Security engineer, application security
Job Description
WRITER is at the forefront of AI and AGI application development, seeking an experienced Application Security Engineer to strengthen their security infrastructure. This role represents a unique opportunity to work at the intersection of AI and security, focusing on protecting cutting-edge artificial intelligence systems.
The position requires a seasoned professional with 8+ years of application security experience, who will be responsible for embedding security directly into the development lifecycle. The role encompasses everything from pre-deployment security measures to conducting sophisticated penetration testing of AI applications and APIs. You'll be working in a hybrid setting in New York City, collaborating with various teams including Cloud/Infrastructure, AI Security, and Detection & Response.
Key responsibilities include implementing security measures in CI/CD pipelines, performing comprehensive application penetration testing, developing automation frameworks for security assessments, and leading red team exercises. You'll be instrumental in discovering and validating vulnerabilities while providing actionable remediation guidance.
The ideal candidate brings deep expertise in AppSec and DevSecOps automation, with proven experience in finding and exploiting critical vulnerabilities. Strong programming skills and proficiency with security testing tools are essential. The role offers significant impact potential, allowing you to shape the security architecture of advanced AI systems.
WRITER offers an impressive benefits package including comprehensive healthcare coverage, generous parental leave, professional development opportunities, and competitive compensation with equity. The company maintains a strong commitment to diversity and equal opportunity employment, making it an attractive destination for security professionals looking to work on cutting-edge AI technology while maintaining a healthy work-life balance.
This role is perfect for a security expert who is passionate about AI technology and wants to contribute to securing the future of artificial intelligence applications. You'll have the opportunity to work with advanced technologies while building and implementing security measures that protect innovative AI solutions.
Responsibilities For Security engineer, application security
- Own pre-deployment application security, including automated vulnerability scanning, container scanning, and security gates in CI/CD
- Perform comprehensive testing on AI applications, APIs, and model endpoints
- Develop scripts, tools, and frameworks for continuous security assessment
- Lead application-layer red team exercises
- Hunt and validate vulnerabilities
- Advise on security architecture
- Collaborate with Cloud/Infrastructure, AI Security, and Detection & Response teams
Requirements For Security engineer, application security
- 8+ years in application security, with a strong focus on hands-on testing
- 5+ years conducting penetration tests and security assessments
- Deep experience integrating security into DevOps workflows and CI/CD pipelines
- Strong programming skills for exploit development and security automation
- Expertise in web application and API security
- Proficient with penetration testing tools
- Skilled in SAST, DAST, and SCA tools
- Strong understanding of application-layer attack techniques and exploitation
- Experience with supply chain security and build pipeline hardening
Benefits For Security engineer, application security
- Generous PTO, plus company holidays
- Medical, dental, and vision coverage for you and your family
- Paid parental leave for all parents (12 weeks)
- Fertility and family planning support
- Early-detection cancer testing
- Flexible spending account and dependent FSA options
- Health savings account with company contribution
- Annual work-life stipends for home office, wellness, and learning
- Company-wide off-sites and team off-sites
- Competitive compensation, company stock options and 401k
