Job Description

As the Founding Application Security Engineer, you will own and build the security backbone of our SaaS platform, ensuring we can ship features quickly — and safely — to our customers. You will partner with software, DevOps, and platform teams, while coordinating with audit partners, to embed threat modeling, automated SAST/SCA/DAST, and rapid vulnerability response into every stage of our SDLC. Your leadership will be pivotal in protecting customer data, meeting compliance milestones, and scaling our security posture as the company grows.

Responsibilities

• Map product attack surface and publish a 12-month security roadmap
• Embed with development teams to run threat models and review PRs
• Implement and deploy SAST, SCA, secrets-scan, DAST, and container/IaC checks in CI/CD
• Coordinate with DevOps for application security issues
• Support incident-response for product issues
• Write customer-facing Product Security white-papers and supply compliance evidence

Requirements

• 5+ years in Application / Product Security
• Ability to read & write production-quality code
• Hands-on experience securing web applications and automating AppSec workflows
• Familiarity with incident response fundamentals
• Clear, concise communicator
• Ideally experienced with AWS, Python, containers, TypeScript, Node.js, Django, PostgreSQL, and Rancher
• Experience securing LLM workflows is a plus

Benefits

• No benefits