Security Engineer - Application Security

Role Overview Orca Security is hiring a Sales Engineer focused on Application Security and Cloud Security in Austin, Texas. This position works closely with the sales team to showcase how Orca’s security solutions address real-world risks for both prospects and existing customers. What You Will Do Partner with sales to present and explain Orca Security’s products to organizations evaluating cloud and application security tools. Listen to client needs, then tailor demonstrations and recommendations to their specific security challenges. Help customers understand how Orca’s platform can strengthen their security posture and support their goals. Impact Expertise in application and cloud security will be central to helping clients achieve their security objectives and get the most value from Orca’s solutions.

Join Orca Security as a Sales Engineer specializing in Application Security and Cloud Security, where you will leverage your technical expertise to support our sales team and educate clients about our innovative security solutions. Your role will involve engaging with potential customers, presenting product demonstrations, and addressing technical inquiries to ensure client satisfaction and drive sales.

Role overview Magic School seeks a Senior Security Engineer with a focus on Application and Cloud Security. This position plays a key role in shaping how the company protects both its cloud infrastructure and software systems. The engineer will guide ongoing security improvements and help embed safeguards directly into platforms and applications. What you will do Lead projects to strengthen security across cloud environments and applications Develop and improve security frameworks to align with company objectives Perform risk assessments to find and address vulnerabilities Create and maintain incident response plans to protect systems and data Advise teams on best practices for system integrity and safety Location This position is fully remote.

At Contrast Security, we are revolutionizing the way organizations secure their software in today’s fast-paced development landscape. Our cutting-edge Application Detection and Response (ADR) technology empowers teams to identify, halt, and address real threats instantaneously. If you are enthusiastic about creating intelligent, efficient, and impactful security solutions, you will thrive here.We are on the lookout for sharp thinkers, courageous innovators, and adept problem-solvers who excel at transforming intricate obstacles into groundbreaking solutions.We invite applications for the role of Senior Sales Engineer, who possesses substantial expertise in security. You will offer technical guidance throughout the sales process, leveraging your comprehensive knowledge of Application Security (AppSec), DevSecOps, consulting, IT, and sales. Your exceptional communication skills will help you effectively convey the value of Contrast Security’s offerings to both technical and non-technical stakeholders.As a Sales Engineer, you will be an essential bridge connecting Sales, Product Management, and Engineering teams. You will craft messaging for executives, collaborate daily with sales representatives, and liaise with engineers as necessary. Proficiency in Linux and Windows environments, along with command-line tools and OS services, is essential.In this pivotal role, you will contribute significantly to the growth of our company and team. During your first month, you will immerse yourself in the Contrast platform, mastering a revolutionary technology that enhances software development security. You will gain firsthand experience in DevSecOps and understand the implications of “Shifting Left” in Application Security. Within three months, you will engage directly with prospective clients, including Fortune 100 companies and technology leaders, demonstrating the benefits of continuous application security monitoring. As you advance, your expertise will be crucial in addressing complex technical challenges for potential clients.To succeed in this role, you must be skilled at analyzing prospective customer workflows, defining optimal outcomes, and assisting customers in realizing the value of the Contrast platform. A deep understanding of a DevOps-oriented Software Development Life Cycle (SDLC) is required, along with the ability to advocate for Contrast products to prospective clients. You will also participate in webinars, conferences, and contribute to blogs, drawing on your expertise in discovering customer needs, showcasing product capabilities, executing Proofs of Value (POVs), and leading discussions around Enterprise Architecture, which are critical for success in this position.

Join Saviynt as a Senior Principal Security Architect, where you will lead our initiatives in cloud and application security. In this pivotal role, you will architect advanced security solutions that integrate seamlessly with our cloud platforms and applications, ensuring robust protection against evolving cyber threats. You will collaborate with cross-functional teams to implement best practices and drive security innovation.

