Application Security Engineer (Cybersecurity)

TL;DR

Application Security Engineer (Cybersecurity): Developing a security judgment layer to filter and enrich security tooling outputs for a compliance platform with an accent on signal maximization and noise reduction. Focus on designing severity scoring, triage flows, and integrating open-source security tools to make findings actionable.

Location: Remote (Global). Hire globally in regions where the company can legally engage talent via direct hire or EOR partners.

Company

hirify.global is a fast-growing security and compliance platform that helps companies efficiently achieve and monitor standards such as SOC 2 and ISO 27001.

What you will do

• Own the integration, configuration, and output quality of security tooling powering the platform.
• Design rules, severity scoring, and triage flows to ensure findings are actionable and low-noise.
• Build a context-aware security judgment layer for prioritization and exploitability reasoning.
• Collaborate with backend and fullstack engineers on data storage, enrichment, and UI presentation of findings.
• Engage directly with customers to understand needs and iterate on product features based on feedback.
• Review architectural choices and contribute to the open-source security tools the platform depends on.

Requirements

• 5+ years of application security experience with a track record of shipping security products.
• Strong programming skills in Go, Python, or TypeScript.
• Hands-on experience tuning production security tooling and building suppression logic.
• Deep understanding of vulnerability research, CVE/CWE taxonomies, and exploit reasoning.
• Experience thriving in fast-moving, startup engineering environments.
• Must be located in a region where the company can legally engage talent directly or via an EOR partner.

Nice to have

• Prior experience shipping security products at a vendor.
• Contributions to open-source security tooling.
• Offensive security background or OSCP/similar certifications.
• Hands-on experience with LLM agents, tool use, or autonomous AI systems.

Culture & Benefits

• Remote-first work culture with team off-sites in locations like Amsterdam and Italy.
• Comprehensive health and wellness benefits.
• 20 days PTO per year plus 8 floating holidays.
• Competitive compensation and equity.
• Environment valuing impact over titles, autonomy, and clarity over jargon.