Applications Security Engineer

Join Contentful as an Application Security Engineer, where you will be instrumental in safeguarding our applications and services. You will work collaboratively with our development teams to implement security best practices and protect our customers' data.

Join our dynamic team at Contentful as an Application Security Engineer. In this critical role, you will be responsible for ensuring the security of our applications and services by implementing robust security practices and conducting thorough assessments. You will work closely with development teams to integrate security into the software development lifecycle, identifying vulnerabilities and providing solutions to mitigate risks.

We are seeking a skilled Security Application Engineer to join our dynamic team at usm2. In this role, you will be responsible for developing and implementing security measures for our applications, ensuring the integrity and safety of our software systems. You will work closely with cross-functional teams to identify vulnerabilities and recommend effective solutions.

Join dev2 as an Application Security Engineer where you will play a critical role in safeguarding our applications and data. In this position, you will be tasked with identifying vulnerabilities, implementing security measures, and ensuring compliance with industry standards. As a part of our dynamic team, you will collaborate with developers and IT personnel to enhance security protocols and mitigate risks effectively.

About the Role Adaptive Security is looking for a Lead Application Security Engineer in NYC. This position shapes how we defend our software against threats, guiding security strategy and execution across our applications. What You Will Do Lead the design and rollout of security measures for software applications Develop and refine security strategies to address emerging risks Work closely with teams to uphold strong security standards Ensure our practices align with industry regulations and compliance requirements What Matters Here Deep experience in application security Ability to guide teams and set technical direction Commitment to both proactive defense and regulatory compliance

Role overview Webflow is hiring a Senior Application Security Engineer. This remote role is open to candidates in California (BC & ON only) and across the U.S. What you will do Work closely with teams across the company to spot, evaluate, and address security risks in Webflow’s applications. Develop and apply security best practices to strengthen application defenses. Help shape and advance Webflow’s overall security strategy.

About the TeamAt OpenAI, we are driven by a mission to ensure that artificial general intelligence is a force for good for all humanity. Our Security team plays a crucial role in safeguarding OpenAI's technology, personnel, and products. We pride ourselves on our technical expertise in building secure systems while maintaining an operational focus. Our core principles include prioritizing impactful security initiatives, empowering researchers, preparing for emerging transformative technologies, and fostering a strong security culture across the organization.About the RoleAs an Application Security Engineer, you will take the lead in identifying and mitigating security vulnerabilities within our software applications. Your responsibilities will include developing security tools, performing code reviews, conducting penetration tests, and executing thorough security assessments.We seek individuals who will collaborate closely with our development teams to embed secure coding practices throughout the software development lifecycle, proactively preventing potential security risks. You will also offer security guidance to developers and other stakeholders, thereby nurturing a culture of security awareness within our organization.This role is ideally based in Seattle, San Francisco, or New York City, but we are open to considering remote candidates. Our hybrid work model allows for three days in-office each week, and we provide relocation assistance for new hires.In this role, you will:Conduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to uncover vulnerabilities in our applications and software.Develop and Implement Security Tools: Design and execute security tools, frameworks, and methodologies to safeguard applications from security threats.Collaborate with Development Teams: Partner with development teams to ensure security best practices are seamlessly integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.Conduct Threat Modeling and Risk Assessment: Engage in threat modeling and risk assessments to proactively identify potential vulnerabilities and formulate effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and address vulnerabilities within applications, offering guidance and support for remediation efforts.Lead Incident Response: Take charge in responding to security incidents, ensuring timely investigation and resolution of security breaches.

Join Canary Technologies as a Senior Application Security Engineer and play a pivotal role in embedding security within our software development lifecycle. You will collaborate closely with development teams to ensure secure design becomes the standard practice. This position involves taking ownership of application security tooling and automation while working alongside Site Reliability Engineers (SREs), infrastructure, and data engineers to maintain a secure, scalable platform. Our engineering team operates fully remotely, allowing for flexibility and innovation in a fast-paced environment.

