Sr. Application Security Engineer (AI/ML, Cloud)

TL;DR

Senior Application Security Engineer (AI/ML, Cloud): Ensuring application security throughout the development lifecycle with an accent on modern security practices, AI/ML security considerations, and secure coding guidance. Focus on identifying vulnerabilities, implementing security tools, and securing cloud-native environments.

Location: Remote within the US only

Salary: $145,000–$175,000 USD

Company

hirify.global is a leading public health and wellness platform focused on affordable, accessible, and personalized care.

What you will do

• Conduct security assessments using SAST, DAST, and SCA tools to identify application vulnerabilities.
• Perform code reviews and provide secure coding guidance to development teams.
• Implement and maintain GitHub Advanced Security features.
• Assess and improve security of Infrastructure as Code (Terraform) and container environments (Docker, Kubernetes).
• Conduct penetration testing and red/purple team exercises on applications.
• Review and secure API implementations, focusing on GraphQL security.
• Evaluate AI/ML model security and implement protections against AI-specific threats like prompt injection.

Requirements

• 5-8 years of experience in application security or a related security field.
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Hands-on coding experience and ability to review code in multiple languages.
• Professional experience with SAST, DAST, and SCA tools (e.g., SonarQube, Burp Suite, Snyk).
• Strong understanding of OWASP Top 10 and secure coding practices.
• Experience with penetration testing methodologies and security frameworks (NIST CSF, SOC 2, PCI DSS).
• This role is for US-based candidates only.

Nice to have

• Industry certifications such as GIAC, SANS, or OSCP.
• Experience with mobile/runtime security tools like Oligo, Socket, or NowSecure.
• AI/ML security and prompt injection prevention experience.
• Security automation and scripting (Python, Go).

Culture & Benefits

• Competitive salary & equity compensation.
• Unlimited PTO, company holidays, and quarterly mental health days.
• Comprehensive health benefits including medical, dental, vision, and parental leave.
• 401k benefits with employer matching contribution.
• Employee Stock Purchase Program (ESPP).
• Offsite team retreats.