AppSec Vulnerability Management Engineer (AppSec)

TL;DR

AppSec Vulnerability Management Engineer (AppSec): Identifying application vulnerabilities and maintaining software supply chain security with an accent on compliance frameworks and vulnerability triage. Focus on optimizing SAST/SCA tooling, managing SBOM inventories, and patching security flaws across JS/TS, Python, and Go.

Location: Hybrid in Foster City, CA (In-office requirement: Monday, Wednesday, and Friday)

Salary: $210,000 – $270,000 + Equity

Company

hirify.global is an agentic software creation platform that enables anyone to build applications using natural language.

What you will do

• Perform application security scanning and prioritize vulnerabilities based on CVSS scores and real-world exploitability.
• Manage vulnerability tracking and documentation to satisfy strict compliance SLAs including SOC 2, ISO 27001, and PCI-DSS.
• Own and update the organization's Software Bill of Materials (SBOM) to ensure regulatory compliance and SLSA level maturity.
• Collaborate with engineering teams to provide mitigation paths and directly patch security flaws in JavaScript/TypeScript, Python, and Go.
• Configure and tune automated SAST, SCA, and Secret Scanning tools within CI/CD pipelines to minimize false positives.
• Support incident response teams by developing and implementing real-time code or infrastructure countermeasures during active breaches.

Requirements

• 5 years of experience in Application Security, DevSecOps, or Software Engineering roles.
• Strong software development background with the ability to read and patch code in JavaScript/TypeScript, Python, and Go.
• Hands-on experience with AppSec tooling such as Snyk, Socket, Wiz Code, Semgrep, or Checkmarx.
• Familiarity with build systems, package managers, and compilation workflows across multiple languages.
• Understanding of security compliance frameworks like SOC 2, ISO 27001, or NIST.
• Must be based in or able to work from the Foster City, CA office (Hybrid: Mon, Wed, Fri).

Culture & Benefits

• Competitive salary and equity packages.
• 401(k) program with a 4% match (US only).
• Comprehensive Health, Dental, Vision, and Life Insurance.
• Flexible Time Off (FTO), paid parental, medical, and caregiver leave.
• Autonomous work environment with monthly wellness stipends and office set-up reimbursement.
• Quarterly team gatherings and in-office amenities.