances. Our core product is an AI-powered chatbot built on WhatsApp, allowing our users to send money home as easily as sending a text message. We leverage cutting-edge technology like AI, blockchain, and stablecoins to make cross-border payments faster, more affordable, and more accessible than ever before.
We are a hyper-growth Series B company, backed by over $100 million in funding from top-tier global investors, including QED, Castle Island, Switch Ventures, HTwenty, Monashees, and General Catalyst Customer Value Fund. This isn't just about the numbers; it's a testament to the trust our investors have in our vision and our team. Additionally, Félix was selected as an “Endeavour Entrepreneur” and was a recipient of the CrossTech Fintech Startups Award. We are a group of extremely talented and dedicated high-performers, united by our shared obsession with a single goal: empowering our customers. We are all owners of Félix, driven by a bias for action and a true experimentation spirit to get shit done with urgency and focus.
Joining Félix means you will be part of a team building a legacy, a company that will outlive us all. This is a rare opportunity to apply your skills to a deeply meaningful mission—serving a community that has been underserved for too long. We are a team that is fiercely loyal to each other, where radical transparency and constructive feedback are how we grow and push for excellence. We are bold, we care less about what others are doing, and more about creating sustainable value and a product that truly makes our users' lives better. We are building the future, today.
About the Role
Félix is looking for a Senior Application Security Engineer to help scale the security of our software development lifecycle in a fast-growing, cloud-native fintech platform.
This is a hands-on role focused on embedding security across CI/CD pipelines and developer workflows. You will work closely with SecOps and engineering teams to ensure that security controls are integrated early in the development process, enabling teams to ship secure code quickly and confidently.
You will be responsible for building and improving our DevSecOps capabilities, including security automation, vulnerability management, and secure coding practices. This role requires a strong technical understanding of modern application architectures, as well as the ability to evaluate how security controls operate in practice across our environment.
Your mission is to ensure that application security is consistently integrated into Félix’s SDLC, strengthening our overall security posture while supporting rapid product development.
Responsibilities
- Build and Automate Secure CI/CD Pipelines: Design, implement, and maintain security controls within our GitHub Actions CI/CD pipelines. You will be hands-on with tools for Static Application Security Testing (SAST), Software Composition Analysis (SCA), Infrastructure-as-Code (IaC) scanning, and secret detection.
- Drive Vulnerability Management: Take ownership of our vulnerability management program using platforms like DefectDojo. You will work closely with engineering teams to triage findings, prioritize remediation efforts, and reduce our overall risk profile.
- Champion Secure Development: Act as a security subject matter expert for our product engineering teams. You will conduct security architecture reviews, perform threat modeling for new features , and promote secure coding best practices across our Python-based services.
- Coordinate Security Assessments: Manage and support internal and external penetration testing engagements, track findings, and drive remediation efforts with the relevant teams.
- Develop Security Standards: Help define and document foundational security requirements for source code management, secrets management, and our CI/CD processes to ensure they are secure by design.
- Support Compliance Initiatives: Partner with our GRC function to implement necessary application security controls and gather evidence to support our SOC 2 and PCI compliance audits.
Requirements
- Proven experience as an Application Security Engineer, Product Security Engineer, or in a similar role.
- Hands-on experience building, securing, and operating CI/CD pipelines, preferably with GitHub Actions.
- Strong proficiency with security scanning tools (e.g., SAST, DAST, SCA, secret scanning).
- Proficiency in a scripting or programming language, with a strong preference for Python to align with our primary tech stack.
- Deep understanding of web application vulnerabilities, secure architecture principles, and the OWASP Top 10.
- Experience working with cloud-native technologies and environments (GCP, Kubernetes/GKE, Docker).
- Experience in a regulated industry (Fintech, Healthcare, etc.) and familiarity with compliance frameworks like SOC 2 and PCI DSS.
- Experience with Infrastructure-as-Code tools like Terraform and related security scanners (e.g., Checkov).
- Familiarity with vulnerability management platforms like DefectDojo.
- These are the applicable requisites, although equivalent competencies in any of the above will also be considered.
What We Offer
- Competitive salary
- Initial stock options grant
- Annual performance bonus
- Health, dental, and vision plans
- Remote work environment, although we have offices in Miami and México City and would love to work in hybrid model if you are up to it.
- Continuous learning opportunities
- Unlimited PTO
- Paid parental leave
- Empowering opportunities for growth in a dynamic entrepreneurial environment
Equal Opportunity Employer
At Félix, we are committed to providing equal employment opportunities to all qualified employees and applicants without regard to race, religion, nationality, sex, sexual orientation, gender identity, age, or disability. This policy applies to all terms and conditions of employment, including recruitment, hiring, placement, promotion, training, compensation, benefits, and termination.
Want to learn more about our privacy practices? Check out our Privacy Policy.
Scan to Apply
Just scan this QR code to apply from your phone.
Frequently asked questions about this position
Continue to apply
Enter your email to continue. You’ll be redirected to the employer’s application.By clicking Continue, you understand and agree to JobTarget's Terms of Use and Privacy Policy.