Flywire

payments enablement and software

SecurityEngineer,ApplicationSecurity

$109–114k Boston, Massachusetts, United States; United States FULL TIME Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for entry candidates.

The Brief

“Security Engineer, Application Security at Flywire. Skills: Application Security, Vulnerability Management, Threat Modeling, Secure Software Development, DevSecOps, Cloud Security. Ensuring the security of applications and software systems. Conducting application security reviews”

Industry & Context.

payments enablement and software

Problems you'll solve

Mitigate risks; Enhance security; Mitigating payer fraud

What They're Looking For.

Must Have

Master’s degree or foreign equivalent in Computer Science with a specialization in Information Security, or a related field, one (1) of experience in computer science, information security, application security or a closely related role, Perform comprehensive vulnerability management and risk assessments using industry tools such as Tenable and Qualys, Deliver actionable reports with remediation guidance and continuously monitor and triage alerts with SIEM platforms including Splunk, Sumo Logic, ELK, and Wazuh, Conduct hands-on application security testing using a variety of SAST, SCA, and DAST tools, including Veracode, BurpSuite, Snyk, Semgrep, OWASP ZAP, Arachni, SonarQube, and OWASP Dependency-Check, Develop and review secure applications in programming languages such as Ruby on Rails, Java, Python, and Go, focusing on modern UI web interfaces (e. g. , JavaScript, ReactJS, AngularJS, Node. js), Ensure adherence to secure coding standards (OWASP Top 10) and protect against threats like XSS and SQL injection, Conduct peer code reviews, perform in-depth threat modeling using methodologies like STRIDE, and execute security architecture assessments to proactively identify and mitigate risks throughout the software development lifecycle, Embed security into CI/CD pipelines, specifically within GitLab, by writing custom jobs and rules, Integrate and automate security tools like Trivy and Semgrep to ensure continuous security checks and early vulnerability detection within a DevSecOps framework, Securely handle sensitive data using credential management tools like HashiCorp Vault, Design and implement cryptographic techniques, including AES, RSA, ECC, and various hashing algorithms, Review and enforce cloud security best practices for AWS and GCP environments, Conduct internal and external security audits aligned with compliance frameworks such as SOC II Type 2, ISO 27002, NIST, and PCI, and prepare associated reports and policy updates, Design and implement robust authentication and authorization systems utilizing protocols such as OAuth 2. 0, SAML, JWT, and access control models like RBAC/ABAC, Develop custom security software using Python, Bash, and Ruby to automate security processes, from vulnerability scanning to incident response, Support client and third-party security audits by preparing responses to security assessments and risk questionnaires, including those from platforms like OneTrust

What You'll Do.

Ensuring the security of applications and software systems

Conducting application security reviews

Performing secure code analysis

Integrating security testing into CI/CD pipelines

Guiding developers on secure coding practices

Design and implement security protocols for Healthcare

Conducting regular threat modeling and vulnerability assessments

Developing and deploying cryptographic solutions

Analyze and interpret student-related data from Indian and Chinese markets to inform strategies for mitigating payer fraud and enhancing security for international student transactions

How You'll Work.

Team & Collaboration

Global collaboration; Guiding developers on secure coding practices; Peer code reviews; Support client and third-party security audits

Full Job Description

Are you ready to trade your job for a journey? Become a FlyMate! Passion, excitement & global collaboration are all core to what it means to be a FlyMate. At Flywire, we’re on a mission to deliver the world’s most important and complex payments. We use our Flywire Advantage - the combination of our next-gen payments platform, proprietary payment network and vertical specific software, to help our clients get paid, and help their customers pay with ease - no matter where they are in the world. What more do we need to truly be unstoppable? Perhaps, that is you! Who we are: Flywire is a global payments enablement and software company, founded more than a decade ago to solve high-stakes, high-value payments in higher education. We’ve since scaled into new regions and industry verticals and expanded our product offerings to deliver meaningful value to our clients around the world. Today we support more than 5,100 clients across the global education, healthcare, travel & B2B industries, with diverse payment methods across 240 countries & territories and more than 140 currencies. With over 1,200 global FlyMates, representing more than 40 nationalities, and in 12 offices world-wide, we’re looking for FlyMates to join the next stage of our journey as we continue to grow. Job Title: Security Engineer, Application Security Salary Range: $109,221 - $114,221/year Job Location: 141 Tremont St, 10th Floor, Boston, MA 02111; Telecommuting permissible from any location within US Job Description: Responsible for ensuring the security of applications and software systems developed and used within the organization. This role involves conducting application security reviews, performing secure code analysis, integrating security testing into CI/CD pipelines, and guiding developers on secure coding practices. Design and implement security protocols for Healthcare, EDU, and B2B applications, conducting regular threat modeling and vulnerability assessments to identify and mitigate risks, an

Free ATS check

Applying for this Security Engineer, Application Security role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 72 detected · ranked by frequency

Vulnerability Management ×5

Secure Software Development ×5

DevSecOps ×5

Security automation ×4

Threat Modeling ×3

Risk assessments ×3

SIEM platforms ×3

Application security testing ×3

SAST ×3

SCA ×3

DAST ×3

Secure coding standards ×3

Threat modeling methodologies ×3

Security architecture assessments ×3

CI/CD pipelines ×3

Cryptography ×3

Compliance frameworks ×3

Authentication protocols ×3

Access control models ×3

Application Security ×2

Cloud Security ×2

Ruby on Rails

Java

Python

JavaScript

ReactJS

AngularJS

Node.js

AES

RSA

ECC

BEHAVIOURAL

PassionExcitementGlobal collaboration

Role Details

Experience 0–2 yrs

Level entry

Work Mode Telecommuting permissible from any location within US

Type FULL TIME

Education Master’s degree or foreign equivalent in Computer Science wi

Category Engineering, Corp

Salary Band 100k-150k

AI-Extracted Insights

Domain Areas

paymentshigher-education-paymentshealthcare-paymentsb2b-paymentsinternational-student-transactionspayer-fraud-mitigation

How to Apply on SmartRecruiters

SmartRecruiters often includes a video screening step — check camera and mic permissions.
Link your GitHub or portfolio directly in the profile section for technical roles.
Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.

ANONYMOUS · UNFILTERED

What do employees actually say about Flywire?

Real rants from real employees. Read before you apply.

Read Company Rants →