Security Engineer, Application Security

Finance is the engine of the global economy. It decides which ideas get built, which companies rise, and how resources are allocated. Yet it runs on slow tools and outdated technology.

Our mission is to transform finance. We’re building the AI analyst that makes every banker, investor, and executive smarter, faster, and more creative. When finance works better, capital flows more efficiently, innovation accelerates, and progress compounds across the entire economy. We’re not building generic AI. We are purpose-built for financial services, already working with the world’s largest banks, hedge funds, and private equity firms. Ten years from now, every financial institution will run on Rogo.

The Role

As a Security Engineer at Rogo, you’ll play a key role in strengthening the security of our products, applications, and cloud environments. You’ll identify and address vulnerabilities through code reviews, penetration testing, and security assessments, while also building tools and automation that improve how we protect our AI-driven platform.

You’ll partner closely with development teams to integrate security into the software development lifecycle, ensuring secure coding practices and automated scanning are part of everyday workflows. Beyond engineering, you’ll provide guidance to stakeholders and help continue to foster a culture where security is a shared responsibility.

What You Will Own

As a Security Engineer at Rogo, you’ll be responsible for driving product, application, and cloud security by building tools, reviewing and implementing code, remediating vulnerabilities, and collaborating with teams to ensure our AI-driven platform is secure by design.

• Perform dynamic security reviews, threat modeling, and penetration testing of applications and APIs.
• Own the end-to-end implementation of automated security reviews within Rogo’s SDLC.
• Contribute directly to code by fixing and remediating vulnerabilities found in SDLC scans (SAST, DAST, SCA, IaC, etc.).
• Design and implement security tools and automation that streamline workflows and integrate with our platform.
• Review and secure cloud infrastructure, including hands-on Terraform and other infrastructure-as-code changes.
• Build and maintain test environments and simulation ranges to validate security controls at scale.
• Partner with engineers across the company to embed secure coding practices into CI/CD pipelines.
• Maintain secure coding standards and deliver training to developers.
• Respond to incidents, perform root cause analysis, and improve defenses against recurring risks.
• Work with our enterprise Bug Bounty program to triage and resolve reported vulnerabilities.
• Share emerging security threats, insights, and best practices with engineering teams and leadership.

What You Will Need

• Deep experience in application security testing, penetration testing, and code review.
• Hands-on experience with security testing tools (e.g., Burp Suite, OWASP ZAP, Snyk).
• Knowledge of implementing SAST, DAST, and SBOM/SCA tooling in CI/CD workflows.
• Familiarity with Terraform and infrastructure-as-code security.
• Experience developing in strongly typed language (e.g. Rust, C++, Java).
• Strong communication skills for collaborating with developers, product teams, and leadership.
• Applied knowledge of threat modeling, cryptography, and vulnerability management.
• Understanding of security frameworks such as SOC2, CIS, ISO 27001/42001, or NIST CSF.

Bonus

• Hands-on cloud security experience in AWS or GCP.
• Familiarity with Kubernetes security (RBAC, admission controllers, ingress, and network policies).

Who You Are

• You thrive in fast-paced environments. You are high-intensity and care a lot about what you do, and you're ecstatic to work at a startup.
• You are ambitious. You have fun solving problems that others think are impossible.
• You are curious. You find joy in learning about AI, technology, and finance.
• You are an owner. You are autonomous, self-directed, and comfortable working with ambiguity.
• You are collaborative, organized, thoughtful, and kind.
• You are ambitious. You have fun solving problems that others think are impossible.
• You are curious. You find joy in learning about AI, technology, and finance.
• You are an owner. You are autonomous, self-directed, and comfortable working with ambiguity.
• You are collaborative, organized, thoughtful, and kind.

Why Join Rogo?

• Exceptional traction: strong PMF with the world's largest investment banks, hedge funds, and private equity firms.
• World-class team: we take talent density seriously. We like working with incredibly smart, driven people.
• Velocity: we work fast, which means you learn a lot and constantly take on more.
• Frontier technology: we're developing cutting-edge AI systems, pushing the boundaries of reinforcement learning and published research, redefining what's possible, and inventing the future.
• Cutting Edge Product: Our platform is state-of-the-art and crazily powerful. We're creating tools that make people smarter, reinventing finance works.