🛠 Tech Stack

💼 About This Role

You'll partner with Engineering, Product, and Security to build a practical, developer-friendly AppSec program across multiple cloud-based products. Your work will secure the entire software development lifecycle and help maintain compliance with SOC 2, HIPAA, and PCI-DSS. This role stands out for its focus on AI security testing including LLM vulnerabilities.

🎯 What You'll Do

• Build and run the AppSec program across engineering teams.
• Integrate security checks into CI/CD pipelines (SAST, DAST, SCA).
• Lead threat modeling and design reviews for new services.
• Conduct secure code reviews and coach teams on secure coding.

📋 Requirements

• 7+ years experience in software engineering or application security.
• Strong understanding of web application security and secure design.
• Experience building security into CI/CD and developer workflows (SAST, DAST, SCA).
• Hands-on experience with Node/Next.js, C#/.NET, Python, and PHP.

✨ Nice to Have

• Experience with cloud security tooling like Wiz.io, Mend.io, SonarQube.
• Experience building Security Champions programs.
• Relevant certifications like CSSLP, GWAPT, or OSWE.

🎁 Benefits & Perks

• 💰 Competitive salary plus semi-annual bonus.
• 🏖️ Unlimited PTO.
• 🏥 Industry-leading medical, dental, vision plus generous parental leave.
• 📈 401(k) company match fully vested on day 1.
• 🍽️ Monthly happy hours, catered lunches, daily food trucks.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 60 min
3. 3Onsite Interview· 4 hours