This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We are looking for a Sr. Full Stack Application Security Engineer with deep expertise in mobile application security to join our Product Security team. This role is hands-on and impact driven. You will work directly with mobile, backend, and platform engineering teams to identify, prevent, and remediate security issues across our iOS, Android, API, and backend systems. You will operate close to the code and close to the product. That means reviewing architectures across the stack, influencing secure design decisions early, and helping teams ship features safely without slowing delivery. This role is for someone who understands how modern distributed systems and mobile apps are built, deployed, and attacked in real-world environments. While mobile application security is a core focus, you will be part of a team that owns security posture across the full application stack including APIs, backend services, identity and authentication flows, and CI/CD pipelines. In this role, you can expect to: - Build and improve security capabilities, automation, and guardrails for mobile applications and backend/API services - Perform application or API/backend penetration testing - Identify, triage, and help remediate vulnerabilities across Chime products - Partner closely with engineering and product teams to embed security into the development lifecycle across mobile apps, APIs, and backend services - Perform architecture and code reviews across the stack (iOS/Android, APIs, backend) with a focus on secure data storage, authentication, authorization, secure communication, and session/token handling - Leverage AI to accelerate security workflows (e.g., code review support, triage, threat modeling), and partner with teams building AI-enabled features to define and implement production-grade AI security controls Qualifications - 5+ years of experience in application security, with strong hands-on experience across both mobile and backend systems - Hands on experience securing iOS and Android applications in production environments - Strong understanding of mobile threat models and common attack techniques - Experience with mobile security testing techniques, including static and dynamic analysis - Familiarity with iOS and Android platform security features and limitations - Practical coding experience, preferably in Ruby, Go, Python languages - Ability to clearly communicate security risks, tradeoffs, and remediation guidance to engineering partners Benefits - Competitive salary based on experience - 401k match - Great medical, dental, vision, life, and disability benefits - Generous vacation policy and company-wide Chime Days, bonus company-wide paid days off - 1% of your time off to support local community organizations of your choice - Annual wellness stipend to use towards eligible wellness related expenses - Up to 24 weeks of paid parental leave for birthing parents and 12 weeks of paid parental leave for non-birthing parents - Access to Maven, a family planning tool, with $15k lifetime reimbursement for egg freezing, fertility treatments, adoption, and more - In-person and virtual events to connect with your fellow Chimers—think cooking classes, guided meditations, music festivals, mixology classes, paint nights, etc., and delicious snack boxes - A challenging and fulfilling opportunity to join one of the most experienced teams in FinTech and help millions unlock financial progress

• Conduct regular security assessments, secure code reviews, threat modeling, and penetration testing • Plan and execute security testing for LLM-enabled applications • Assess sensitive data exposure risks and validate compensating controls • Evaluate risks in tool/function calling and recommend mitigations • Design, develop, and implement security tools and automation • Partner with engineering teams to embed security best practices across the SDLC • Assist with investigation and response for application security incidents • Maintain awareness of emerging application and AI security threats

• Design and implement scalable, developer-friendly security solutions that integrate directly into engineering workflows • Lead threat modeling, design reviews, and code reviews for new features and major product launches • Build and evolve secure-by-default frameworks for authentication, authorization, input validation, and secrets management • Develop and integrate automated security tooling into CI/CD pipelines (e.g., linters, dependency scanners, policy enforcement) • Collaborate with product and engineering teams to remediate vulnerabilities, and contribute to incident response and postmortems • Own, manage, and improve our third-party penetration testing engagements and bug bounty program, working closely with external security researchers to identify and resolve vulnerabilities • Stay current on emerging threats and attack techniques, and drive ongoing maturity of our application security posture