Our VisionAt Mimica, we are on a mission to help enterprises, teams, and individuals reclaim their most valuable resource — time. We aim to enhance efficiency, purpose, and impact in the workplace.Our innovative AI-driven task mining technology observes employee interactions across desktops, categorizing them into comprehensive process maps. Mimica’s process intelligence identifies inefficiencies, prioritizes improvements based on return on investment (ROI), recommends the best technologies for automation (including RPA, intelligent document processing, and Generative AI), and provides a blueprint for creating new automation solutions and transforming workflows.Role OverviewAs a vital addition to our rapidly expanding InfoSec team, you will take charge of crucial security initiatives from inception to completion. Collaborating closely with engineers, you will fortify our cloud-native SaaS platform and significantly enhance our overall security posture.This position offers high impact and autonomy, ideal for a proactive individual who thrives in building and implementing scalable security processes in a fast-paced environment. You will report directly to the Head of InfoSec and work alongside another Security Engineer.Key ResponsibilitiesOversee the development and operation of essential security capabilities such as vulnerability management, patching, SIEM/logging, cloud security monitoring, and alert triage.Deploy, configure, and optimize security tools including scanners, WAFs, CSPM, SIEM, and endpoint protection.Collaborate with engineering teams to integrate security at both the application and cloud levels, ensuring a positive developer experience.Assess vulnerabilities, prioritize remediation, and manage risk in a pragmatic yet thorough manner.Develop and implement effective incident-response playbooks and enhance detection capabilities.Review significant architectural modifications periodically and guide engineering teams on secure design considerations.Continuously refine processes to ensure security scales with the company’s growth.Ideal Candidate ProfileExperience: 7+ years in security engineering, preferably in Application Security or SecOps, with a strong preference for experience in startup or scale-up settings.Expertise: Strong knowledge in Application Security (AppSec) and Cloud Security (CloudSec).

Join Contentful as an Application Security Engineer, where you will be instrumental in safeguarding our applications and services. You will work collaboratively with our development teams to implement security best practices and protect our customers' data.

Join our innovative team at xAI as an Application Security Engineer, where you will play a vital role in safeguarding our cloud-native applications throughout the software development lifecycle. You will focus on ensuring the security of code, CI/CD pipelines, and the integration of emerging AI technologies. As part of a small, driven group, your contributions will directly impact our mission to create AI systems that enhance humanity's quest for knowledge.

About Flagship Pioneering Flagship Pioneering is a biotechnology company based in Cambridge, MA. The team invents and builds platform companies focused on advancing human health and sustainability. Flagship brings together scientific leaders, entrepreneurs, and experienced capital managers to address challenges ranging from cancer care to sustainable agriculture. The company’s portfolio includes organizations that have vaccinated billions, developed new treatments, and promoted eco-friendly practices. Flagship has been recognized on FORTUNE’s “Change the World” list and featured in Fast Company’s annual “World’s Most Innovative Companies.” Role Overview: Lead Cloud Security and Application Security Engineer This role shapes Flagship’s cloud security and application security engineering practice. Supported by the CISO and Director of Security Engineering, the position focuses on defining and executing cloud posture management, secure software development lifecycle (SSDLC) security, and cloud-side data loss prevention. The engineer will work closely with the Infrastructure & Operations team on cloud architecture and network infrastructure. One of the main responsibilities is to build workflows that use AI and large language models (LLMs) to automate routine security tasks, freeing up time for complex challenges that require human judgment. The position leads technical execution for cloud security and application security across Flagship and its portfolio, partnering with engineering teams to embed security into development pipelines from the start. Key Responsibilities Establish and lead Flagship’s cloud security and application security engineering practice Define cloud posture management, SSDLC security, and cloud-side DLP strategies Collaborate with Infrastructure & Operations on cloud architecture and network infrastructure Develop and implement AI-enhanced workflows using LLMs and intelligent tools Automate recurring tasks to focus on high-impact security work Work directly with engineering teams to integrate security into development pipelines Drive technical execution of cloud security and AppSec across Flagship and its portfolio companies Work Location Cambridge, MA, USA

We are seeking a skilled Cloud Security Engineer to join our dynamic team at usm2. In this role, you will be responsible for safeguarding our cloud infrastructure and ensuring compliance with security policies and standards. You will work closely with cross-functional teams to design and implement secure cloud solutions, conduct risk assessments, and respond to security incidents.

About Our TeamAt OpenAI, security is a core pillar of our commitment to ensuring that artificial general intelligence is beneficial to all of humanity. Our Security team plays a crucial role in safeguarding OpenAI’s technology, personnel, and products. We focus on creating effective technical solutions while maintaining operational excellence. Our guiding principles include prioritizing impactful actions, empowering researchers, preparing for transformative technologies, and fostering a robust security culture.About the RoleAs a Security Engineer specializing in Application Security, you will be at the forefront of identifying and addressing security vulnerabilities within our software applications. Your expertise will be applied through building innovative security tools, conducting code reviews, performing penetration testing, and executing thorough security assessments.We are seeking proactive individuals who can collaborate closely with development teams to ensure the integration of secure coding practices throughout the software development lifecycle. Your role will also encompass providing security guidance to developers and stakeholders, thereby enhancing the overall security awareness across the organization.This position is ideally based in San Francisco, Seattle, or New York City, but remote work options will be considered. Our hybrid work model includes three days in-office each week, along with relocation assistance available for new hires.Key Responsibilities:Conduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to uncover vulnerabilities in applications.Develop Security Tools: Design and implement security tools, frameworks, and methodologies to shield applications from potential threats.Collaborate with Development Teams: Partner with development teams to ensure best security practices are embedded in the software development lifecycle, including secure coding standards.Threat Modeling and Risk Management: Engage in threat modeling and risk assessments to identify potential risks early and formulate effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and oversee vulnerabilities in applications, providing guidance and support for remediation efforts.Incident Response: Participate in incident response efforts as necessary, ensuring swift action is taken to mitigate security incidents.

