Application Security Engineer
About the Role
You'll own application security for product systems and work directly with product and infrastructure teams. You'll design and implement authentication and access control, review public-facing APIs and source code, configure and operate SIEM solutions, improve secret management, perform penetration tests, support investigations and incident response, remediate audit non-conformities, and mentor engineers on secure patterns.
Requirements
- Minimum of 5 years professional experience
- Minimum of 2 years in a security-related role
- Strong experience with Python
- Fluent English
- Experience with ISO 27001 or PCI DSS is beneficial
Responsibilities
- Lead application security
- Design and implement authentication and access control
- Review public APIs
- Configure and operate SIEM solutions
- Improve secret management
- Support security investigations and incident response
- Remediate audit non-conformities
- Perform security-focused code review
- Conduct penetration testing
- Mentor engineers on secure patterns
Benefits
- Yearly $1,200 coworking stipend
- Subsidized health insurance for employees and dependents
- Retirement contributions (varies by country)
- 6 months fully paid parental leave
- Subsidized fertility assistance
- Flexible vacation (most take 21-30 days)
- $10,000 annual charitable donation matching
- Generous equity package
- Biannual performance reviews with bonuses or promotions