
Moniepoint · Remote
WHO WE ARE Moniepoint Inc. is Africa’s all-in-one financial platform, helping 20 million businesses and individuals access seamless payments, banking, credit, ...
Moniepoint Inc. is Africa’s all-in-one financial platform, helping 20 million businesses and individuals access seamless payments,
banking, credit, cross-border, and business management tools each month.
As Nigeria’s largest merchant acquirer, we power most of the country’s point-of-sale (POS) transactions. Through our subsidiaries,
Moniepoint Inc. processes over $250 billion in digital payment transaction value annually.
As a Senior Application Security Engineer, you will champion secure innovation by embedding security into the fabric of our
software development lifecycle. You'll partner closely with engineering teams to safeguard customer trust while they build
cutting-edge services. Your expertise will directly shape secure design through threat modeling and code review, drive efficiency
via security automation, and mentor developers to elevate our collective security posture.
The ideal candidate is a technical leader who blends deep security expertise with exceptional influence. You possess broad
security knowledge anchored by specialization in critical areas, and excel at translating complex risks into actionable insights
for both engineers and executives. Your strength lies in harmonizing diverse perspectives, strategically prioritizing risks, and
guiding partners to implement resilient, secure solutions that balance speed and safety.
Security Strategy & Leadership
Advanced Technical Execution
Collaboration & Enablement
Qualifications Required
review for Java/Python/JavaScript and cloud platforms (AWS/Azure/GCP).
Preferred
Skills
What we can offer you
carry weight and where all voices are heard. We value and respect each other and always look out for one another. Above all, we
are human.
internal technical talks.
other benefits.
What to expect in the hiring process
About Tripadvisor The Tripadvisor Group connects people to experiences worth sharing, and aims to be the world’s most trusted source for travel and experiences. We leverage our brands, technology, and capabilities to connect our global audience with partners through rich content, travel guidance, and two-sided marketplaces for experiences, accommodations, restaurants, and other travel categories. The subsidiaries of Tripadvisor, Inc. (Nasdaq: TRIP), include a portfolio of travel brands and businesses, including Tripadvisor, Viator, and TheFork. We are looking for an experienced Senior Application Security Engineer to join our growing team at Tripadvisor Experiences. In this role, you will take a lead position in securing the applications that power our platform. As a Senior Engineer, you will design and implement advanced security measures, mentor junior engineers, and play a key role in ensuring the security of our products and infrastructure. This is a fantastic opportunity to influence our security practices and help shape the future of application security within the organisation. This role is based remotely in Poland. We hire based on a permanent contract (UoP). What You’ll Do: * Lead the design and implementation of advanced application security measures, including encryption, secure APIs, and identity management. * Conduct in-depth threat modelling and risk assessments to identify and mitigate potential security risks. * Performing manual security assessments including code reviews. * Act as a Subject Matter Expert (SME) for security breaches, including performing root cause analysis and creating corrective actions related to security vulnerabilities. * Develop and enforce application security policies across multiple engineering teams, ensuring consistency and scalability. * Mentor and train junior engineers, helping them improve their security knowledge and practices. * Provide expert advice on security architecture and design for new features and systems. * Collaborate with engineering and product teams to integrate security requirements into software development lifecycles. * Champion security initiatives by advocating for prioritisation of security issues and resolution of technical debt. * Stay up to date with the latest security threats and industry best practices, ensuring that the team remains proactive in its approach to security. What You’ll Need: * Extensive experience in application security, including expertise in secure coding practices, threat modelling, vulnerability assessments, and incident response. * Hands-on experience with security testing tools (SAST, DAST) and their integration into development pipelines. * Strong understanding of advanced security concepts such as encryption, secure software design, identity management, and API security. * Experience with cloud security (AWS, Azure, etc.) and securing microservices architectures. * Proven leadership skills, with the ability to guide and mentor other engineers and influence security practices across teams. * Excellent communication and collaboration skills, with a track record of working closely with cross-functional teams to improve security posture. * 4+ years experience working as a Security Engineer / Application Security Analyst Preferred Qualifications: * Experience with regulatory frameworks (e.g., GDPR, PCI-DSS, SOC 2) and their integration into security processes. * Industry-recognised security certifications (e.g., OSCP, OSCE, or similar). * Familiarity with the latest security tools and frameworks to proactively identify vulnerabilities and mitigate threats. * A passion for mentoring and developing others, with a commitment to continuous learning and improvement. What We Offer * Competitive compensation packages (routinely benchmarked against the latest industry data), including base salary and annual bonuses * “Work your way” with flexibility to suit your lifestyle. Tripadvisor Group takes a remote-friendly approach to collaboration across a worldwide team, with the option to join on-site as often as you’d like or as required by your team. * Flexible schedule. Work-life balance is ingrained in our culture by design. Trust and accountability make it work. * Donation matching. Give back? Give more! We match qualifying charitable donations annually. * Tuition assistance. Want to level up your career? We love to hear it! Receive annual support for qualified programs. * Lifestyle benefit. An annual benefit to spend on yourself. Use it on travel, wellness, or whatever suits you. * Travel perks. We believe that travel is employee development, so we provide discounts and more. * Employee assistance program. We’re here for you with resources and programs to help you through life’s challenges. * Health benefits. We offer great coverage and competitive premiums. * Generous referral scheme. Help us grow and be rewarded with generous awards for referring successful candidates. Our Cultural Pillars: Traveler first We exist to create value for our customer, the traveler. We enable our suppliers and partners to unlock this value. Their collective behaviors and insights are what drives us. Execution is our edge We act fast, experiment, learn from failure, iterate, and improve the solutions of tomorrow across every aspect of our business. Our execution is agile, data-driven, prioritised, and built to scale. We assume no problem is someone else’s problem and finish what can be done today, knowing tomorrow will bring fresh challenges. We succeed together The best outcomes are driven by empathic, humble, and diverse subject matter experts working toward shared goals. We collaborate relentlessly, challenge assumptions, give actionable feedback, and set each other up for success through empowered teams with a clear charter. We transparently take ownership of our growth, individually and as a team. We celebrate the quality of our effort, our learnings, and our collective achievements. We strive to create an accessible and inclusive experience for all candidates. If you need a reasonable accommodation during the application or the recruiting process, please make sure to reach out to your individual recruiter or our team at AccessibleRecruiting@tripadvisor.com. If you have any additional questions about careers at Tripadvisor you can email us at recruitment@tripadvisor.com. We have all the answers!
