Senior Application Security Engineer

Overview:

AvidXchange is a dynamic and innovative technology-driven B2B payments organization seeking a curious inquisitive highly skilled and motivated Senior Application Security Engineer to join our team. Our company values collaboration creativity and excellence in delivering cutting-edge solutions to our customers. As an Application Engineer you will play a crucial role in ensuring the security and integrity of our applications systems and the role you will be responsible for identifying and driving remediations of vulnerabilities and threats across our product portfolio.

What youll do:

• Cross-functionally collaborate with technology teams to identify and remediate security issues.
• Provide guidance to product and technology teams on security best practices.
• Using a variety of tools and experience develop an understanding of application risk profile build relationships and influence decisions to continuously maintain cybersecurity resilience.
• Will utilize software architecture security analysis web application penetration testing and application reverse engineering.
• Develop training based on experience and discovery targeting identified areas of opportunity.
• Understand root causes identify data and patterns associated with potential weaknesses and drive improvements across all levels of leadership.
• Assist in investigating analyzing and responding to security incidents related to applications ensuring timely resolution and documentation of incidents.
• Lead threat modeling and risk discovery efforts across multiple product verticals provide guidance and mentorship within team and organization.

What were looking for:

• 5 years information security experience in a SaaS environment with a deep understanding of application security.
• Experience using common application security tools like (Burp Suite OWASP ZAP) used for security testing.
• Knowledge of and experience in implementing application security tools and platforms and integrating them into SDLC processes and code delivery pipelines.
• Deep understanding of security protocols encryption methods CI/CD pipelines and DevSecOps practices.
• Appsec-level proficiency in programming languages (such JavaScript TypeScript Java Python)
• Experience leveraging AI tooling and capabilities (LLM / MCP) in an information security context.
• Plus but not required: Certifications such as CPSA CRT CCSAS CompTIA Pentest OSCP ECSA/LPT CISSP
• Working knowledge of infrastructure as code tools serverless architectures.
• Strong technical aptitude genuine ambassador and practitioner interest in cybersecurity and technology problem solver attitude.
• Proven ability to think critically and address complex security challenges by building strong relationships with colleagues and stakeholders.
• Self-motivated and proactive mindset in identifying potential security risks and implementing preventive measures.
• Excellent verbal and written communication skills to convey complex security concepts to both technical and non-technical stakeholders.
• Ability to work well within a team and across departments to achieve common security goals.

About AvidXchange

AvidXchange is a leading provider of accounts payable (AP) automation software and payment solutions for middle-market businesses and their suppliers. By trade we are a technology company but if you ask anyone who works here theyll tell you our people are at the core of who we are. At AvidXchangemindset is everything. We are Connected as People Growth Minded and Customer Obsessed. Thesethree mindsets represent our culture who weare who weve always been and they guide usto improve every our founding in 2000 in Charlotte NC weve created a company of over 1500 teammates working across the U.S. or remotely. AvidXchange is proud to be Certified as aGreat Place to Work. The prestigious recognition is based on anonymous data from our teammates and makes official what our teammates have known for years that AvidXchange is a Great Place to Work.

Who you are:

• A go-getter with an entrepreneurial mindset that meansyou arenot afraid of taking riskswinning bigorfacing the unknown.
• Someone who understands that business ispeople centric. Connecting with others as humans first allows you to develop mutually beneficial working relationships.
• Focused onmaking a difference for our customers. AvidXchange exists to help solve complex problems for our customers so we can all realize our potential.

What youll get:

AvidXchange teammates (we call them AvidXers) get the perks and prestige of a growing tech company paired with the flexibility of a founder-led startup. We help our AvidXers develop as professionals and as human beings providing work/life balance development programs and competitive benefits. At AvidXchange we are building more than a tech company we are building an experience. We remain committed to a culture where you can fully be you connected with others chasing big goals and making a meaningful impact. If you want to help us grow while realizing your potential and creating stories youll tell for years youve come to the right place.

AvidXers enjoy:

• 18 days PTO*
• 11 Holidays (8companyrecognized & 3floatingholidays)
• 16 hours per year ofpaid Volunteer Time Off (VTO)
• Competitive Healthcare
• High Deductible Heath Plan Option that has $0 monthly premium for teammate-only coverage
• 100% AvidXchange paid Dental Base Plan Coverage
• 100% AvidXchange paid Life Insurance
• 100% AvidXchange paid Long-Term Disability
• 100% AvidXchange paid Short-Term Disability
• Employee Assistance Program (EAP) - Providescounseling services legal and financial consultations and health advocacy for Teammates and their eligible dependents
• Onsite Health Clinic with Atrium Health - available to Teammates and their eligible dependents
• 401(k) Match: 100% match on the first 3% of your salary plus 50% match on the next 2%
• Parental Leave: 8 weeks 100% paid by AvidXchange**
• Discounts on Pet Home and Auto insurance
• WeeCareChildcare Service:helps teammates find affordable daycarechildcareandtutors 40%less expensivethan traditional daycarecenters
• Perks at Work:free discount program that provides teammates the opportunity to save on items fromelectronics movie tickets car buying vacationsandmore
• Onsite gym fitness center yoga studio and basketball court
• Tuition Reimbursement up to the federal maximum of $5250***
• Hybrid Workplace Flexibility
• Free parking

*Fully granted from beginning of year pro-rated if hired mid-year

**Must be full-time for at least 3 months

***Must be full-time for at least one year

Equal Employment Opportunity

AvidXchange is an equal opportunity employer. AvidXchange is committed to equal employment opportunity in accordance with applicable federal state and local laws. AvidXchange will not discriminate against applicants for employment on any legally recognized basis. This includes but is not limited to veteran status race color religion sex sexual orientation gender identity gender expression national origin age and physical or mental disability.