Talent.com
serp_jobs.error_messages.no_longer_accepting
Security engineer, application security (New York)

Security engineer, application security (New York)

Writer CorporationNew York, NY, United States
job_description.job_card.1_day_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Application Security Engineer

WRITER is seeking an Application Security Engineer with deep expertise in AppSec, DevSecOps automation, and red team operations to secure our AI and AGI applications.

At WRITER, security is woven into the heart of our innovation. As we continue to push the boundaries of AI, we need a seasoned security engineer who can anticipate threats, integrate security into fast-moving development pipelines, and validate our defenses through hands-on testing.

You'll play a pivotal role in building security directly into our CI / CD workflows, uncovering and exploiting vulnerabilities before attackers can, and collaborating with cross-functional partners to safeguard our cutting-edge AI solutions. This is a highly technical, impact-driven role for someone who thrives at the intersection of security engineering, automation, and offensive testing.

If you're passionate about proactively securing complex applicationsand can turn red team findings into real-world defenseswe want to hear from you.

Role Boundaries & Collaboration

What You Own (Responsible)

  • Build pipeline security (pre-deployment phase)
  • Security gates and checks in CI / CD
  • Application penetration testing
  • Container scanning in build phase
  • Application-layer vulnerability discovery

What You Don't Own (Others Lead)

  • Deployment pipeline security (Cloud / Infrastructure owns)
  • Infrastructure-as-code security (Cloud / Infrastructure owns)
  • Production runtime security (Cloud / Infrastructure owns)
  • AI model security research (AI Security owns)

    • Key Partnerships

  • With Cloud / Infrastructure : Clear handoff at build / deploy boundary. You secure the build; they secure the deploy
  • With AI Security : They provide threat models for AI-specific risks; you implement tests in CI / CD
  • With Detection & Response : You find vulnerabilities proactively; they detect attacks in production

    • Your Responsibilities

  • Embed security in the build pipeline Own pre-deployment application security, including automated vulnerability scanning, container scanning, and custom security gates in CI / CD.
  • Conduct advanced application penetration testing Perform comprehensive testing on AI applications, APIs, and model endpoints, simulating adversarial attacks to validate controls.
  • Automate security testing at scale Develop scripts, tools, and frameworks for continuous security assessment, including SAST, DAST, and SCA integration.
  • Lead application-layer red team exercises Plan and execute engagements that mimic sophisticated adversary techniques targeting AI systems.
  • Hunt and validate vulnerabilities Discover, reproduce, and chain vulnerabilities into realistic attack paths, providing actionable remediation guidance.
  • Advise on security architecture Review designs for weaknesses, create secure patterns, and identify systemic issues across applications.
  • Collaborate across boundaries Partner with Cloud / Infrastructure on deployment / runtime security, AI Security on threat modeling, and Detection & Response on defensive validation.

    • Is this you?

    Required Experience

  • 8+ years in application security, with a strong focus on hands-on testing.
  • 5+ years conducting penetration tests and security assessments.
  • Proven record of finding and exploiting critical vulnerabilities.
  • Deep experience integrating security into DevOps workflows and CI / CD pipelines.
  • Strong programming skills for exploit development and security automation.
  • Expertise in web application and API security, including cloud-native architectures.

    • Technical Expertise

  • Proficient with penetration testing tools (e.g., Burp Suite, OWASP ZAP, custom scripts).
  • Skilled in SAST, DAST, and SCA tools.
  • Strong understanding of application-layer attack techniques and exploitation.
  • Experience with supply chain security and build pipeline hardening.

    • Execution & Impact

  • Demonstrated ability to identify vulnerabilities others miss.
  • Proven track record of automating security testing in fast-paced development cycles.
  • Ability to translate red team findings into concrete defensive measures.
  • History of effective collaboration with engineering teams.

    • Preferred Qualifications

  • Background in software development or DevOps.
  • Experience testing AI / ML applications.
  • Security certifications such as OSCP, OSWE, or GWAPT.
  • Published security research or CVEs.
  • Experience with purple team operations.

    • Benefits & Perks (US Full-time employees)

  • Generous PTO, plus company holidays
  • Medical, dental, and vision coverage for you and your family
  • Paid parental leave for all parents (12 weeks)
  • Fertility and family planning support
  • Early-detection cancer testing
  • Flexible spending account and dependent FSA options
  • Health savings account for eligible plans with company contribution
  • Annual work-life stipends for :
  • Home office setup, cell phone, internet
  • Wellness stipend for gym, massage / chiropractor, personal training, etc.
  • Learning and development stipend
  • Company-wide off-sites and team off-sites
  • Competitive compensation, company stock options and 401k

    • WRITER is an equal-opportunity employer and is committed to diversity. We don't make hiring or employment decisions based on race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other basis protected by applicable local, state or federal law. Under the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

    By submitting your application on the application page, you acknowledge and agree to WRITER's Global Candidate Privacy Notice.