Join our dynamic team at Alarm.com as a Cloud Security Engineer, where you will play a crucial role in safeguarding our cloud environments across AWS, GCP, and Azure. This position focuses on identifying and mitigating security risks using cutting-edge cloud-native security tools and managing comprehensive security solutions. You will collaborate with multiple teams to integrate security throughout the software development lifecycle while maintaining robust threat models. Additionally, you'll ensure compliance with security regulations and assist in formulating risk mitigation strategies, responding to security inquiries from clients and partners. Familiarity with cloud security platforms such as CNAPP, CSPM, CWPP, CASB, CIEM, and the Wiz tool will be advantageous in this role.Key Responsibilities:Demonstrate experience or familiarity with cloud security or engineering in major public cloud providers (AWS, GCP, Azure).Assist in evaluating, implementing, and deploying cloud-native security tools in AWS and Azure.Support monitoring, configuring rules, and enforcement using cloud security platforms like CNAPP, CSPM, CWPP, CASB, and CIEM.Utilize the Wiz tool for cloud security posture management, including configuration analysis and compliance monitoring.Contribute to the selection and enhancement of security solutions to elevate overall enterprise security.Collaborate with the Engineering team to determine and maintain our security posture.Manage deployment, integration, and configuration of security solutions, ensuring all documentation is up to date.Work closely with development, operations, and security teams to embed security in every phase of the software development lifecycle.Assist in creating and maintaining threat models for cloud environments and train engineering teams in risk-driven design principles.Partner with infrastructure, application, and other stakeholders to minimize security and privacy risks in deployed solutions.Recommend actions to management for ensuring compliance with security regulations in decision-making processes.Provide insights to mitigate risks associated with IT and information management.Assist in crafting responses to security questionnaires from clients and partners.Other duties as assigned.

Join our dynamic team at Contentful as an Application Security Engineer. In this critical role, you will be responsible for ensuring the security of our applications and services by implementing robust security practices and conducting thorough assessments. You will work closely with development teams to integrate security into the software development lifecycle, identifying vulnerabilities and providing solutions to mitigate risks.

About the TeamAt OpenAI, we are driven by a mission to ensure that artificial general intelligence is a force for good for all humanity. Our Security team plays a crucial role in safeguarding OpenAI's technology, personnel, and products. We pride ourselves on our technical expertise in building secure systems while maintaining an operational focus. Our core principles include prioritizing impactful security initiatives, empowering researchers, preparing for emerging transformative technologies, and fostering a strong security culture across the organization.About the RoleAs an Application Security Engineer, you will take the lead in identifying and mitigating security vulnerabilities within our software applications. Your responsibilities will include developing security tools, performing code reviews, conducting penetration tests, and executing thorough security assessments.We seek individuals who will collaborate closely with our development teams to embed secure coding practices throughout the software development lifecycle, proactively preventing potential security risks. You will also offer security guidance to developers and other stakeholders, thereby nurturing a culture of security awareness within our organization.This role is ideally based in Seattle, San Francisco, or New York City, but we are open to considering remote candidates. Our hybrid work model allows for three days in-office each week, and we provide relocation assistance for new hires.In this role, you will:Conduct Security Assessments: Regularly perform security assessments, code reviews, and penetration tests to uncover vulnerabilities in our applications and software.Develop and Implement Security Tools: Design and execute security tools, frameworks, and methodologies to safeguard applications from security threats.Collaborate with Development Teams: Partner with development teams to ensure security best practices are seamlessly integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.Conduct Threat Modeling and Risk Assessment: Engage in threat modeling and risk assessments to proactively identify potential vulnerabilities and formulate effective mitigation strategies.Manage Vulnerabilities: Track, analyze, and address vulnerabilities within applications, offering guidance and support for remediation efforts.Lead Incident Response: Take charge in responding to security incidents, ensuring timely investigation and resolution of security breaches.

