Staff Application Security Engineer
Description For Staff Application Security Engineer
Webflow, a leading Website Experience Platform (WXP), is seeking a Staff Application Security Engineer to strengthen their secure development practices. This role combines technical security expertise with leadership responsibilities, focusing on securing Webflow's web application platform and ecosystem. The position offers a competitive salary range of $154,160 - $247,690 USD (varies by location) and includes comprehensive benefits.
The ideal candidate will bring 7+ years of application security experience and will play a crucial role in implementing security best practices, conducting threat modeling, and leading complex security initiatives. They will work closely with engineering teams to champion security standards while balancing business needs, mentor junior security engineers, and contribute to the company's security architecture.
Webflow offers a remote-first environment with locations in the US and Canada (BC & ON), providing flexibility and work-life balance. The company culture emphasizes customer experience, urgency in execution, open communication, and making meaningful impact. They offer extensive benefits including equity ownership, comprehensive healthcare, parental leave, flexible PTO, and various wellness programs.
This role presents an excellent opportunity for a senior security professional looking to make a significant impact in a growing company that empowers millions worldwide to build stunning websites. The position combines technical leadership with hands-on security work, making it ideal for someone passionate about application security and mentoring others.
Responsibilities For Staff Application Security Engineer
- Collaborate with the engineering team to secure Webflow's web application platform and ecosystem
- Bring security best practices to the software development lifecycle
- Champion security standards while balancing business strategies and requirements
- Support Webflow's security current and future compliance frameworks
- Find security vulnerabilities through grey-box techniques
- Contribute code and architecture improvements
- Cross-train entry and mid-level application security engineers
Requirements For Staff Application Security Engineer
- 7+ years of experience in application security, including 2+ years of software development focused on security
- Expertise in secure software design, secure coding, and web application security
- Experience with Threat Modeling, penetration testing, and identifying high-complexity application vulnerabilities
- Experience with software supply chain security and bug bounty programs
- Successfully implemented and improved secure development lifecycle (SDLC) processes
- Led and delivered multi-quarter, complex security projects
- Experience mentoring other application security engineers
Benefits For Staff Application Security Engineer
- Equity ownership (RSUs)
- 100% employer-paid healthcare, vision, and dental insurance
- 12 weeks paid parental leave
- Flexible PTO
- Mental wellness and professional coaching
- Monthly stipends for work and wellness
- 401k plan
- Sabbatical program
Jobs Related To Webflow Staff Application Security Engineer