Thought Machine's mission is bold – to properly and permanently rid the world's banks of legacy technology. To achieve this, we have developed the foundations of modern banking through core and payments technology which run natively in the cloud. What we are attempting is hard and means we need great people working together to build great technology. We have grown rapidly in the past few years – growing our team to more than 550 individuals across offices in London, New York, Singapore, Sydney and our newly established Engineering Hub in Lisbon. We have raised more than £500m in funding and our investors include Molten Ventures, Eurazeo, Intesa Sanpaolo, Temasek, Nyca Partners, JPMorgan Chase Strategic Investments, Standard Chartered Ventures, and more. We have created a culture that enables our team to produce the best work in the industry while ensuring we have fun along the way. We're regularly cited as having a fantastic workplace culture and have been recognised by Sifted magazine as having one of the highest Glassdoor ratings for a UK fintech company and the industry's most generous employee share package. Named one of the world's most innovative fintechs by Global Finance Magazine, we were also recognised by the Financial Times as one of Europe's fastest-growing companies for two consecutive years—and a UK Best Employer for 2026. This is a full-time, permanent position based in our Lisbon office, requiring four days a week onsite. This position plays a key role in ensuring Thought Machine teams are taking all required steps in building a secure product set. You will play a major and leading role in protecting Thought Machine product against security risks, with influence to implement cutting-edge measures to minimise exposures and vulnerabilities. Whether engineering a system to address a technical security hurdle, protecting our customers' data, or consulting on a wide range of security topics, you are empowered to engage and lead cross-functionally. A large part of Thought Machine product security function is a greenfield challenge, we are building the bank of tomorrow with cutting edge web technology, no best-practice/of the shelve security frameworks or tools can solve our security challenge. We are building the best security to enable engineering and impress financial service auditors. Key qualities of the ideal candidate would have experience in OWASP top 10 vulns, devsecOps, data privacy protection, passion to mentor and enable devs, creativity, autonomy, ability to work and complete multiple projects simultaneously. DUTIES * Drive improvements to Thought Machines product security posture through strategic planning and collaboration with both development and infrastructure teams, with trust, autonomy and influence. * Produce production web scale grade application security design. * Review and produce data privacy and financial regulatory functional and nonfunctional designs. * Perform design reviews and Threat modeling of Thought Machine services and products. * Perform vulnerability assessments and security testing. * Providing subject matter expertise on all areas of security and privacy throughout the Software Development lifecycle. * Liaison with development teams for design, code reviews & education. * To contribute to security strategy, security tooling selection and creation. * Conduct regular security assessments and code reviews. REQUIREMENTS Essential * Expertise with a programming language (e.g. Python, Go or Java) * Experience of security in a DevOps environment * Experience in web application penetration testing and security tooling (e.g. Burp proxy, Web/Network Scanners, Static code analysers, etc). * Coding experience for automating/integrating security tools and creation of security tools. * Knowledge of security in distributed systems at scale. * Cloud and containers technology knowledge (e.g. AWS, GCP, Kuberbetes, Docker) * Experience of performing security design reviews, threat modelling and risk assessments * Knowledge of application security issues Desirable * Professional security qualifications are desirable (e.g. CISSP, Offensive Security, Sans Institute, etc.) * Contributions to the security community (public research, blogging, presentations, etc) * Awareness and experience of the Data Protection Act, ISO 27001 and PCI-DSS Benefits * Highly competitive salary * Voluntary Pension Plan (match up to 5%) * Private Healthcare Insurance * Comprehensive Life Insurance * 25 days holiday plus public holidays * Two charity days a year * Daily Meal Allowance * Access to outstanding learning materials and courses * Sports and hobby clubs, subsidised by Thought Machine * All the latest tech you need * Huge range of healthy (and not-so-healthy) snacks, smoothies and drinks * A talented and experienced team as your colleagues * An environment where we encourage learning and progress We actively hire candidates who demonstrate technical excellence in their field and welcome people of all ages and backgrounds, providing everyone with equal access to professional development. You are encouraged to apply even if your experience doesn't accurately match the job description. We also encourage applications from those with different abilities, including candidates with ADHD, autism, dyslexia or dyspraxia.
