Application Security Engineer

TL;DR

Application Security Engineer (Cybersecurity): Build and enhance scalable, developer-friendly security systems and tools integrated into engineering workflows with an accent on threat modeling, secure-by-default frameworks, and automated security tooling. Focus on designing secure authentication, authorization, and secrets management solutions, leading security reviews, and managing penetration testing and bug bounty programs.

Location: San Francisco, United States

Salary: $250000–$350000

Company

hirify.global is a company focused on revolutionizing internet search and interaction by building secure and innovative systems.

What you will do

• Design and implement scalable security solutions integrated into developer workflows
• Lead threat modeling, design, and code reviews for new features and product launches
• Build and maintain secure-by-default frameworks for authentication, authorization, input validation, and secrets management
• Develop and integrate automated security tools into CI/CD pipelines
• Collaborate with teams to remediate vulnerabilities and contribute to incident response
• Manage third-party penetration testing and bug bounty programs

Requirements

• 8+ years of experience in Application or Product Security
• Deep understanding of secure software development, threat modeling, and common vulnerabilities
• Familiarity with modern authentication and authorization patterns (OAuth, OIDC, SSO, Zero Trust)
• Proficiency in at least one major programming language (Python, Go, JavaScript, Java)
• Bonus: Experience securing cloud infrastructure or AI/ML systems

Culture & Benefits

• Comprehensive benefits for U.S. employees including equity, health, dental, vision, retirement, fitness, commuter and dependent care accounts
• Tailored benefits for international employees
• Final compensation based on experience and expertise