Join Contentful as a Security Engineer specializing in Application Security. In this pivotal role, you will help protect our applications and data from security threats while enhancing the overall security posture of our organization. You will collaborate with development teams to integrate security into the software development lifecycle, conduct security assessments, and implement best practices to safeguard our applications.

About Our TeamAt OpenAI, security is a core pillar of our commitment to ensuring that artificial general intelligence is beneficial to all of humanity. Our Security team plays a crucial role in safeguarding OpenAI’s technology, personnel, and products. We focus on creating effective technical solutions while maintaining operational excellence. Our guiding principles include prioritizing impactful actions, empowering researchers, preparing for transformative technologies, and fostering a robust security culture.About the RoleAs a Security Engineer specializing in Application Security, you will be at the forefront of identifying and addressing security vulnerabilities within our software applications. Your expertise will be applied through building innovative security tools, conducting code reviews, performing penetration testing, and executing thorough security assessments.We are seeking proactive individuals who can collaborate closely with development teams to ensure the integration of secure coding practices throughout the software development lifecycle. Your role will also encompass providing security guidance to developers and stakeholders, thereby enhancing the overall security awareness across the organization.This position is ideally based in San Francisco, Seattle, or New York City, but remote work options will be considered. Our hybrid work model includes three days in-office each week, along with relocation assistance available for new hires.Key Responsibilities:Conduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to uncover vulnerabilities in applications.Develop Security Tools: Design and implement security tools, frameworks, and methodologies to shield applications from potential threats.Collaborate with Development Teams: Partner with development teams to ensure best security practices are embedded in the software development lifecycle, including secure coding standards.Threat Modeling and Risk Management: Engage in threat modeling and risk assessments to identify potential risks early and formulate effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and oversee vulnerabilities in applications, providing guidance and support for remediation efforts.Incident Response: Participate in incident response efforts as necessary, ensuring swift action is taken to mitigate security incidents.

At ClickUp, we’re not just developing software; we’re pioneering the future of work! In an era inundated with work distractions, we envisioned a better approach. This vision led to the creation of the first genuinely unified AI workspace, seamlessly integrating tasks, documents, chat, calendar, and enterprise search, all enhanced by context-driven AI. This empowers millions of teams to break free from silos, reclaim their time, and achieve unprecedented productivity levels. At ClickUp, you will have the chance to learn, utilize, and innovate with AI in ways that will not only shape our product but also the future of work itself. Join us and be part of a daring, innovative team that is redefining possibilities! ClickUp is a leading force across every G2 category we participate in and is poised for exponential growth! Our application is uniquely designed to cater to everyone from families to Fortune 500 enterprises.We are in search of a Senior Security Engineer specializing in Application Security for a newly established, engineering-centric security team. Our team collaborates with and integrates into existing engineering teams at ClickUp. We are dedicated to developing and disseminating technology that includes defensive security features, secure infrastructure, operational tools, security response capabilities, and comprehensive security guidelines.Your mission will be to cultivate a culture of security empowerment, enabling our product engineers to develop and launch secure offerings using Angular, Node.js, and PostgreSQL, all hosted on AWS.As a strategic partner, you will collaborate closely with various engineering teams to design, develop, and guide secure solutions. We are experiencing rapid growth and seek Security Engineers who are eager to embrace this challenge!The Role:Design and implement security features that safeguard the entire ClickUp platform.Conduct threat modeling, implementation reviews, and security testing; evaluate requirements and designs.Create tools to assist at all stages of security prevention, detection, and response across the full Software Development Life Cycle (SDLC) from code to deployment.Integrate with existing engineering and product teams, serving as a 'security player-coach'.Develop security automation for the ClickUp platform; design and establish secure-by-default infrastructure.