About the Role Hex Technologies is seeking a skilled Cloud Security Engineer to enhance our security team. In this pivotal role, you will be responsible for safeguarding our cloud infrastructure and ensuring its resilience. You will lead cloud security initiatives and work closely with infrastructure and engineering teams to protect our cloud-native applications. Key Responsibilities: Design, implement, and oversee security solutions and controls for AWS environments and Kubernetes clusters, ensuring effective isolation and sandboxing for Hex’s RCE-as-a-Service platform. Develop, deploy, and maintain infrastructure-as-code utilizing Terraform, while upholding stringent security standards. Perform comprehensive security assessments, threat modeling, and audits on AWS cloud infrastructure and Kubernetes deployments. Collaborate with development and operations teams to integrate security best practices into CI/CD pipelines. Monitor and respond to cloud security incidents, identify root causes, and propose remediation measures. Provide in-depth expertise on compliance requirements related to cloud security, including SOC 2, ISO 27001, GDPR, HIPAA, and PCI DSS. Mentor fellow engineers and advocate for cloud security initiatives throughout the organization. Qualifications: 5+ years of experience in cloud security engineering, particularly with AWS. Proven expertise in Kubernetes security, including cluster hardening, role-based access control (RBAC), network policies, and container vulnerability management. Expertise in Terraform with hands-on experience. Familiarity with AWS security services such as IAM, GuardDuty, Security Hub, CloudTrail, and WAF. Knowledge of CNAPP solutions like Wiz and SIEM solutions such as Panther. Strong understanding of secure software development lifecycle practices, CI/CD security, and DevSecOps methodologies. Relevant certifications such as AWS Certified Security – Specialty, Certified Kubernetes Security Specialist (CKS), and Terraform Associate certification are highly desirable. Additional security certifications from SANS or OffSec are a plus. Exceptional problem-solving, communication, and leadership skills.

We are seeking a skilled Security Application Engineer to join our dynamic team at usm2. In this role, you will be responsible for developing and implementing security measures for our applications, ensuring the integrity and safety of our software systems. You will work closely with cross-functional teams to identify vulnerabilities and recommend effective solutions.

As an Applications Security Engineer at LendingTree, you will play a crucial role in safeguarding our software applications and systems. You will collaborate with cross-functional teams to identify vulnerabilities, implement security best practices, and ensure compliance with industry standards. Your expertise will help us enhance our security posture and protect sensitive customer data.

Join Ramp as a Cloud Security Engineer and be part of a dynamic team dedicated to safeguarding our cloud infrastructure. In this role, you will leverage your expertise to design, implement, and maintain robust security measures that protect our clients' data and ensure compliance with industry standards.

At ClickUp, we’re not just developing software; we’re pioneering the future of work! In an era inundated with work distractions, we envisioned a better approach. This vision led to the creation of the first genuinely unified AI workspace, seamlessly integrating tasks, documents, chat, calendar, and enterprise search, all enhanced by context-driven AI. This empowers millions of teams to break free from silos, reclaim their time, and achieve unprecedented productivity levels. At ClickUp, you will have the chance to learn, utilize, and innovate with AI in ways that will not only shape our product but also the future of work itself. Join us and be part of a daring, innovative team that is redefining possibilities! ClickUp is a leading force across every G2 category we participate in and is poised for exponential growth! Our application is uniquely designed to cater to everyone from families to Fortune 500 enterprises.We are in search of a Senior Security Engineer specializing in Application Security for a newly established, engineering-centric security team. Our team collaborates with and integrates into existing engineering teams at ClickUp. We are dedicated to developing and disseminating technology that includes defensive security features, secure infrastructure, operational tools, security response capabilities, and comprehensive security guidelines.Your mission will be to cultivate a culture of security empowerment, enabling our product engineers to develop and launch secure offerings using Angular, Node.js, and PostgreSQL, all hosted on AWS.As a strategic partner, you will collaborate closely with various engineering teams to design, develop, and guide secure solutions. We are experiencing rapid growth and seek Security Engineers who are eager to embrace this challenge!The Role:Design and implement security features that safeguard the entire ClickUp platform.Conduct threat modeling, implementation reviews, and security testing; evaluate requirements and designs.Create tools to assist at all stages of security prevention, detection, and response across the full Software Development Life Cycle (SDLC) from code to deployment.Integrate with existing engineering and product teams, serving as a 'security player-coach'.Develop security automation for the ClickUp platform; design and establish secure-by-default infrastructure.