About DataCamp DataCamp's mission is to empower everyone with the data and AI skills essential for 21st-century success. By providing practical, engaging learning experiences, DataCamp equips learners and organizations of all sizes to harness the power of data and AI. As a trusted partner to over 17 million learners and 6,000+ companies, including 80% of the Fortune 1000, DataCamp is leading the charge in addressing the critical data and AI skills shortage. About the role We are looking for a Senior Application Security Engineer to join our Engineering team and own the security posture of our software and development practices. This is a hands-on role for someone with a strong software engineering background who is genuinely passionate about security - not a traditional infosec role, but one that sits at the intersection of engineering and security. You will be our primary security expert embedded in the Engineering organization, acting as the first responder on security topics - from bug bounty programs and penetration testing to vulnerability management and security risk tracking. You will work closely with our engineering teams to embed security guardrails into our development workflows, including our growing AI-assisted and Agentic development practices. We are ISO 27001 certified and take our compliance obligations seriously. You will play a key role in ensuring our controls remain in place, evolving our security awareness program, and continuously improving the tools and practices that keep us ahead of the curve. About you At DataCamp, we seek individuals who embody our core values of data-driven decision-making, action, transparency, ownership, and customer focus. You thrive in a fast-paced, high-performing environment and are driven by a passion for making a meaningful impact. You're adaptable, embracing change and ambiguity with enthusiasm. Your initiative and entrepreneurial spirit push you beyond just meeting targets—you aim to understand the "why" behind our goals and take ownership to drive the business forward. You’re a collaborative team player who values transparency and always seeks to improve and innovate. If this sounds like you, we encourage you to apply! Responsibilities * Own vulnerability management end-to-end: triage, prioritize, track, and drive remediation across the engineering organization * Act as the first responder from Engineering on security topics, including bug bounty programs, penetration testing engagements, and security incidents * Maintain and evolve our application security tooling (JFrog X-Ray, SonarCloud, OWASP ZAP) and integrate security checks into CI/CD pipelines * Partner with engineering teams to embed security guardrails into development workflows - including AI-assisted and Agentic development practices * Drive adoption of secure coding standards and OWASP best practices across the engineering organization (OWASP Top 10 for Web and API) * Support and evolve our ISO 27001 compliance program, ensuring controls are in place, monitored, and continuously improved * Run and evolve our annual security awareness training for developers * Track and communicate security risks to engineering leadership and relevant stakeholders * Evaluate and adopt new security tools and practices as the threat landscape and our technology evolve Qualifications * 6+ years of software engineering or application security experience, with a strong coding background - you can read, write, and review code across multiple languages * Strong TypeScript/Node.js experience; good knowledge of Kubernetes, and AWS * Deep understanding of application security concepts: OWASP Top 10 (Web and API), vulnerability management, secure SDLC, and threat modeling * Hands-on experience with application security tooling such as SAST, DAST, and SCA - experience with JFrog X-Ray, SonarCloud, or OWASP ZAP is a plus * Experience coordinating or participating in bug bounty programs and penetration testing engagements * Experience working within ISO 27001 or similar compliance frameworks - experience with compliance monitoring tools (e.g., Vanta) is a plus * Experience integrating security practices into CI/CD pipelines and developer workflows * Able to take a security initiative from problem identification through to implementation - you drive things to completion and don't wait to be pushed * Already working with AI-assisted development tools (e.g., Claude Code, Cursor) in your day-to-day workflow, with solid understanding of AI Engineering concepts and Agentic systems - including the security implications they introduce * Startup, scale-up, or small-company experience - You have worked in environments where teams are small, ownership is broad, priorities shift quickly, and you are expected to make progress without a large support structure. * Strong communication skills - you can explain complex security topics to engineers and non-technical stakeholders alike * Comfortable working across engineering teams without direct authority - you communicate security risks clearly and pragmatically, without blocking delivery Why Datacamp? Joining DataCamp means becoming part of a dynamic, creative, and international start-up. Here are just a few of the reasons why you’ll love being on our team: * Exciting challenges: Face new technical challenges daily, keeping your work engaging and rewarding. * Competitive compensation: We offer a competitive salary with attractive benefits. * Flexibility: Benefit from flexible working hours because the future is flexible! * Continuous learning: Access a yearly learning budget for conferences & training to support your professional growth. * Global retreats: Participate in international company retreats, fostering a global team spirit. * Equipment: Yearly refreshment of your IT Equipment budget for your home working setup. * Amazing team: Collaborate with a truly exceptional team—seriously, we’re awesome!