Security engineer, application security
Job Description
WRITER is at the forefront of AI and AGI application development, seeking an experienced Application Security Engineer to strengthen their security infrastructure. This role combines deep technical expertise in application security with a focus on protecting cutting-edge AI systems. The position requires 8+ years of experience in application security and involves embedding security measures directly into CI/CD workflows, conducting penetration testing, and leading red team exercises. The role offers a unique opportunity to work at the intersection of AI and security, with responsibilities spanning from vulnerability discovery to security architecture design. The position is based in New York City with a hybrid work arrangement and comes with comprehensive benefits including healthcare, parental leave, and professional development opportunities. The ideal candidate will have extensive experience in security testing, DevOps integration, and a proven track record of identifying and mitigating critical vulnerabilities. This role represents a chance to shape the security landscape of next-generation AI applications while working with cross-functional teams in a dynamic, fast-paced environment.
Responsibilities For Security engineer, application security
- Own pre-deployment application security, including automated vulnerability scanning, container scanning, and security gates in CI/CD
- Perform comprehensive testing on AI applications, APIs, and model endpoints
- Develop scripts, tools, and frameworks for continuous security assessment
- Lead application-layer red team exercises
- Hunt and validate vulnerabilities
- Review security architecture and create secure patterns
- Collaborate with Cloud/Infrastructure, AI Security, and Detection & Response teams
Requirements For Security engineer, application security
- 8+ years in application security, with a strong focus on hands-on testing
- 5+ years conducting penetration tests and security assessments
- Proven record of finding and exploiting critical vulnerabilities
- Deep experience integrating security into DevOps workflows and CI/CD pipelines
- Strong programming skills for exploit development and security automation
- Expertise in web application and API security, including cloud-native architectures
- Proficient with penetration testing tools
- Skilled in SAST, DAST, and SCA tools
- Strong understanding of application-layer attack techniques and exploitation
- Experience with supply chain security and build pipeline hardening
Benefits For Security engineer, application security
- Generous PTO, plus company holidays
- Medical, dental, and vision coverage for you and your family
- Paid parental leave for all parents (12 weeks)
- Fertility and family planning support
- Early-detection cancer testing
- Flexible spending account and dependent FSA options
- Health savings account for eligible plans with company contribution
- Annual work-life stipends for home office setup, cell phone, internet
- Wellness stipend for gym, massage/chiropractor, personal training
- Learning and development stipend
- Company-wide off-sites and team off-sites
- Competitive compensation, company stock options and 401k
