{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/skill/secure-coding"},"x-facet":{"type":"skill","slug":"secure-coding","display":"Secure Coding","count":16},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_1f736004-9d0"},"title":"Staff DevOps Engineer - PAM Core","description":"

Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era.

\n

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

\n

Okta is the identity standard. The Okta Identity Cloud is an independent and neutral platform that securely connects the right people to the right technologies at the right time. We help organisations do two things - secure and manage their extended enterprise, and transform their customers' experiences.

\n

With over 14,000 customers, 7,000+ app integrations, and well over 200 million registered users, we are only getting started.

\n

The Okta Privileged Access Management (PAM) is an identity-centric approach to a common and critical privileged access use case. Our elegant Zero Trust architecture is purpose-built for the modern cloud and helps customers solve challenging security and operations pain points at scale.

\n

We're looking for a staff-level Platform engineer to join a team of highly skilled and talented team players who're proud of what they own and deliver. Our elite team is fast, creative, and flexible; with a weekly release cycle and individual ownership, we expect great things from our engineers and reward them with stimulating new projects, new technologies, and the chance to have significant equity in a company that is changing the cloud computing landscape forever.

\n

You Will: Core contributor to Okta’s FedRAMP initiative Work with engineering teams to design, develop and deliver cloud-based infrastructure projects on a modern tech stack (Kubernetes/EKS, RDS, DynamoDB, Kinesis, MKS, Redis, OpenSearch, Docker, Terraform on AWS) Drive evaluation, development, and rollout of new common microservices Operate, support, and upgrade shared services and frameworks. Scale these as their usage invariably grows along with Okta's business. Evaluate existing systems to evolve them for serving in specialised circumstances to support Okta's future business needs Conduct design and code reviews. Ascertain that proposed designs consider scale, redundancy, and multi-tenancy. Ensure high programming standards by writing unit and functional tests. Monitor, troubleshoot, and fix services and frameworks the team owns Evaluate system performance and resolve bottlenecks Provide technical guidance and mentorship to junior developers Collaborate with architects, QA, product owners, security and operations engineers

\n

You Have: Immense passion for doing the right thing to help Okta's technology stay ahead of its anticipated business growth Solid technology chops in architecting, implementing, tuning, and debugging some of the largest cloud deployments in the enterprise world A good understanding of computer science fundamentals such as data structures and algorithms Bachelor's degree in computer science or equivalent; master's preferred 7+ years of extensive programming experience in a modern programming language like Go, Java, or C++ especially in backend services. Go is preferred. 4+ years experience working with PostgreSQL or equivalent relational database systems. Experience with designing and querying databases with optimisation in mind is a plus. Experience with Cloud fundamental building blocks like IaC, Observability, Secrets Management, CI / CD pipelines, secure coding practices, and compliance. Demonstrated experience of working with REST and thorough understanding of its fundamentals Experience with AWS, Redis, Elasticsearch / OpenSearch, Kinesis, Kafka, and Docker Knowledge of network security, authentication, and authorisation Demonstrably followed best software engineering principles Familiarity with Agile software development process

\n

This position requires the ability to access federal environments and/or have access to protected federal data. As a condition of employment for this position, the successful candidate must be able to submit documentation establishing U.S. Person status (e.g. a U.S. Citizen, National, Lawful Permanent Resident, Refugee, or Asylee. 22 CFR 120.15) upon hire.

\n

Requires in-person onboarding and travel to our San Francisco, CA HQ office or our Chicago office during the first week of employment.

\n

#LI-Hybrid #LI-LSS1 requisition ID- P24954_3414076

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_1f736004-9d0","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Okta","sameAs":"https://www.okta.com/","logo":"https://logos.yubhub.co/okta.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/okta/jobs/7838282","x-work-arrangement":"hybrid","x-experience-level":"staff","x-job-type":"full-time","x-salary-range":"$194,000-$267,000 USD","x-skills-required":["Go","Java","C++","PostgreSQL","AWS","Redis","Elasticsearch/OpenSearch","Kinesis","Kafka","Docker","IaC","Observability","Secrets Management","CI/CD pipelines","secure coding practices","compliance","REST","network security","authentication","authorisation"],"x-skills-preferred":[],"datePosted":"2026-04-24T12:13:28.735Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco, California"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Go, Java, C++, PostgreSQL, AWS, Redis, Elasticsearch/OpenSearch, Kinesis, Kafka, Docker, IaC, Observability, Secrets Management, CI/CD pipelines, secure coding practices, compliance, REST, network security, authentication, authorisation","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":194000,"maxValue":267000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_edd2e001-25d"},"title":"Senior Software Engineer","description":"

The Edge browser is a strategic product and a key entry point to Microsoft’s new AI ecosystem serving hundreds of millions of users daily. The Edge Engineering System team is looking for exceptional engineers to help us streamline our engineering workflows and enable our development team to develop high-quality code at light speed. We build modern, AI-first engineering workflows and ensure that our releases are regular, timely, and automatic.

\n

As a Senior Software Engineer on the Edge Engineering System team, you will be responsible for using appropriate artificial intelligence (AI) tools and practices across the software development lifecycle (SDLC) in a disciplined manner. You will take responsibility for the content of your AI-generated changes to artifacts, reviewing all changes and applying appropriate tooling and processes with minimal guidance.

