AppSec Engineer

Posted 6 Days Ago
Be an Early Applicant
Hiring Remotely in Rigio, GRC
Remote or Hybrid
Mid level
Blockchain • Fintech • Payments • Cryptocurrency
The Role
Manage and improve vulnerability management: triage, risk assessment, prioritization, remediation tracking, and reporting. Run threat modeling and security risk assessments, define app-security requirements, integrate Secure SDLC, and advise engineering and DevOps on remediation and secure design.
Summary Generated by Built In

Coinspaid Solutions is a fintech company building blockchain payment infrastructure for the global economy.

We design, implement, and scale payment systems that connect digital assets with real-world financial operations. Our solutions help businesses and financial institutions operate efficiently in the evolving digital asset landscape.

For over 11 years, we’ve been developing products that bring crypto payments closer to mainstream adoption. Today, our team includes 350+ professionals working remotely across multiple countries.

We combine the pace of fintech with a long-term approach to building products, teams, and careers. As a remote-first company, we give people flexibility in how they work while maintaining strong collaboration and shared ownership across teams.

🏆 In 2026, Coinspaid was recognized as Best Corporate Culture in the Blockchain Industry in Europe, reflecting our focus on ownership, trust, and collaboration.

 

Responsibilities:

    • Support and continuously improve the company's Vulnerability Management process.

    • Perform vulnerability triage, risk assessment, prioritization, and remediation tracking.

    • Work with engineering teams to ensure timely remediation of identified vulnerabilities.

    • Analyze findings from multiple security tools and sources and reduce noise through effective prioritization.

    • Monitor vulnerability remediation SLAs and provide visibility into security posture through reporting and metrics.

    • Participate in threat modeling activities for new systems, services, and significant architectural changes.

    • Conduct security risk assessments and provide actionable recommendations.

    • Define and maintain application security requirements in collaboration with engineering teams.

    • Support Secure SDLC initiatives and help integrate security practices into development workflows.

    • Provide guidance to developers and DevOps engineers on vulnerability remediation and secure design practices.

Requirements:

    • 4+ years of experience in Application Security, Product Security, Vulnerability Management, or a related security discipline.

    • Hands-on experience managing and prioritizing vulnerabilities across applications, infrastructure, containers, and cloud environments.

    • Strong understanding of OWASP Top 10, CWE, CVSS, EPSS, MITRE ATT&CK, and risk-based vulnerability management approaches.

    • Experience with security testing technologies such as SAST, DAST, SCA, Container Security, and Cloud Security tools.

    • Experience conducting threat modeling and security risk assessments.

    • Understanding of modern software development practices and CI/CD pipelines.

    • Familiarity with Kubernetes and cloud platforms (AWS, GCP, or Azure).

    • Ability to analyze security findings and make risk-based remediation recommendations.

    • Strong stakeholder management and communication skills.

Why should you choose Coinspaid?

You’ll be joining a company that is actively shaping its space – with enough scale to matter and enough room to make an impact.

At Coinspaid, people are expected to think, contribute, and take ownership – and are supported in doing so.

We focus on flexibility, wellbeing, and long-term growth – without overcomplicating how benefits work.

Flexible Benefits

  • Benefit Bar – up to €230/month
    A flexible monthly budget you can use for what matters most to you – from sports and mental health to coworking, home office, or medical-related expenses.

Work & Flexibility

  • Fully remote work from almost anywhere

  • Optional offices and relocation support

  • Flexible, async-friendly environment

Growth & Learning

  • Budget for courses, certifications, and professional development

  • Language learning support

  • Cross-team learning and knowledge sharing

Wellbeing & Support

  • Medical insurance or reimbursement depending on location

  • Access to mental health support

  • Financial support for important life events

Extras

  • Merch shop with rewards system

  • Team offsites and company events


Sounds good? Well then, we can’t wait to see your resume!
To learn more please visit: https://coinspaid.com/about-us/ & https://coinspaid.com/careers/

Skills Required

  • 4+ years of experience in Application Security, Product Security, Vulnerability Management, or related security discipline
  • Hands-on experience managing and prioritizing vulnerabilities across applications, infrastructure, containers, and cloud environments
  • Strong understanding of OWASP Top 10, CWE, CVSS, EPSS, MITRE ATT&CK, and risk-based vulnerability management approaches
  • Experience with security testing technologies such as SAST, DAST, SCA, Container Security, and Cloud Security tools
  • Experience conducting threat modeling and security risk assessments
  • Understanding of modern software development practices and CI/CD pipelines
  • Familiarity with Kubernetes and cloud platforms (AWS, GCP, or Azure)
  • Ability to analyze security findings and make risk-based remediation recommendations
  • Strong stakeholder management and communication skills
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Tallinn
221 Employees
Year Founded: 2014

What We Do

CoinsPaid is a fintech company building blockchain payment infrastructure and a crypto-financial ecosystem. They offer payment processing solutions, business wallets, and exchanges, connecting digital assets with real-world financial operations.

Similar Jobs

Pfizer Logo Pfizer

Principal Software Engineer

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office or Remote
29 Locations
121990 Employees

Pfizer Logo Pfizer

Audit Lead

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
Remote
29 Locations
121990 Employees
163K-272K Annually

Pfizer Logo Pfizer

Sr. Director, Engineering Lead

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office or Remote
29 Locations
121990 Employees
215K-358K Annually

Pfizer Logo Pfizer

Communications & Storytelling Lead, AI-Native Engineering

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Biotech • Pharmaceutical
In-Office or Remote
28 Locations
121990 Employees

Similar Companies Hiring

Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account