Security engineer, application security
Job Description
WRITER is seeking an experienced Application Security Engineer to strengthen their AI and AGI applications security infrastructure. This role combines deep technical expertise in application security with a focus on DevSecOps automation and red team operations. The position requires 8+ years of experience in application security and offers a unique opportunity to work at the intersection of AI technology and security.
The role involves crucial responsibilities such as embedding security in build pipelines, conducting advanced penetration testing, and leading red team exercises. The successful candidate will be responsible for pre-deployment security, vulnerability scanning, and implementing security gates in CI/CD workflows. They will work closely with various teams including Cloud/Infrastructure, AI Security, and Detection & Response.
The ideal candidate should have extensive experience in application security, penetration testing, and DevOps workflows. Strong programming skills and expertise in security tools are essential. The position offers comprehensive benefits including medical coverage, parental leave, stock options, and various stipends for professional development and wellness.
This is an excellent opportunity for a security professional who wants to make a significant impact in securing cutting-edge AI applications while working with a forward-thinking company. The hybrid work environment in San Francisco offers flexibility while maintaining collaborative opportunities with the team.
Responsibilities For Security engineer, application security
- Own pre-deployment application security, including automated vulnerability scanning, container scanning, and security gates in CI/CD
- Perform comprehensive testing on AI applications, APIs, and model endpoints
- Develop scripts, tools, and frameworks for continuous security assessment
- Lead application-layer red team exercises
- Discover, reproduce, and chain vulnerabilities into realistic attack paths
- Review designs for weaknesses and create secure patterns
- Partner with Cloud/Infrastructure on deployment/runtime security
Requirements For Security engineer, application security
- 8+ years in application security, with a strong focus on hands-on testing
- 5+ years conducting penetration tests and security assessments
- Deep experience integrating security into DevOps workflows and CI/CD pipelines
- Strong programming skills for exploit development and security automation
- Expertise in web application and API security
- Proficient with penetration testing tools
- Skilled in SAST, DAST, and SCA tools
- Strong understanding of application-layer attack techniques and exploitation
Benefits For Security engineer, application security
- Generous PTO, plus company holidays
- Medical, dental, and vision coverage for you and your family
- Paid parental leave for all parents (12 weeks)
- Fertility and family planning support
- Early-detection cancer testing
- Flexible spending account and dependent FSA options
- Health savings account for eligible plans with company contribution
- Annual work-life stipends
- Company-wide off-sites and team off-sites
- Competitive compensation, company stock options and 401k