\n

You will use debugging, tests, tools, logs, telemetry, and other methods to proactively verify assumptions before issues occur for product features in production. You will conduct incident retrospectives and identify root causes of problems, implementing repair actions, and identifying mechanisms to prevent incident recurrence with minimal supervision.

\n

Under minimal guidance, you will apply least-access principles, and use logging, telemetry, and other appropriate mechanisms to investigate issues while retaining privacy and security. You will review product feature code and test code to ensure it meets team standards, contains the correct test coverage, and is appropriate for the product feature.

\n

You will bring insight to code reviews to help improve code quality, coaching and providing feedback to develop other engineers’ skills with minimal guidance. You will review code in a timely fashion that helps accelerate the pace of development on the team.

\n

You will consider diagnosability, reliability, testability, and maintainability when reviewing code and understand when code is ready to be shared or delivered. You will apply and review for coding patterns, security risks, compliance issues, and best practices in code reviews.

\n

You will understand and provide feedback for proposals for architecture, with technical leadership from others. With minimal supervision, you will test and explore various design options for a product/solution feature, outlining strengths and weaknesses of each option.

\n

You will own or collaborate with other engineers on the architecture of solutions, following technical leadership as applicable. You will contribute to the development of design documents that support user stories and other product requirements with oversight.

\n

You will develop an awareness of the current technology landscape. You will escalate and share findings from investigations with the team and own some design decisions.

\n

You will help to ensure system architecture and individual designs meet performance, scalability, resiliency, cost of goods sold (COGS), and other requirements and expectations.

\n

You will uphold Microsoft standards of security, privacy, and other compliance requirements and expectations.

\n

You will understand the importance of building solutions that expand upon the work of others.

\n

You will contribute to the refinement of product features by escalating findings from analyses to inform decisions regarding the engineering of products.

\n

You will create a clear test strategy that ensures solution quality, prevents regression from being introduced into existing code with minimal supervision.

\n

You will execute test plans that incorporate security testing to validate security invariants (including negative cases) with minimal supervision.

\n

You will add new tests to cover gaps, deleting or fixing broken tests, improving the speed, reliability, and defect localization of tests in the feature area.

\n

You will build testable code and consider testability during design for a set of features with minimal guidance.

\n

You will understand the different types of tests that can be done on a particular system (e.g., unit tests), and maintain up-to-date understanding of testing architectures used both across Microsoft and across the industry.

\n

You will identify dependencies and incorporate them into the development of design documents for a product area with little oversight.

\n

You will actively identify other teams and technologies to leverage, how they interact, and where their own system or team can support others.

\n

You will understand downstream interactions between systems.

\n

You will contribute to collaborating with other teams to reach common goals where dependencies and validation concerns overlap.

\n

You will contribute to the identification of requirements for, and development of automation within production and deployment of a complex product feature, targeting zero-touch deployment when possible.

\n

You will run code in simulated, or other non-production environments to confirm functionality and error-free runtime for products with little to no oversight.

\n

You will apply best practices to build code based on well-established methods and secure design principles while also applying best practices for new code development and formal validation of security invariants.

\n

You will follow best practices for product development and scaling to customer requirements and applies best practices for meeting scaling needs and performance expectations and security promises.

\n

You will ensure the correct processes are followed to achieve a high degree of security, privacy, safety, and accessibility.

\n

You will check for visible evidence (e.g., audit trail) to demonstrate compliance for product areas.

\n

You will develop and hold an understanding of the implications of onboarding new technologies following expectations of compliance at Microsoft.

\n

You will demonstrate and maintain an up-to-date understanding of both global and local regulations for technologies and system applications to ensure regulations are met.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_edd2e001-25d","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Microsoft","sameAs":"https://microsoft.ai","logo":"https://logos.yubhub.co/microsoft.ai.png"},"x-apply-url":"https://microsoft.ai/job/senior-software-engineer-127/","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["artificial intelligence","software development lifecycle","debugging","testing","logging","telemetry","security","compliance","best practices","design principles","secure coding","testability","maintainability","diagnosability","reliability","scalability","resiliency","cost of goods sold","performance","security invariants","negative cases","unit tests","testing architectures","dependencies","validation concerns","automation","zero-touch deployment","simulated environments","non-production environments","best practices for product development","scaling to customer requirements","meeting scaling needs","performance expectations","security promises","privacy","safety","accessibility","audit trail","regulations","global regulations","local regulations"],"x-skills-preferred":[],"datePosted":"2026-04-24T12:11:21.836Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Redmond"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"artificial intelligence, software development lifecycle, debugging, testing, logging, telemetry, security, compliance, best practices, design principles, secure coding, testability, maintainability, diagnosability, reliability, scalability, resiliency, cost of goods sold, performance, security invariants, negative cases, unit tests, testing architectures, dependencies, validation concerns, automation, zero-touch deployment, simulated environments, non-production environments, best practices for product development, scaling to customer requirements, meeting scaling needs, performance expectations, security promises, privacy, safety, accessibility, audit trail, regulations, global regulations, local regulations"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_9f60f6cb-24d"},"title":"Senior Application Security Engineer","description":"

At Webflow, our mission is to bring development superpowers to everyone. We're looking for a Senior Application Security Engineer to help us level up Webflow's secure development practices ranging from secure coding, tooling, and improving procedures.