About the Role mercor is hiring a Security Engineer focused on Application Security in San Francisco or New York City. This role centers on protecting company applications from threats and vulnerabilities. The Security Engineer works closely with teams across the company to strengthen security practices and improve the overall security of our software. What You Will Do Work with engineers and other teams to apply security best practices throughout the development lifecycle Perform detailed security assessments of applications Identify and address new and existing security risks Help improve the security posture of mercor’s applications

Join Contentful as an Application Security Engineer, where you will play a critical role in safeguarding our applications and services. You will collaborate closely with development teams to integrate security at every stage of the software development lifecycle. Your expertise will help us identify vulnerabilities, implement security best practices, and ensure compliance with industry standards.

About the Role mercor is hiring an Application Security Engineer in San Francisco. This role focuses on protecting our applications by applying proactive security practices and conducting detailed assessments. The work centers on finding vulnerabilities and putting strong security protocols in place to keep our products secure and dependable.

Why join usAt Brex, we are revolutionizing the way businesses manage their finances through our AI-powered spend platform. We empower organizations, ranging from startups to large enterprises, with integrated corporate cards, banking solutions, and global payment options, complemented by user-friendly software for travel and expenses. Our clientele includes industry leaders like DoorDash, Flexport, and Compass, all of whom benefit from our commitment to proactive spend control, cost reduction, and efficiency improvements worldwide.Joining our team means pushing your boundaries, questioning conventional wisdom, and collaborating with some of the brightest talents in the field. We are dedicated to cultivating a diverse workforce and fostering an inclusive culture where your potential is limited only by your imagination. We provide you with the necessary tools, resources, and support to elevate your career to new heights.Engineering at BrexAt Brex, engineering is about developing scalable systems with purpose and speed. Our diverse teams across Software, Data, Security, and IT function with high autonomy and deep collaboration. We tackle complex technical challenges, take full ownership of our results, and strive for excellence at every stage—from architecture to deployment. Here, engineering is considered a craft, and those who build can become leaders.What you’ll doAs a Senior Application Security Engineer, your primary responsibility will be identifying and responding to security vulnerabilities across the Brex platform. You will conduct code and design reviews, perform penetration testing, and manage vulnerability assessments. Additionally, you will create and maintain tools for static and dynamic testing of our platform while ensuring secure developer workflows. This role is part of our broader Financial Scale organization, requiring close collaboration with Security Operations, GRC, Product Security, Front End Platform, and IT Infrastructure teams.We seek candidates who possess a robust background in penetration testing and a proven track record in discovering vulnerabilities within intricate systems, alongside the ability to craft exploits that highlight business impact. This position is highly collaborative, providing the opportunity to work across all engineering teams at Brex. We value enthusiasm for engaging with diverse roles and backgrounds, as building a top-tier financial service necessitates top-tier security.Brex is at the forefront of the next generation of AI-driven financial services for dynamic, impactful companies, including Coinbase, Robinhood, and Anthropic. As we embark on integrating AI throughout our product suite, you will have the chance to influence and shape our initiatives significantly.

About Branch Branch helps workers gain financial independence by making it easier for companies to pay them quickly and by offering accessible, no-cost financial services. The team is committed to building inclusive and transparent products that improve the financial lives of working Americans. Ideas and initiative matter here. Employees are encouraged to share their thoughts, those ideas can shape products, culture, and the company’s direction. Branch values diverse perspectives and working styles, aiming to create an environment where everyone can thrive. Role Overview: Senior Application Security Engineer (Remote, US) Branch is hiring a Senior Application Security Engineer to help protect applications, networks, cloud infrastructure, and corporate devices. This role calls for broad security expertise and hands-on experience across multiple domains. The engineer will work closely with teams to build secure systems and processes that support Branch’s mission. What You Will Do Collaborate with Engineering to embed security into the Software Development Life Cycle (SDLC): implement secure design patterns, lead threat modeling, and deliver AppSec training for developers. Plan and conduct application security assessments, including static and dynamic analysis (SAST, DAST), software composition analysis (SCA), and manual code reviews for web, mobile, and API platforms. Strengthen API security for both internal and external services by improving authentication, authorization, rate limiting, and abuse prevention. Manage and improve the vulnerability management program: set prioritization frameworks, track SLAs, and coordinate remediation across teams. Champion software supply chain security, including generating SBOMs, analyzing dependency risks, and reviewing third-party components. Support Governance, Risk, and Compliance (GRC) with technical evaluations of third-party risks and vendor security assessments. Lead incident response efforts from initial detection through resolution and post-incident review. Develop and maintain security policies and procedures, ensuring alignment with industry standards and best practices. Location This position is remote within the United States.