Do you enjoy leveraging your technical expertise in NGS and liquid handling robots to build credibility and deliver valuable insights to customers? Are you passionate about traveling to customer sites to lead trainings and provide hands-on support? If this sounds like you and you are driven by purpose, join the SOPHiA GENETICS Genomic Research team as our Senior Field Application Specialist, and enable us to make a positive impact on the outcomes for cancer and rare disease patients worldwide. We are prioritizing candidates open to being based in our Boston, MA office, although we will also consider remote candidates located in EST or CST timezones. This is a field-based role that will require a minimum of 60% travel to our customers sites across the US. Our mission We believe there is a smarter, more data-driven way to make decisions in healthcare and our cloud-native AI powered SOPHiA DDM Platform makes that vision a reality on a daily basis. You will have direct input to our mission to democratize data-driven medicine for the ultimate benefit of cancer and rare disease patients across the globe. Your mission As our Senior Field Application Specialist you will be responsible for training and supporting our customers on all SOPHiA GENETICS Bundle solutions. You will closely interact with the Sales and Product Marketing teams to relay customer needs and feedback, ensuring we continuously improve our offerings. You will also contribute to ongoing laboratory projects, such as protocol optimizations, and support the team by drafting scientific and quality documents, including fact sheets and work instructions. The vale you bring Customer Training and Support: Provide appropriate training to customers on SOPHiA GENETICS solutions, manage customer support Build effective relationships with new and existing clients for field application purpose, monitor the customer feedback on product usage Internal Laboratory participation: Elaborate laboratory documents Train internal and external collaborators Product Development: Gather feedback from customers regarding their needs, communicate internally for product design improvement Coordinate with the development and/or marketing team for proper market implementation Requirements Benefits You will be joining an organization with the patient at the heart of every decision and action, driven by purpose as we pursue exponential growth. Business recognition and accolades include: World's most innovative companies (Top 10) World's smartest companies (Top 50) 100 Best Places to Work in Boston Top 10 European Tech Startup Top 10 European biotechs startup to watch Top 25 East-Coast Biotech to watch Our US benefits package is comprehensive, but varies internationally in-line with local standards and laws. You can discuss a full breakdown with us, but as a brief overview: Outstanding Medical (with Telemedicine), Dental, and Vision Plan with 90% employer contributions, including $0 deductible plans options. Life and AD&D company provided Company 4% match 401K contributions Company-paid Short and long-term disability insurance 20 Days PTO (Increases with tenure), 5 sick days and 13 Public holidays recognised FSA commuter benefits Supplemental employee insurance options are available for Accident, Critical Illness, Hospital and Legal Voluntary Pet Insurance and Auto and Home options Employer Assistance Program free for all employees Our DNA Like the strands of DNA itself, SOPHiA GENETICS and the team are deeply interconnected and reliant on each other to deliver. There are common threads across the team. Things that bind us together. Those things are Relentless Curious; Resilient & Nimble and Fearlessly Adventurous Our virtues At SOPHiA GENETICS we established our 7 Virtues to clarify how our principles show up each day through action. We Decide; We Do; We Collaborate; We Innovate; We Empower; We Adapt and We Learn. At the centre of our Virtues is our Mantra, We Care, which provides a constant reminder of the compassionate, benevolent, and hopeful nature of our mission and how it should be threaded through each of our Virtues and everything we do. Learn more about our DNA and Virtues on our Careers portal The process We use the power of AI to help our partners make decisions. If you're utilizing AI in your search and application process, why not use some of these prompts: 'What impact can I expect to have on the world by working at SOPHiA GENETICS?' 'I have an interview with SOPHiA GENETICS. What should I know before I meet with them?' 'I am a *job title* - What can SOPHiA GENETICS offer my career?' Apply now with your CV and any supporting information. Suitably qualified candidates will be invited through an interview and screening process where you will speak with members of our Talent Acquisition Team, the hiring leader alongside key colleagues and stakeholders from across the business. If you need additional support for accessibility, please contact our TA team for assistance. We appreciate the value external partners can bring, but we operate a direct-hiring model and we are not looking to utilize agency support at this time. All hiring is controlled by Talent Acquisition, potential partners should liaise through TA and not our hiring teams please. Starting Date: ASAP Location: Boston, MA preferred. Open to remote candidates located in EST or CST timezones. MUST be open to traveling at least 50% of the time. Contract: Permanent MA Pay Range : USD 71'250-143'750 Disclaimer: The estimated pay range represents a good faith estimate of what the Company expects to pay a successful applicant for the listed position and applies specifically to candidates based in Massachusetts. Due to various factors, the estimated pay range may vary in other locations. Should the level or location of the role change during the hiring process, the applicable base range may be updated accordingly. Compensation decisions are dependent on several factors including, but not limited to, an individual's qualifications, job related skills, years of experience, location, relevant education or training, internal equity, and alignment with market data. The range does not include benefits, and if applicable, bonus, commission, or equity.