\n

As a Senior Application Security Engineer, you'll collaborate with the Webflow engineering team to secure Webflow's web application platform and ecosystem. You'll bring security best practices to the software development lifecycle, work as part of a team to champion security standards while balancing business strategies and requirements, and support Webflow's security current and future compliance frameworks.

\n

You'll work to find security vulnerabilities through grey-box techniques, and propose solutions at the architecture and code level to mitigate findings. You'll contribute code and architecture improvements to enable security within Webflow's application for engineers, and cross-train entry-level application security engineers.

\n

In addition to the responsibilities outlined above, at Webflow we will support you in identifying where your interests and development opportunities lie and we'll help you incorporate them into your role.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_9f60f6cb-24d","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Webflow","sameAs":"https://webflow.com","logo":"https://logos.yubhub.co/webflow.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/webflow/jobs/7793827","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$158,000 - $238,000 (Zone A), $149,000 - $224,000 (Zone B), $139,000 - $210,000 (Zone C), $199,000 - $250,000 (Canada)","x-skills-required":["application security","secure coding","modern web application security","threat modeling","penetration testing","security controls","agentic AI","security automation"],"x-skills-preferred":[],"datePosted":"2026-04-24T12:09:52.710Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"CA Remote (BC & ON only); U.S. Remote"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"application security, secure coding, modern web application security, threat modeling, penetration testing, security controls, agentic AI, security automation","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":139000,"maxValue":250000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_f77c41bb-0ad"},"title":"Application Security Engineer","description":"

We are seeking an experienced Application Security Engineer to join our team. As a subject matter expert, you will have direct experience in a wide range of security technologies, tools, and methodologies. The role is suited for an experienced Application Security engineer with proven understanding in enterprise security and AI security and will focus on building toolsets and processes to drive adoption of secure practices across the enterprise.

\n

The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm’s information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.

\n

Responsibilities

\n\n

Qualifications

\n\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_f77c41bb-0ad","directApply":true,"hiringOrganization":{"@type":"Organization","name":"IT Infrastructure","sameAs":"https://mlp.eightfold.ai","logo":"https://logos.yubhub.co/mlp.eightfold.ai.png"},"x-apply-url":"https://mlp.eightfold.ai/careers/job/755955629927","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["AI-specific risks","Generative AI","LLMs","Agentic frameworks","Security guardrails","Threat modeling","Red teaming","Risk assessments","Application risk assessments","Design reviews","Mitigation strategies","Secure coding standards","Automated security testing","CI/CD pipelines","Security architectures","Secure configuration principles","Cryptography fundamentals","Encryption protocols","SCM & CI/CD technologies","Security scanning","Vulnerability management","Static and dynamic security analysis tools","SCA/SBOM solutions","Secrets management","Password vault technologies","Secure programming","Infrastructure as Code tools","Web application security testing tools","Methodologies","Security frameworks","Standards","Linux","OS internals","Containers"],"x-skills-preferred":[],"datePosted":"2026-04-18T22:14:17.280Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Dublin, Ireland"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"AI-specific risks, Generative AI, LLMs, Agentic frameworks, Security guardrails, Threat modeling, Red teaming, Risk assessments, Application risk assessments, Design reviews, Mitigation strategies, Secure coding standards, Automated security testing, CI/CD pipelines, Security architectures, Secure configuration principles, Cryptography fundamentals, Encryption protocols, SCM & CI/CD technologies, Security scanning, Vulnerability management, Static and dynamic security analysis tools, SCA/SBOM solutions, Secrets management, Password vault technologies, Secure programming, Infrastructure as Code tools, Web application security testing tools, Methodologies, Security frameworks, Standards, Linux, OS internals, Containers"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_6a75ea8b-5b4"},"title":"Application Security Engineer","description":"

We are seeking an experienced Application Security Engineer to join our team. As a subject matter expert with direct experience in a wide range of security technologies, tools, and methodologies, you will play a key role in building toolsets and processes to drive adoption of secure practices across the enterprise.

\n

The successful candidate will have a proven understanding in enterprise security and AI security and will focus on defining and implementing security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.

\n

Key responsibilities include:

\n\n

Qualifications include:

\n\n

Preferred qualifications include:

\n\n

We offer a competitive salary and benefits package, as well as opportunities for professional growth and development.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_6a75ea8b-5b4","directApply":true,"hiringOrganization":{"@type":"Organization","name":"IT Infrastructure","sameAs":"https://mlp.eightfold.ai","logo":"https://logos.yubhub.co/mlp.eightfold.ai.png"},"x-apply-url":"https://mlp.eightfold.ai/careers/job/755955629908","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["AI-specific risks","Generative AI","LLMs","Agentic frameworks","Security guardrails","Threat modeling","Red teaming","Risk assessments","Application risk assessments","Design reviews","Mitigation strategies","Secure coding standards","Developer education","Training materials","Outreach","Common SCM & CI/CD technologies","GitHub","Jenkins","Artifactory","Security Scanning","Vulnerability Management","Static and dynamic security analysis tools","SCA/SBOM solutions","Secrets Management & Password Vault technologies","Delinea Secret Server","Hashicorp Vault","Secure programming","Python","Java","C++","C#","Infrastructure as Code tools","CloudFormation","Terraform","Ansible","Web application security testing tools","Methodologies","Security frameworks","Standards","ISO 27001","NIST","OWASP","Linux","OS internals","Containers"],"x-skills-preferred":[],"datePosted":"2026-04-18T22:14:06.620Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"London, United Kingdom"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"AI-specific risks, Generative AI, LLMs, Agentic frameworks, Security guardrails, Threat modeling, Red teaming, Risk assessments, Application risk assessments, Design reviews, Mitigation strategies, Secure coding standards, Developer education, Training materials, Outreach, Common SCM & CI/CD technologies, GitHub, Jenkins, Artifactory, Security Scanning, Vulnerability Management, Static and dynamic security analysis tools, SCA/SBOM solutions, Secrets Management & Password Vault technologies, Delinea Secret Server, Hashicorp Vault, Secure programming, Python, Java, C++, C#, Infrastructure as Code tools, CloudFormation, Terraform, Ansible, Web application security testing tools, Methodologies, Security frameworks, Standards, ISO 27001, NIST, OWASP, Linux, OS internals, Containers"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_ffaf189f-831"},"title":"Principal Software Engineer, Architect - Java Backend","description":"

Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era. This work requires a relentless drive to solve complex challenges with real-world stakes.

\n

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

\n

We're building a world where Identity belongs to you.

\n

Okta is the leading independent provider of enterprise identity. The Okta Identity Cloud enables organisations to securely connect the right people to the right technologies at the right time. With over 6,500 pre-built integrations to applications and infrastructure providers, Okta customers can easily and securely use the best technologies for their business.

\n

Access Management Foundation Team

\n

The Access Management Pillar at Okta is on a mission to seamlessly and securely authorise users to access any resource they need to get their work done. Our goal is to lead the industry in Zero Trust identity management. The Access Foundation Backend Team is at the core of this mission, building and maintaining the foundational components and frameworks that power Okta's identity and access management solutions.

\n

We develop Okta cloud services and client software that allow users to seamlessly login to devices and use Okta authenticators to access applications securely.

\n

Learn more about Okta’s Engineering on our blog.

\n

About You

\n

We are looking for a seasoned Principal Engineer to join our team and help us build the future of identity and access management. Ideal candidate should be:

\n\n

Job Duties and Responsibilities:

\n\n

Minimum Requirements:

\n\n

Nice to have:

\n\n

Education and Training:

\n\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_ffaf189f-831","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Okta","sameAs":"https://www.okta.com","logo":"https://logos.yubhub.co/okta.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/okta/jobs/7600755","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Java","Identity and Access Management","Security Engineering","Object-Oriented Principles","CI/CD Practices","Agile Environment","Cloud Services","Client Software","UI Technologies","Cybersecurity Principles","Secure Coding Practices"],"x-skills-preferred":[],"datePosted":"2026-04-18T15:57:11.622Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Bengaluru, India"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Java, Identity and Access Management, Security Engineering, Object-Oriented Principles, CI/CD Practices, Agile Environment, Cloud Services, Client Software, UI Technologies, Cybersecurity Principles, Secure Coding Practices"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_ef348b50-2ac"},"title":"Product Security Engineer","description":"

Join Airtable as a Product Security Engineer and play a pivotal role in shaping the security of our rapidly evolving platform. You will partner closely with product engineering teams to build paved roads, frameworks, and automated controls that make the secure path the easy path for our engineering teams.

\n

Your responsibilities will include developing self-service security frameworks and 'paved roads' that allow engineering teams to ship secure code by default. You will focus on automated guardrails for common vulnerabilities, while prioritising deep-dive design reviews into complex business logic and data isolation issues. You will also partner with product and engineering teams to review designs early, contribute to threat modelling for new features and complex initiatives, and provide clear, actionable security guidance.

\n

You will research emerging threats and evolving best practices, specifically regarding AI and LLM safety, and implement controls to secure these workflows. You will manage and evolve our approach to external penetration testing and bug bounties, driving remediation for findings and treating vulnerability management as an engineering problem.

\n

You will contribute to the long-term roadmaps, metrics, and strategic planning for the security team. As a senior member of the team, you will lead complex threat modelling sessions for major product launches and define secure coding standards, and actively mentor other engineers to raise the technical security bar across the organisation.

\n

We are looking for a highly experienced Product Security Engineer with a strong background in computer science or a related field, and proficiency in writing clean, maintainable code. You should have deep familiarity with JavaScript or TypeScript, Node.js, and modern web application frameworks, and be able to reason about the security implications of systems built on them. You should also have hands-on experience securing LLM integrations and identifying prompt injection or data leakage risks.

