Skip to content
Palantir

Application Security Engineer

Performs security reviews, threat modeling, and vulnerability analysis on complex products. Leads engineering teams to implement secure designs and automation, requiring software engineering experience and passion for security.

New York, NYSecurity EngineeringHybrid
Apply

About the role

Core Responsibilities

  • Perform deep architecture and security reviews on highly complex products to identify vulnerabilities
  • Lead engineering teams in feature design, threat modeling, and security-critical code and architecture
  • Develop and implement automation to eliminate entire classes of weaknesses across the organization
  • Drive decision-making by determining the tradeoffs between security and product design
  • Lead implementation of strategic security initiatives that improve security across Palantir

What We Value

  • Self motivated, experience in solving complex problems
  • History and experience designing and shipping production-ready software
  • Strong communication and collaboration skills who feels comfortable working closely with engineering teams
  • Ability to learn and apply new technologies quickly and in complex deployments

What We Require

  • Development or software engineering experience and a deep passion for information security
  • Experience with a modern high-level programming language (e.g. Java, Golang, Javascript, Python, etc.)
  • Demonstrated experience evaluating code for vulnerabilities and weaknesses
  • Experience with complex architectures and codebases (e.g. SOA or micro-services)
  • Experience utilizing/with CodeQL or other static code analysis platforms
  • Experience performing black-box testing of web applications

Skills

JavaGoJavaScriptPythonCodeqlStatic Code AnalysisThreat ModelingBlack-Box TestingSoaMicroservices

Similar roles

Security Engineering jobs
Vercel

Product Security Engineer

Product Security Engineer driving threat modeling, secure code review, open-source security, SDLC tooling, and bug bounty management for Vercel's web platform built on Next.js and Node.js. Requires 5+ years securing web products with strong JavaScript/Node.js and cloud security expertise.

United StatesSecurity EngineeringRemote5+ YOESASTDAST
AKASA

IT Security Operations Engineer

IT Security Operations Engineer responsible for implementing DLP, email security, endpoint protection, Okta/Google Workspace hardening, automation, compliance evidence collection, and incident response in a hybrid healthcare AI startup.

150k – 190kSan Francisco, CASecurity EngineeringHybrid4+ YOEGoDlp
Novig

Security Engineer

Build and maintain security automation pipelines, AI agents, SOAR/SIEM integrations, vulnerability management, and IAM systems for a sports prediction market platform.

150k – 200kNew York, NYSecurity EngineeringOn-site5+ YOECdkIAM
Metropolis

Security Engineer II

Security Engineer II responsible for monitoring security alerts, responding to incidents, administering enterprise security tools, and supporting cloud and identity security initiatives. Requires 3+ years in cybersecurity or related fields with strong scripting and troubleshooting skills.

105k – 150kLos Angeles, CASecurity EngineeringOn-site3+ YOEAWSmacOS
Metropolis

Security Engineer II

Security Engineer II responsible for monitoring and responding to security alerts, administering enterprise security tools, supporting vulnerability and IAM programs, and securing cloud environments. Requires 3+ years in cybersecurity or related fields and scripting experience.

115k – 160kNew York, NYSecurity EngineeringOn-site3+ YOEAWSmacOS