Skip to content
Writer

Security engineer, application security

Builds security into AI platform through threat modeling, SAST/DAST in CI/CD, code reviews, and secure architecture design. Requires 4+ years app sec experience, programming in Python/Java/Go/JS, and DevSecOps tools expertise.

119k – 210kNew York, NYSan Francisco, CASecurity EngineeringHybrid4+ YOE
Apply

About the role

Responsibilities

  • Build security into the AI platform by conducting threat modeling sessions with product teams, designing secure architectures for new features, and ensuring security considerations shape product decisions from day one.
  • Own and evolve the application security program including establishing and maintaining SAST/DAST scanning in CI/CD pipelines, conducting security code reviews for critical changes, and building automation that catches vulnerabilities before production.
  • Partner with engineering teams to establish and champion secure coding standards, creating reusable security patterns and libraries.
  • Design and recommend security features and products that help secure customer environments.
  • Integrate and leverage AI agents to increase velocity for the security team and engineering org while minimizing risk.
  • Lead security assessments and penetration testing of applications, AI services, and APIs, identifying and remediating vulnerabilities.
  • Design and implement security controls for protecting data pipelines, model training environments, and customer-facing AI agents.
  • Stay ahead of emerging threats in the AI/ML security landscape, researching attack vectors specific to LLMs and generative AI, and building defenses.

Requirements

  • Minimum 4 years of hands-on experience in application security engineering, securing large-scale production systems (bonus: fast-growing startups or high-growth environments).
  • Understanding of developer experience and workflows, balancing risk reduction with engineering velocity.
  • Technical expertise in at least two programming languages (Python, Java, Go, JavaScript/TypeScript) and ability to review code across multiple languages.
  • Knowledge of security tools and methodologies including SAST/DAST solutions, vulnerability management platforms, security testing frameworks, and DevSecOps practices.
  • Excellent communication skills to translate complex security concepts for technical and non-technical audiences.
  • Builder's mindset focused on automation, scaling, and empowerment.

Open to Mid, Sr., and Staff level candidates.

Skills

SASTDASTDevSecOpsPythonJavaGoJavaScriptTypeScriptThreat ModelingPenetration TestingCI/CDVulnerability Management

Similar roles

Security Engineering jobs
Resend

Security Engineer, Platform

As a Security Engineer, Platform, you will be responsible for building and improving the security foundations of Resend’s platform, including API keys, service permissions, and secrets management. You will also help design secure defaults for new services and improve detection and response for suspicious access.

120k – 140kUnited StatesSecurity EngineeringRemote5+ YOEAWSGDPR
Socure

GRC Analyst – Public Sector

GRC Analyst executing FedRAMP/GovRAMP compliance operations, managing continuous monitoring, vulnerability remediation, access oversight, and audit readiness for public sector business.

120k – 150kWashington, DC +1Security EngineeringHybrid5+ YOEWizAWS
WorkWave

Cloud Security Engineer

Cloud Security Engineer leads secure cloud configurations in AWS (primary), Azure, and GCP, owning governance, IAM, vulnerability management, and secure-by-default patterns for engineering teams. Requires 5+ years experience with deep AWS security expertise and Terraform proficiency.

120k – 145kUnited StatesSecurity EngineeringRemote5+ YOEAWSIAM
Applied Intuition

System Safety Engineer, Autonomy Trucking

Defines and manages safety architecture, requirements, and analysis (FMEA, FTA, STPA) for L4 autonomous trucking software/hardware. Requires 3+ years system safety experience, automotive standards expertise (ISO 26262), and engineering background in ADAS/autonomy.

118k – 250kSunnyvale, CASecurity EngineeringOn-site3+ YOEFtaFmea
Snowflake

Security Engineer - Threat Detection

Builds and deploys AI-assisted threat detections, automates security workflows, and improves detection quality using modern engineering practices at cloud scale. Requires security expertise, coding proficiency in Python/Go/SQL, cloud experience, and automation mindset.

122k – 175kUnited StatesSecurity EngineeringRemoteGoSQL