\n

You will excel at communicating complex security risks to non-security stakeholders and enjoy collaborating cross-functionally to find solutions that balance security with engineering velocity. You will be comfortable working in a fast-paced environment, navigating ambiguity, continuously learning about emerging threats and technologies, and contributing to long-term security strategy.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_ef348b50-2ac","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Airtable","sameAs":"https://airtable.com/","logo":"https://logos.yubhub.co/airtable.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/airtable/jobs/8194662002","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["JavaScript","TypeScript","Node.js","Modern web application frameworks","LLM integrations","Prompt injection","Data leakage risks","Threat modelling","Secure coding standards"],"x-skills-preferred":[],"datePosted":"2026-04-18T15:55:21.514Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco, CA; New York, NY; Remote (Seattle, WA only)"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"JavaScript, TypeScript, Node.js, Modern web application frameworks, LLM integrations, Prompt injection, Data leakage risks, Threat modelling, Secure coding standards"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_aff17a60-097"},"title":"Application Security Engineer","description":"

As a Security Engineer focused on Application and Product Security, you will play a key role in improving the security posture of our applications, services, and development ecosystem.

\n

You will work closely with engineering teams to integrate security into the software development lifecycle, build secure-by-default patterns, and ensure that products are resilient against modern threats.

\n

This role combines hands-on technical work, security engineering, and collaboration with developers to guide secure design and remediation.

\n

You will help implement security controls, perform assessments, and contribute to the continuous improvement of our security program.

\n

Key responsibilities include:

\n\n\n\n\n\n\n\n\n\n\n\n\n

Requirements include:

\n\n\n\n\n\n\n\n\n\n\n\n

This role is based in our Boston office and follows a hybrid model, with an expectation of being onsite 1-2 days per week.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_aff17a60-097","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Starburst","sameAs":"https://www.starburst.io/","logo":"https://logos.yubhub.co/starburst.io.png"},"x-apply-url":"https://job-boards.greenhouse.io/starburst/jobs/5119301008","x-work-arrangement":"hybrid","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":"$130,000-$170,000 USD","x-skills-required":["CI/CD tooling","Git-based workflows","modern development practices","cloud security concepts","application security tools","secure coding principles","API security","authentication","authorization","secrets management"],"x-skills-preferred":["Python","Go","Java","JavaScript/Typescript","Ruby"],"datePosted":"2026-04-18T15:51:05.628Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Boston, MA"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"CI/CD tooling, Git-based workflows, modern development practices, cloud security concepts, application security tools, secure coding principles, API security, authentication, authorization, secrets management, Python, Go, Java, JavaScript/Typescript, Ruby","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":130000,"maxValue":170000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_46d6bdd3-23c"},"title":"Senior Backend Engineer (RoR), AST: Secret Detection","description":"

As a Senior Backend Engineer on the Secret Detection team, you'll help protect sensitive data by building services, scanning workflows, and remediation paths that prevent leaked secrets from reaching production.

\n

Your work will contribute to the full secret management lifecycle, from push protection to pipeline-based scanning, validation, and auditability, so developers can move quickly without taking on avoidable security risk.

\n

This is a strong opportunity if you want to work on security features with clear customer impact, improve detection quality, and help teams act when credentials, API keys, or other secrets are exposed.

\n

You'll focus on backend systems that power Secret Detection across GitLab's DevSecOps platform, working closely with product management and engineering peers in an async-first environment.

\n

In your first year, you'll contribute to core product capabilities, improve performance and result quality, and help shape technical direction through code reviews, RFCs, and proof of concepts.

\n

Some examples of our projects:

\n\n

Responsibilities

\n\n

Requirements

\n\n

About the Team

\n

The Secret Detection team owns GitLab's Secret Detection category, and we build the backend systems and related user workflows that help developers identify and mitigate exposed secrets as code is contributed.

\n

We work with the broader security product suite while maintaining focused investment in secret scanning quality, validation, remediation, and developer experience.

\n

Our work spans Rails and Go services, and we work primarily asynchronously across time zones as a globally distributed team.

\n

Current opportunities include expanding coverage across the secret management lifecycle and improving result quality across the findings our tools detect.

\n

For more on how we work, see the Team Handbook page.

\n

Benefits

\n\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_46d6bdd3-23c","directApply":true,"hiringOrganization":{"@type":"Organization","name":"GitLab","sameAs":"https://about.gitlab.com/","logo":"https://logos.yubhub.co/about.gitlab.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/gitlab/jobs/8432262002","x-work-arrangement":"remote","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$117,600-$252,000 USD","x-skills-required":["Ruby on Rails","GraphQL","Go","Backend development","Security","Secure coding practices","Code scanning","Secret detection"],"x-skills-preferred":[],"datePosted":"2026-04-18T15:50:50.538Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Remote, Canada; Remote, Ireland; Remote, Israel; Remote, Netherlands; Remote, United Kingdom; Remote, US"}},"jobLocationType":"TELECOMMUTE","employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Ruby on Rails, GraphQL, Go, Backend development, Security, Secure coding practices, Code scanning, Secret detection","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":117600,"maxValue":252000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_777a6e79-5d9"},"title":"Senior Software Engineer, Security Engineering","description":"

Secure Every Identity ----------------------- Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era.

\n

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work.

\n

The Role -------- We seek a knowledgeable and development-focused Security Engineer, who will build micro-services to secure Customer Identity Products and Infrastructure.