Join a Groundbreaking CompanyPalantir is at the forefront of innovation, creating unparalleled software solutions that empower data-driven decisions and optimize operations. Our platforms are instrumental in advancing life-saving medical breakthroughs, predicting supply chain challenges, and locating missing children, among other vital initiatives.Your Impactful RoleAs an Application Security Engineer, you will play a pivotal role in safeguarding critical information for our defense, intelligence, and commercial partners. You will be integral to our Application Security Team, which is dedicated to enhancing developer productivity while ensuring the highest security standards for our software products. The importance of application security is paramount given the sensitive work Palantir undertakes.Your responsibilities will encompass:• Comprehensive Product Security Reviews. Conduct extensive security assessments of our current and future product offerings, including whitebox, greybox, and blackbox evaluations. Collaborate with offensive security teams, engineering groups, and other InfoSec professionals to strengthen our products against sophisticated threats.• Architectural and Design Expertise. Act as the security authority for product architects and engineers, engaging in threat modeling, risk assessment, and the implementation of security controls to mitigate identified risks. You will influence product design to ensure security is embedded from the outset.• Leadership in Strategic Security Initiatives. Take ownership of transformative security projects that have a company-wide impact. Past initiatives have included implementing supply chain security measures, hardware-backed GPG key signing, and developing innovative security services and automation.• Vulnerability Detection and Resolution. Innovate new methods to identify and address security vulnerabilities in our products through static and dynamic analysis, security scanning, and collaboration with our incident response team and bug bounty program.This position offers substantial autonomy, a broad-reaching impact, and the necessary resources to drive significant security enhancements across Palantir.

Join our team as an Application Security Engineer at Palantir Technologies. In this role, you will play a critical part in safeguarding our applications and ensuring robust security measures are in place. You will collaborate with cross-functional teams to identify vulnerabilities, implement security best practices, and enhance our security posture.Your expertise in application security will help us maintain the integrity of our systems and protect sensitive data. We are looking for a proactive individual who is passionate about security and thrives in a dynamic environment.

Join Our Innovative Security TeamAt OpenAI, security is paramount to our mission of ensuring that artificial general intelligence serves the best interests of humanity. Our dedicated Security team safeguards OpenAI’s technology, personnel, and products. We are technical in our solutions and operational in our approach, committed to supporting all aspects of our products and research. Our guiding principles include prioritizing impactful initiatives, empowering our researchers, preparing for future technological advancements, and fostering a robust security culture.Your Role as an Application Security EngineerIn the role of Application Security Engineer, you will play a vital part in identifying and mitigating security vulnerabilities within our software applications. This involves creating security tools, conducting code reviews, performing penetration testing, and executing comprehensive security assessments.We seek individuals who will collaborate closely with development teams to embed secure coding practices throughout the software development lifecycle, preemptively addressing security risks. You will also offer security guidance to developers and stakeholders, promoting a culture of security awareness across the organization.This position is based in New York City, but we also consider candidates for remote work. Our hybrid work model requires three days in the office each week, and we offer relocation assistance for new employees.Key ResponsibilitiesConduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to identify vulnerabilities in applications and software.Create and Implement Security Tools: Design and develop security tools, frameworks, and methodologies to defend applications against potential threats.Collaborate with Development Teams: Work hand-in-hand with development teams to ensure security best practices are integrated throughout the software development lifecycle, including secure coding standards.Threat Modeling and Risk Assessment: Carry out threat modeling and risk assessments to proactively identify potential risks and devise effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and manage vulnerabilities within applications, providing guidance and support for remediation efforts.Incident Response Support: Assist in incident response efforts and contribute to the development of incident response protocols.