    serp_jobs.job_alerts.create_a_job

    Application Security Engineer • New York, NY, United States

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    FIPS 140 Security Engineer

    FIPS 140 Security Engineer

    VirtualVocationsBronx, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a FIPS 140 Security Engineer to support national defense through IT security projects.Key Responsibilities Work on varied FIPS 140 validation projects including general s...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Application Security Architect

    Application Security Architect

    VirtualVocationsYonkers, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for an Application Security Architect responsible for leading IT architecture and application security solutions. Key Responsibilities Define and implement application securit...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Tanium Security Engineer

    Senior Tanium Security Engineer

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Tanium Security & Asset Visibility Engineer.Key Responsibilities Implement cybersecurity and IT asset lifecycle management strategies Protect digital networks, ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Detection and Response Engineer

    Detection and Response Engineer

    VirtualVocationsBronx, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Detection & Response Engineer III - NG-SIEM (Remote).Key Responsibilities Design and implement automated response workflows and SOAR playbooks Develop detection conten...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Engineering Manager

    Security Engineering Manager

    VirtualVocationsYonkers, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Manager, Security Engineering.Key Responsibilities Lead and manage a team of security engineers focused on threat detection and infrastructure hardening Collaborate wi...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Engineer, Product Security

    Security Engineer, Product Security

    Scale AI, Inc.New York, NY, United States
    serp_jobs.job_card.full_time
    We are seeking a highly technical Security Engineer to join our Product Security team.This role is integral to ensuring the security and integrity of our products and services.You will conduct in-d...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Engineer

    Security Engineer

    VirtualVocationsYonkers, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security Engineer to join their cybersecurity team.Key Responsibilities Administer and maintain identity providers and manage endpoint protection platforms Monitor and...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Information Security Engineer

    Information Security Engineer

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for an Information Security Engineer to join their Information Security and Technology team.Key Responsibilities Drive decision-making for platform and application security a...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Principal Security Engineer

    Senior Principal Security Engineer

    VirtualVocationsBrooklyn, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Principal Security Engineer.Key Responsibilities Collaborate to define and document the long-term security technology strategy Promote alignment on the security...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    PAM Security Engineer

    PAM Security Engineer

    VirtualVocationsJackson Heights, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for an IAM / PAM Security Engineer to implement cybersecurity strategies for protecting digital identities within a federal agency's IT environment.Key Responsibilities Imple...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Security Engineer, IDAM

    Security Engineer, IDAM

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security Engineer, IDAM Operations.Key Responsibilities Manage user access provisioning and resolve access issues Support complex application account provisioning and ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Senior Cyber Security Engineer

    Senior Cyber Security Engineer

    VirtualVocationsFlushing, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Cloud Security Engineer to join their team.Key Responsibilities Manage enterprise-wide security tools and platforms, including SIEM, DLP, and vulnerability manag...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    IAM Security Architect

    IAM Security Architect

    VirtualVocationsBronx, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for an IAM and Security Services Architect.Key Responsibilities Define IAM and security services architecture roadmap, standards, and reference models Architect identity sol...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Application Security Engineer

    Senior Application Security Engineer

    VirtualVocationsJamaica, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Application Security Engineer.Key Responsibilities Develop and implement technical security policies and procedures, and perform security measures Scan and test...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Security Software Engineer

    Senior Security Software Engineer

    VirtualVocationsBronx, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Security Software Engineer.Key Responsibilities Develop and maintain embedded software with a focus on security Implement and manage security protocols and auth...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Engineer

    Security Engineer

    The Rockridge GroupNew York, NY, US
    serp_jobs.job_card.temporary
    Company X is seeking an exceptional Security Engineer to join its IT Security Team in our New York office.This person will join a distributed, highly collaborative team that is responsible for the ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Security Engineer

    Senior Security Engineer

    VirtualVocationsFlushing, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Security Engineer (US Remote).Key Responsibilities Implement and maintain security controls in AWS and Azure environments Participate in software and infrastruc...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Lead IT Security Engineer

    Lead IT Security Engineer

    VirtualVocationsYonkers, New York, United States
    serp_jobs.job_card.full_time
    A company is looking for a Lead IT Security Engineer.Key Responsibilities Manage and optimize the Splunk security environment for performance and efficiency Architect cybersecurity solutions and...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Advanced Security Engineer - Cyber Security

    Advanced Security Engineer - Cyber Security

    RelativityNew York, NY, United States
    serp_jobs.job_card.full_time
    As an Advanced Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Sr. Security Engineer

    Sr. Security Engineer

    MDMS Recruiting LLCJersey City, NJ, US
    serp_jobs.job_card.full_time +1
    THIS IS A FULL TIME / DIRECT HIRE ROLE • • •.REMOTE POSITION, MUST BE BASED IN THE UNITED STATES • • •.Security Engineer who will be responsible for the engineering, design, implementation, maintenance, ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_less