\n

Responsibilities --------------- Work across a globally distributed product-aligned team of security engineers Establish a deep understanding of Okta Customer Identity products and infrastructure Collaborate when necessary with the Okta Security team on security operations Build, deploy & maintain scalable and reliable infrastructure services as well as security solutions for customer identity products Build, deploy & maintain automation to improve platform security capabilities at scale including logging, threat detection and compliance benchmarks to increase our security posture Help meet our operational security commitments by thinking like an attacker, assessing the risk, and advising on mitigation strategies Support security investigations in coordination with the Okta Security team, participate in root cause analysis and perform necessary remediations. Support stakeholders by proposing mitigation strategies for end-of-life software and security vulnerability and patch management

\n

Requirements ----------- You have 3+ years of hands-on development experience writing microservices with Golang You have 3+ years of experience in cloud infrastructure security, product security You have working knowledge and hands on development experience with one or more of the following: AWS and/or Azure security Kubernetes You have strong knowledge in OWASP Top 10 and secure coding best practices You have strong foundation on secure software development lifecycle best practices You have strong written and verbal communication skills You have experience working with a globally distributed and remote team.

\n

Bonus points if: You have working knowledge and experience with one or more of the following: Full-stack engineering Site reliability engineering Identity and access management Vulnerability and threat management Security detection and response Governance, risk and compliance

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_777a6e79-5d9","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Okta","sameAs":"https://www.okta.com","logo":"https://logos.yubhub.co/okta.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/okta/jobs/7744352","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Golang","Cloud infrastructure security","Product security","AWS security","Azure security","Kubernetes","OWASP Top 10","Secure coding best practices","Secure software development lifecycle best practices"],"x-skills-preferred":["Full-stack engineering","Site reliability engineering","Identity and access management","Vulnerability and threat management","Security detection and response","Governance, risk and compliance"],"datePosted":"2026-04-18T15:44:00.927Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Bengaluru, India"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Golang, Cloud infrastructure security, Product security, AWS security, Azure security, Kubernetes, OWASP Top 10, Secure coding best practices, Secure software development lifecycle best practices, Full-stack engineering, Site reliability engineering, Identity and access management, Vulnerability and threat management, Security detection and response, Governance, risk and compliance"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_6d2bed6a-1bd"},"title":"Application Security Engineer","description":"

We are seeking a skilled and innovative Application Security Engineer to join our technology-driven company. In this role, you will be responsible for ensuring the security and integrity of our cloud-native applications and systems throughout the software development lifecycle, with a particular focus on code security, CI/CD pipelines, and emerging AI technologies.

\n

Responsibilities: Conduct in-depth code reviews and static analysis to identify and mitigate security vulnerabilities in our applications Design and implement secure coding guidelines and best practices for development teams Collaborate closely with development teams to integrate security practices throughout the CI/CD pipeline Perform threat modeling and risk assessments for applications, developing mitigation strategies for potential risks Manage vulnerability tracking and remediation efforts, providing guidance to development teams Support incident response activities related to application security Stay current on emerging security threats and trends in cloud-native technologies and AI, continuously enhancing our security measures Evaluate and secure software supply chains, including producing and maintaining Software Bills of Materials (SBOMs) Address security concerns specific to AI and machine learning models, with a focus on the OWASP LLM Top 10

\n

Basic Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in application security, with a strong focus on code security practices Deep understanding of secure coding practices, application security frameworks, and common vulnerabilities (e.g., OWASP Top 10) Proficiency in Python or Rust programming languages and experience with secure coding practices in these languages Experience securing CI/CD pipelines and implementing DevSecOps practices Familiarity with software supply chain security and SBOM generation tools Experience with security testing tools (e.g., Burp Suite, OWASP ZAP) and static/dynamic code analysis Understanding of AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Excellent communication skills, able to explain complex security issues to both technical and non-technical audiences

\n

Preferred Skills and Experience: Experience with cloud platforms (e.g., GCP, AWS, Azure) and their security features Relevant security certifications (e.g., CSSLP, OSWE) Background in data privacy and compliance regulations relevant to cloud-native applications and AI systems Experience with GitOps and infrastructure-as-code security Familiarity with federated learning and privacy-preserving machine learning techniques Experience in building custom security tooling to enhance and automate security processes Interest in leveraging AI to automate security tasks and improve efficiency Contributions to open-source security projects or tools Experience in securing AI/ML models and data pipelines

\n

Compensation and Benefits: $200,000 - $340,000 USD Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_6d2bed6a-1bd","directApply":true,"hiringOrganization":{"@type":"Organization","name":"xAI","sameAs":"https://www.xai.com/","logo":"https://logos.yubhub.co/xai.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/xai/jobs/4559147007","x-work-arrangement":"onsite","x-experience-level":"mid","x-job-type":"full-time","x-salary-range":"$200,000 - $340,000 USD","x-skills-required":["Python","Rust","Secure coding practices","Application security frameworks","Common vulnerabilities","OWASP Top 10","CI/CD pipelines","DevSecOps practices","Software supply chain security","SBOM generation tools","Security testing tools","Static/dynamic code analysis","AI/ML security implications","OWASP LLM Top 10"],"x-skills-preferred":["Cloud platforms","Security certifications","Data privacy and compliance regulations","GitOps","Infrastructure-as-code security","Federated learning","Privacy-preserving machine learning techniques","Custom security tooling","AI automation","Open-source security projects","AI/ML model security"],"datePosted":"2026-04-18T15:23:13.995Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Palo Alto, CA"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"Python, Rust, Secure coding practices, Application security frameworks, Common vulnerabilities, OWASP Top 10, CI/CD pipelines, DevSecOps practices, Software supply chain security, SBOM generation tools, Security testing tools, Static/dynamic code analysis, AI/ML security implications, OWASP LLM Top 10, Cloud platforms, Security certifications, Data privacy and compliance regulations, GitOps, Infrastructure-as-code security, Federated learning, Privacy-preserving machine learning techniques, Custom security tooling, AI automation, Open-source security projects, AI/ML model security","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":200000,"maxValue":340000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_5c7e46c8-c5c"},"title":"Application Security Intern","description":"

We're looking for a curious and motivated Application Security Intern to help us build secure products and development practices at VGS. As an Application Security Intern, you will partner with security and engineering teams to evaluate application risk, improve secure software development workflows, and help developers ship software safely in an environment that handles highly sensitive payment and identity data.

\n

Your responsibilities will include:

\n\n

We're looking for someone with a strong interest in secure software design, cloud-native architectures, and automation. You should have a foundational understanding of application security concepts, such as the OWASP Top 10, API security, authentication and authorization, secure coding, and common software vulnerabilities.

\n

At VGS, we have a remote-first philosophy, and we're looking for someone who is comfortable working independently and collaboratively as part of a team.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_5c7e46c8-c5c","directApply":true,"hiringOrganization":{"@type":"Organization","name":"VGS","sameAs":"https://www.vgs.com","logo":"https://logos.yubhub.co/vgs.com.png"},"x-apply-url":"https://jobs.lever.co/verygoodsecurity/32fe92a6-13d5-4132-b77c-a7a5ed74f38b","x-work-arrangement":"remote","x-experience-level":"entry","x-job-type":"internship","x-salary-range":null,"x-skills-required":["application security","secure software development","cloud-native architectures","automation","OWASP Top 10","API security","authentication and authorization","secure coding","common software vulnerabilities"],"x-skills-preferred":["LMMs","threat modeling","Burp Suite","SAST/DAST tools","CI/CD pipelines","Docker/Kubernetes","cloud environments"],"datePosted":"2026-04-17T13:08:01.601Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"jobLocationType":"TELECOMMUTE","employmentType":"INTERN","occupationalCategory":"Engineering","industry":"Technology","skills":"application security, secure software development, cloud-native architectures, automation, OWASP Top 10, API security, authentication and authorization, secure coding, common software vulnerabilities, LMMs, threat modeling, Burp Suite, SAST/DAST tools, CI/CD pipelines, Docker/Kubernetes, cloud environments"},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_9eb58719-bef"},"title":"Application Security Engineer","description":"

About the role:

\n

The Application Security team at Anthropic is at the forefront of building security into every phase of the software development lifecycle. In this hands-on technical role, you will partner closely with software engineers and researchers to ensure security is a core consideration from initial design through implementation.

\n

You will lead threat modeling and secure design reviews to proactively identify and mitigate risks early, and help with continuous risk assessment. You will build tools and systems to support developers shipping code securely, adhering to secure coding best practices.

\n

Your insights will shape our tooling, detection capabilities, and defenses against emerging threats to AI/ML. You'll develop the standards, processes, and educational resources that enable all Anthropic engineers to be security champions.

\n

Responsibilities:

\n\n

You may be a good fit if you:

\n\n

Strong candidates may also:

\n\n

The annual compensation range for this role is $300,000 - $405,000 USD.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_9eb58719-bef","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Anthropic","sameAs":"https://job-boards.greenhouse.io","logo":"https://logos.yubhub.co/anthropic.com.png"},"x-apply-url":"https://job-boards.greenhouse.io/anthropic/jobs/4502508008","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$300,000 - $405,000 USD","x-skills-required":["application security","infrastructure security","cloud security","containerized environments","secure coding practices","vulnerability management","bug bounty program","offensive security","modern application stacks","security tools"],"x-skills-preferred":["Kubernetes","Docker","AWS","GCP","Python","Rust","Go","Java","vulnerability testing","pen testing","red team exercises","AI/ML security risks","security tools","automated tools"],"datePosted":"2026-03-08T13:57:18.711Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco, CA, Seattle, WA, New York City, NY"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"application security, infrastructure security, cloud security, containerized environments, secure coding practices, vulnerability management, bug bounty program, offensive security, modern application stacks, security tools, Kubernetes, Docker, AWS, GCP, Python, Rust, Go, Java, vulnerability testing, pen testing, red team exercises, AI/ML security risks, security tools, automated tools","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":300000,"maxValue":405000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_544e96bb-5c3"},"title":"Security Engineer, Application Security","description":"

Security Engineer, Application Security

\n

Location

\n

New York City

\n

Employment Type

\n

Full time

\n

Location Type

\n

Hybrid

\n

Department

\n

Security

\n

Compensation

\n\n

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

\n\n\n\n\n\n\n\n\n\n\n\n\n

More details about our benefits are available to candidates during the hiring process.

