Application Security Engineer

2 Months ago • 5 Years + • Cyber Security • $185,000 PA - $280,000 PA

Job Summary

Job Description

Glean is looking for an experienced Application Security Engineer to ensure the technology stack is free of software vulnerabilities (CVEs). The role involves securing base OS images, scanning and patching open-source software (OSS) dependencies, and integrating security tools into the CI/CD pipeline. The engineer will lead vulnerability management, implement secure base OS images, continuously scan and patch OSS dependencies, and integrate SAST, DAST, and dependency scanning tools. Additionally, the engineer will define best practices for secure coding and provide security guidance to engineering teams.
Must have:
  • 5+ years of experience in application security and vulnerability management
  • Deep understanding of software security vulnerabilities and supply chain risks
  • Experience with SAST, DAST, dependency scanning tools
  • Coding experience in languages like Go, Python, Java, or C++
  • Hands-on experience with cloud-native security best practices
Perks:
  • Competitive compensation
  • Medical, Vision and Dental coverage
  • Flexible work environment and time-off policy
  • 401k
  • Company events
  • A home office improvement stipend when you first join
  • Annual education stipend
  • Wellness stipend
  • Healthy lunches and dinners provided daily

Job Details

About Glean

At Glean, we’re on a mission to bring people the knowledge they need to make a difference in the world. Our journey began with a team of seasoned engineers from Google and Meta who recognized a fundamental gap—why do we have powerful search tools in our personal lives but struggle to find what we need at work? That’s what inspired the creation of Glean.

Glean unifies search across all of a company’s apps, helping users find exactly what they need and discover what they should know. Our diverse team of curious and creative individuals is passionate about building technology that empowers organizations to get big things done.

We’re backed by top-tier venture capital firms—including Sequoia, Kleiner Perkins, Lightspeed, and General Catalyst—and have assembled a world-class team with senior leadership experience from Google, Slack, Facebook, Dropbox, Rubrik, Uber, Intercom, Pinterest, Palantir, and more.

Role

Glean is looking for an experienced Application Security Engineer with a primary focus on ensuring that our entire technology stack is free of software vulnerabilities (CVEs). This role is responsible for securing our base OS images, ensuring all open-source software (OSS) dependencies are scanned and patched, and integrating cutting-edge security tools into our CI/CD pipeline. The ideal candidate will drive the adoption of solutions like Google’s Assured Open Source Software (OSS) and explore alternative approaches to enhance software security.

This role will lead the vulnerability management charter at Glean, identifying, evaluating, and implementing new security technologies and processes to proactively protect our infrastructure.

What You Will Do and Achieve

  • Own and lead the vulnerability management lifecycle, ensuring our entire tech stack is free from known CVEs.
  • Implement and manage secure base OS images, ensuring all underlying systems remain hardened against security threats.
  • Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management.
  • Research and evaluate trusted open-source security solutions like Google’s Assured Open Source Software and recommend their adoption where applicable.
  • Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early.
  • Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities.
  • Develop automated security validation tests to enforce vulnerability-free deployments across the stack.
  • Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale.
  • Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

Who You Are

  • BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience).
  • 5+ years of experience in application security and vulnerability management.
  • Deep understanding of software security vulnerabilities, including CVEs, OWASP Top 10, and supply chain risks.
  • Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP).
  • Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies.
  • Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling.
  • Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure.
  • Knowledge of container security, Kubernetes security, and securing microservices architectures.
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams.

Key Knowledge & Skills

  • A strong proactive approach to security, identifying risks before they become problems.
  • Excellent problem-solving skills and the ability to balance security with performance and usability.
  • Experience working in fast-paced, highly collaborative environments where security is a shared responsibility.
  • Passion for open-source security and keeping up with the latest trends in software vulnerability management.

Why Join Us?

At Glean, we believe in empowering individuals to do their best work in an inclusive and diverse environment. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race. We’re building a culture that values curiosity, collaboration, and impact.

If you’re excited about leading the charge in securing a cutting-edge AI-powered search platform, we’d love to hear from you! 🚀

Benefits
  • Competitive compensation
  • Medical, Vision and Dental coverage
  • Flexible work environment and time-off policy
  • 401k
  • Company events
  • A home office improvement stipend when you first join
  • Annual education stipend
  • Wellness stipend
  • Healthy lunches and dinners provided daily

For California based applicants: 

The standard base salary range for this position is $185,000 - $280,000 annually. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for variable compensation, equity, and benefits.

