# Staff Application Security Engineer

**Company:** [Brex](https://hotfix.jobs/companies/brex)
**Location:** San Francisco, CA
**Role:** Security Engineering
**Salary:** $240K-$300K
**Experience:** 8+ years
**Skills:** Application Security, Penetration Testing, Ai Security, Llm Security, Threat Modeling, AWS, Kubernetes, Python, Go, Vulnerability Management
**Posted:** 2026-06-25

> Lead technical vision and architecture for Brex's Application Security team. Drive AI/ML security strategy, offensive testing, and secure product lifecycle across engineering orgs. Requires 8+ years in appsec with AI security expertise.

## Job Description

## Responsibilities
- Lead the technical vision and strategic roadmap for the Application Security team, aligning security objectives with Brex's enterprise growth and high-velocity engineering metrics.
- Establish technical standards and secure defaults across the entire engineering organization, fostering a culture of collaborative security excellence and bridging product platforms, infra, and trust.
- Architect and secure novel AI/ML and agentic workflows, applying cutting-edge practices to mitigate risks such as prompt injection, model manipulation, and data poisoning.
- Mentor and coach engineers within the team and across the broader organization, guiding technical growth, helping individuals level up their security expertise, and accelerating team delivery.
- Drive proactive vulnerability discovery and offensive security testing strategies, executing complex attack chains to demonstrate business impact and prioritize cross-functional remediation.
- Partner with Product Platform, Cloud Infrastructure, and Data engineering teams to ensure core primitives, APIs, and microservices are secure by default from design to deployment.

## Requirements
- 8+ years of experience in Application Security, Product Security, or software engineering with a primary focus on offensive and defensive application security.
- Proven track record of technical leadership and team mentorship on complex, multi-quarter security engineering initiatives in a fast-paced environment.
- Deep proficiency and technical expertise in AI security, including hands-on experience securing agentic architectures, LLM gateways, and evaluating adversarial AI vectors.
- Strong systems-thinking capabilities with extensive experience defining secure product development lifecycles, threat modeling complex topologies, and cloud-native container security (AWS, Kubernetes).
- Proficiency in Python, Go, or similar languages to architect internal tooling, pipeline automation, and advanced detection/scanning engines.
- Exceptional written and verbal communication skills, with a demonstrated ability to navigate ambiguity, influence technical leaders, and manage up and out across EPD organizations.

## Nice-to-Haves
- Experience with Kotlin, gRPC, GraphQL, Kubernetes
- Previous experience in building and scaling security teams
- Experience with securing distributed systems in AWS and cloud environments
- Contributions to the wider technical community — open source, public research, CTF participation, blogging, CVEs, or presentations
- Experience submitting to bug bounty or responsible disclosure programs
- Published AI security research or contributions to AI security frameworks

## Compensation
- Expected salary range: $240,000 - $300,000 USD
- Equity and other forms of compensation may be provided as part of a total compensation package.

## Similar roles

- [Member of Technical Staff, Trust & Safety Engineer](https://hotfix.jobs/jobs/member-of-technical-staff-trust-safety-engineer-at-runway-c15de147-f5ea-4ae9-b8b6-f607998489ac) - Runway - Remote - $240K-$290K
- [Staff Security Engineer](https://hotfix.jobs/jobs/staff-security-engineer-at-garner-health-2ab05d1e-6d3d-41fd-9cd0-2db9aa7f3a06) - Garner Health - Remote - $239K-$275K
- [Staff Software Engineer, Product Security](https://hotfix.jobs/jobs/staff-software-engineer-product-security-at-harvey-4f4ba226-ff93-456e-87b7-e3f0161e87f1) - Harvey - San Francisco, CA - $238K-$312K
- [Staff Software Engineer, Identity & Access Management](https://hotfix.jobs/jobs/staff-software-engineer-identity-access-management-at-snowflake-83dfb71e-a7d4-405a-bd21-8f7cac79fc18) - Snowflake - Bellevue, WA - $236K-$339K
- [Staff, Security Engineer (App & Product Sec)](https://hotfix.jobs/jobs/staff-security-engineer-app-product-sec-at-sprinter-health-77900b76-da29-4ef7-a3a9-373e530e0235) - Sprinter Health - San Francisco, CA - $235K-$300K

**Apply:** https://hotfix.jobs/jobs/staff-application-security-engineer-at-brex-27742bb6-0d5b-47b1-b69f-37728eafa29e
**Canonical:** https://hotfix.jobs/jobs/staff-application-security-engineer-at-brex-27742bb6-0d5b-47b1-b69f-37728eafa29e