\n

About the Team

\n

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

\n

About the Role

\n

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

\n

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

\n

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

\n

In this role, you will:

\n\n\n\n\n\n\n\n

You might thrive in this role if you:

\n\n\n\n\n\n

About OpenAI

\n

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve this, we are building a team of talented engineers, researchers, and designers who share our vision and values.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_544e96bb-5c3","directApply":true,"hiringOrganization":{"@type":"Organization","name":"OpenAI","sameAs":"https://jobs.ashbyhq.com","logo":"https://logos.yubhub.co/openai.com.png"},"x-apply-url":"https://jobs.ashbyhq.com/openai/ec5a5d98-6314-44d9-9466-8d4d7ee866f6","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$260K – $385K • Offers Equity","x-skills-required":["information security","cybersecurity","secure coding practices","threat modeling","risk assessments","incident response","application security","software development","secure coding guidelines","security protocols","encryption methods","programming languages","security tools","Burp Suite","OWASP ZAP"],"x-skills-preferred":["Python","Java","C++","security frameworks","security best practices"],"datePosted":"2026-03-06T18:31:40.678Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"New York City"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"information security, cybersecurity, secure coding practices, threat modeling, risk assessments, incident response, application security, software development, secure coding guidelines, security protocols, encryption methods, programming languages, security tools, Burp Suite, OWASP ZAP, Python, Java, C++, security frameworks, security best practices","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":260000,"maxValue":385000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_90d20db9-de4"},"title":"Security Engineer, Application Security","description":"

Job Posting

\n

Security Engineer, Application Security

\n

Location

\n

San Francisco

\n

Employment Type

\n

Full time

\n

Location Type

\n

Hybrid

\n

Department

\n

Security

\n

Compensation

\n\n

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

\n\n\n\n\n\n\n\n\n\n\n\n\n

More details about our benefits are available to candidates during the hiring process.

\n

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

\n

About the Team

\n

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

\n

About the Role

\n

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

\n

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

\n

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

\n

In this role, you will:

\n\n\n\n\n\n\n\n

You might thrive in this role if you:

\n\n\n\n\n\n

About OpenAI

\n

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve this, we are committed to advancing the state-of-the-art in AI research and development.

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_90d20db9-de4","directApply":true,"hiringOrganization":{"@type":"Organization","name":"OpenAI","sameAs":"https://jobs.ashbyhq.com","logo":"https://logos.yubhub.co/openai.com.png"},"x-apply-url":"https://jobs.ashbyhq.com/openai/0322d6d8-6588-4209-a304-83e768063a25","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$260K – $385K • Offers Equity","x-skills-required":["information security","cybersecurity","secure coding practices","threat modeling","risk assessments","incident response","application security","software development","secure coding guidelines","security protocols","encryption methods","programming languages","security tools","Burp Suite","OWASP ZAP"],"x-skills-preferred":["Python","Java","C++","security frameworks","security best practices"],"datePosted":"2026-03-06T18:30:51.618Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"San Francisco"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"information security, cybersecurity, secure coding practices, threat modeling, risk assessments, incident response, application security, software development, secure coding guidelines, security protocols, encryption methods, programming languages, security tools, Burp Suite, OWASP ZAP, Python, Java, C++, security frameworks, security best practices","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":260000,"maxValue":385000,"unitText":"YEAR"}}},{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_659bf794-7b5"},"title":"Security Engineer, Application Security","description":"

Security Engineer, Application Security

\n

Location

\n

Seattle

\n

Employment Type

\n

Full time

\n

Department

\n

Security

\n

Compensation

\n\n

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

\n\n\n\n\n\n\n\n\n\n\n\n\n

More details about our benefits are available to candidates during the hiring process.

\n

About the Team

\n

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture.

\n

About the Role

\n

As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments.

\n

We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization.

\n

The role is preferred to be based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

\n

In this role, you will:

\n\n\n\n\n\n\n\n

You might thrive in this role if you:

\n\n\n\n\n\n

About OpenAI

\n

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass

\n

XML job scraping automation by YubHub

","url":"https://yubhub.co/jobs/job_659bf794-7b5","directApply":true,"hiringOrganization":{"@type":"Organization","name":"OpenAI","sameAs":"https://jobs.ashbyhq.com","logo":"https://logos.yubhub.co/openai.com.png"},"x-apply-url":"https://jobs.ashbyhq.com/openai/1e110226-448a-4c0b-b0e4-d0f5df579fbf","x-work-arrangement":"hybrid","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$260K – $385K • Offers Equity","x-skills-required":["information security","cybersecurity","secure coding practices","threat modeling","risk assessments","incident response","application security","software development","secure coding guidelines","security protocols","encryption methods","programming languages","security tools","Burp Suite","OWASP ZAP"],"x-skills-preferred":["Python","Java","C++","security frameworks","security best practices"],"datePosted":"2026-03-06T18:29:22.823Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Seattle"}},"employmentType":"FULL_TIME","occupationalCategory":"Engineering","industry":"Technology","skills":"information security, cybersecurity, secure coding practices, threat modeling, risk assessments, incident response, application security, software development, secure coding guidelines, security protocols, encryption methods, programming languages, security tools, Burp Suite, OWASP ZAP, Python, Java, C++, security frameworks, security best practices","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":260000,"maxValue":385000,"unitText":"YEAR"}}}]}