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

Similar Jobs

Motorola solutions - Manager of Sales Operations & Inside Sales

Motorola solutions

San Diego, California, United States (On-Site)
2 Weeks ago
Power Integrations - Staff Automotive Reliability Engineer

Power Integrations

Penang, Malaysia (On-Site)
9 Months ago
PayPal - Senior Director, CRM

PayPal

New York, New York, United States (Hybrid)
1 Month ago
EveryMatrix - Product Designer

EveryMatrix

London, England, United Kingdom (Hybrid)
3 Months ago
Palo Alto Networks - Lead, Go-to-Market Strategy and Operations - QRadar Go-to-Market

Palo Alto Networks

Santa Clara, California, United States (On-Site)
2 Weeks ago
Tide - Staff Backend Engineer - DevEx, Security and Technology Foundations

Tide

Vilnius, Vilnius County, Lithuania (Hybrid)
3 Months ago
Twitch - Senior Security Engineer

Twitch

San Francisco, California, United States (On-Site)
4 Weeks ago
Canonical - Staff Security Operations Engineer

Canonical

(Remote)
2 Months ago
Alpha Sense - Senior Cloud Security Engineer

Alpha Sense

India (On-Site)
2 Months ago
Morning Star - Senior Security Engineer

Morning Star

Chicago, Illinois, United States (Hybrid)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Regent craft - Senior Technical Recruiter

Regent craft

North Kingstown, Rhode Island, United States (Hybrid)
2 Months ago
Lytx,  Inc  - Senior Architect

Lytx, Inc

India (On-Site)
3 Months ago
Nine - Product Manager - Editorial Platforms

Nine

North Sydney, New South Wales, Australia (On-Site)
4 Weeks ago
Luxoft - Partnerships and Customer Success Lead

Luxoft

(Remote)
8 Months ago
binance - Senior Product Manager (Marketplace)

binance

Asia, Lima Region, Peru (Remote)
2 Months ago
Sailpoint - Head of Global Customer Success Operations

Sailpoint

Austin, Texas, United States (On-Site)
1 Month ago
Match Group - Corporate Counsel

Match Group

New York, United States (Hybrid)
1 Month ago
Figma - Customer Enablement Manager

Figma

San Francisco, California, United States (Remote)
1 Month ago
entrata - Implementation Project Manager

entrata

United States (Remote)
1 Year ago
hogarth - Content Project Manager

hogarth

Singapore (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Palo Alto, California, United States

Sleeper - Product Designer (Mid-Level Contract-Hire)

Sleeper

Seattle, Washington, United States (On-Site)
4 Months ago
Palo Alto Networks - Finance Manager, North America Sales Finance

Palo Alto Networks

Santa Clara, California, United States (On-Site)
3 Weeks ago
imerza - 3D Art Production Manager - Archviz / Unreal Engine

imerza

Sarasota, Florida, United States (On-Site)
1 Month ago
entrata - Consultant

entrata

United States (Remote)
2 Months ago
Nice - Lead Cloud Network Engineer

Nice

Atlanta, Georgia, United States (On-Site)
4 Weeks ago
Apple - Software Engineering System

Apple

San Diego, California, United States (On-Site)
1 Month ago
Crunchyroll - Implementation Manager

Crunchyroll

Dallas, Texas, United States (Hybrid)
5 Months ago
bytedance - Research Engineer- Foundation Model AI Platform- San Jose

bytedance

San Jose, California, United States (On-Site)
9 Months ago
ID Software - Game Development Automation & Stability Engineer

ID Software

Dallas, Texas, United States (On-Site)
1 Month ago
onwards Search - Senior Data Analyst, Marketing

onwards Search

Memphis, Tennessee, United States (Remote)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

JMA - Senior Embedded Systems Security Engineer

JMA

New Providence, New Jersey, United States (On-Site)
8 Months ago
Microsoft - Technical Support Engineer - Security & Compliance

Microsoft

(On-Site)
3 Months ago
onwards Search - Security Engineer

onwards Search

Mountain View, California, United States (Hybrid)
2 Weeks ago
Decagon - Staff Security Engineer

Decagon

San Francisco, California, United States (On-Site)
2 Weeks ago
Yodlee - Senior Security Analyst

Yodlee

Berwyn, Pennsylvania, United States (Hybrid)
1 Week ago
Lilt - Staff DevOps Engineer (Security Clearance Required)

Lilt

Washington, District Of Columbia, United States (Hybrid)
4 Months ago
Palo Alto Networks - Managing Director, Cybersecurity Services

Palo Alto Networks

São Paulo, Brazil (Remote)
3 Weeks ago
neural concept - IT & Security Innovation Specialist

neural concept

Lausanne, Vaud, Switzerland (Hybrid)
4 Weeks ago
PwC - Cybersecurity Senior Associate

PwC

Makati City, Metro Manila, Philippines (On-Site)
10 Months ago
Barracuda - Cybersecurity Developer

Barracuda

Ottawa, Ontario, Canada (Hybrid)
4 Months ago

Get notifed when new similar jobs are uploaded

About The Company

We’re on a mission to make knowledge work faster and more humane. We believe that AI will fundamentally transform how people work. In the future, everyone will work in tandem with expert AI assistants who find knowledge, create and synthesize information, and execute work. These assistants will free people up to focus on the higher-level, creative aspects of their work. We’re building a system of intelligence for every company in the world. On the surface, you can think of it as Google + ChatGPT for the enterprise. Under the hood, our platform is the connective tissue between AI and knowledge. It brings all of a company’s knowledge together, understands it at a deep level, provides industry-leading search relevance over it, and connects it to generative AI agents and applications.

Palo Alto, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

San Francisco, California, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (Hybrid)

Palo Alto, California, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

View All Jobs

Get notified when new jobs are added by Glean

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug