- Partner with product and engineering teams to perform security design reviews and threat modeling for new and existing features across Cherry's platform
- Own and evolve Cherry's product security program — including secure coding standards, vulnerability management, and security testing processes
- Lead security reviews for authentication and authorization systems, ensuring robust access control patterns across our web and mobile products
- Assess and improve the security posture of Cherry's cloud infrastructure including network controls, IAM policies, secrets management, and container security
- Champion security best practices for payment processing, financial and health data handling, in alignment with PCI DSS and relevant compliance frameworks
- Conduct or coordinate penetration tests, red team exercises, and bug bounty triage; drive remediation of identified vulnerabilities
- Build and maintain security tooling integrated into the SDLC - SAST, DAST, dependency scanning, and runtime protection
- Respond to security incidents, perform root cause analysis, and implement lasting fixes to prevent recurrence
- Educate and mentor engineers on security principles, fostering a culture of security ownership across the organization
- Monitor the threat landscape for emerging risks relevant to FinTech and healthcare-adjacent payment products
AWS