Application Security Engineer

Remote, LATAM, Full Time, Individual Contributor, +4 years of experience
Who We Are
At Yuno, we are building the payment infrastructure that enables all companies to participate in the global market. Founded by a team of seasoned experts in the payments and IT industries, Yuno provides a high-performance payment orchestrator. Our technology offers companies access to leading payment capabilities, allowing them to engage customers confidently and maintain global business operations with seamless payment integrations worldwide.

Shape your future with Yuno!
We are orchestrating the best high-performing team!
If you’re an Application Security Engineer who enjoys solving complex technical challenges, driving secure coding practices, and continuously learning, we are looking for you.
As an Application Security Engineer, you will be part of the SecOps team at Yuno. You’ll contribute to secure architecture design, strengthen our security posture across AWS and Kubernetes, and embed security best practices throughout the SDLC. By applying your expertise in secure coding, automation, and threat modeling, you’ll help foster a security-first culture and ensure a trusted experience for millions of customers worldwide.

🟣 Your challenge at Yuno 
• Design, build, and maintain secure and scalable internal tools using Python, focusing on automation and secure coding best practices.• Evaluate and secure APIs and microservices in cloud (especially AWS) and Kubernetes environments, including threat modeling and internal assessments.• Perform manual and automated security testing to uncover OWASP Top 10 and business logic vulnerabilities in web applications and APIs.• Define and maintain secure architecture standards and coding guidelines to embed security across all stages of the SDLC.• Integrate and continuously improve security controls within CI/CD pipelines (static code analysis, automated scanning, compliance checks).Mentor and empower developers through secure coding training, hands-on guidance, and fostering a security-first and privacy-first culture.• Explore and evaluate emerging technologies and architectures (e.g., AI integrations) to ensure secure adoption.

🟣 Skills you need
Minimum Qualifications
• 4+ years of hands-on experience in application security, including pentesting of web applications and APIs.• Deep expertise in identifying and mitigating OWASP Top 10 vulnerabilities and business logic flaws.• Proven experience integrating security controls into CI/CD pipelines.• Practical experience in cloud security, especially AWS environments.• Proficiency in Python, including secure coding and automation scripting.• Familiarity with modern authentication and encryption standards (e.g., OAuth, TLS).• Strong problem-solving skills and the ability to communicate effectively and collaborate with cross-functional teams.• Verbal and written English fluency.

Preferred Qualifications• Security certifications (e.g., OSCP, CEH, CISSP, Security+).• Hands-on experience with AWS security services (e.g., IAM, Security Hub, GuardDuty, WAF).• Experience working with compliance frameworks (e.g., GDPR, SOC 2, PCI DSS).• Familiarity with emerging architectures (e.g., serverless, event-driven, AI integrations).

🟣 What we offer at Yuno
• Competitive Compensation• Remote work - You can work from everywhere!• Home Office Bonus - We offer a one time allowance to help you create your ideal home office.• Work equipment• Stock options• Health Plan wherever you are• Flexible Days off • Language, Professional and Personal growth courses