Application Security Engineer

1 Hour ago • 5 Years + • $185,000 PA - $280,000 PA

Job Summary

Job Description

Glean is looking for an experienced Application Security Engineer to ensure the technology stack is free of software vulnerabilities (CVEs). The role involves securing base OS images, scanning and patching open-source software (OSS) dependencies, and integrating security tools into the CI/CD pipeline. The engineer will lead vulnerability management, implement secure base OS images, continuously scan and patch OSS dependencies, and integrate SAST, DAST, and dependency scanning tools. Additionally, the engineer will define best practices for secure coding and provide security guidance to engineering teams.
Must have:
  • 5+ years of experience in application security and vulnerability management
  • Deep understanding of software security vulnerabilities and supply chain risks
  • Experience with SAST, DAST, dependency scanning tools
  • Coding experience in languages like Go, Python, Java, or C++
  • Hands-on experience with cloud-native security best practices
Perks:
  • Competitive compensation
  • Medical, Vision and Dental coverage
  • Flexible work environment and time-off policy
  • 401k
  • Company events
  • A home office improvement stipend when you first join
  • Annual education stipend
  • Wellness stipend
  • Healthy lunches and dinners provided daily

Job Details

About Glean

At Glean, we’re on a mission to bring people the knowledge they need to make a difference in the world. Our journey began with a team of seasoned engineers from Google and Meta who recognized a fundamental gap—why do we have powerful search tools in our personal lives but struggle to find what we need at work? That’s what inspired the creation of Glean.

Glean unifies search across all of a company’s apps, helping users find exactly what they need and discover what they should know. Our diverse team of curious and creative individuals is passionate about building technology that empowers organizations to get big things done.

We’re backed by top-tier venture capital firms—including Sequoia, Kleiner Perkins, Lightspeed, and General Catalyst—and have assembled a world-class team with senior leadership experience from Google, Slack, Facebook, Dropbox, Rubrik, Uber, Intercom, Pinterest, Palantir, and more.

Role

Glean is looking for an experienced Application Security Engineer with a primary focus on ensuring that our entire technology stack is free of software vulnerabilities (CVEs). This role is responsible for securing our base OS images, ensuring all open-source software (OSS) dependencies are scanned and patched, and integrating cutting-edge security tools into our CI/CD pipeline. The ideal candidate will drive the adoption of solutions like Google’s Assured Open Source Software (OSS) and explore alternative approaches to enhance software security.

This role will lead the vulnerability management charter at Glean, identifying, evaluating, and implementing new security technologies and processes to proactively protect our infrastructure.

What You Will Do and Achieve

  • Own and lead the vulnerability management lifecycle, ensuring our entire tech stack is free from known CVEs.
  • Implement and manage secure base OS images, ensuring all underlying systems remain hardened against security threats.
  • Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management.
  • Research and evaluate trusted open-source security solutions like Google’s Assured Open Source Software and recommend their adoption where applicable.
  • Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early.
  • Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities.
  • Develop automated security validation tests to enforce vulnerability-free deployments across the stack.
  • Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale.
  • Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

Who You Are

  • BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience).
  • 5+ years of experience in application security and vulnerability management.
  • Deep understanding of software security vulnerabilities, including CVEs, OWASP Top 10, and supply chain risks.
  • Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP).
  • Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies.
  • Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling.
  • Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure.
  • Knowledge of container security, Kubernetes security, and securing microservices architectures.
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams.

Key Knowledge & Skills

  • A strong proactive approach to security, identifying risks before they become problems.
  • Excellent problem-solving skills and the ability to balance security with performance and usability.
  • Experience working in fast-paced, highly collaborative environments where security is a shared responsibility.
  • Passion for open-source security and keeping up with the latest trends in software vulnerability management.

Why Join Us?

At Glean, we believe in empowering individuals to do their best work in an inclusive and diverse environment. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race. We’re building a culture that values curiosity, collaboration, and impact.

If you’re excited about leading the charge in securing a cutting-edge AI-powered search platform, we’d love to hear from you! 🚀

Benefits
  • Competitive compensation
  • Medical, Vision and Dental coverage
  • Flexible work environment and time-off policy
  • 401k
  • Company events
  • A home office improvement stipend when you first join
  • Annual education stipend
  • Wellness stipend
  • Healthy lunches and dinners provided daily

For California based applicants: 

The standard base salary range for this position is $185,000 - $280,000 annually. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for variable compensation, equity, and benefits.

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

Similar Jobs

ByteDance - Software Engineer Intern, Information System - 2025 Start

ByteDance

Dubai, Dubai, United Arab Emirates (On-Site)
1 Month ago
VGW - Data Engineer

VGW

Sydney, New South Wales, Australia (On-Site)
1 Week ago
TTC Global - Test Architect

TTC Global

Naperville, Illinois, United States (On-Site)
2 Days ago
Rockstar Games - Senior Data Engineer

Rockstar Games

Andover, Massachusetts, United States (On-Site)
2 Months ago
Colo pl - Server-Side Engineer (Game Industry Experience Not Required)

Colo pl

Minato City, Tokyo, Japan (On-Site)
1 Year ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Playrix - Lead QA Engineer

Playrix

Serbia (Remote)
6 Months ago
Vercel - Manager, Customer Support Engineering, EMEA

Vercel

(Remote)
2 Weeks ago
The Walt Disney Company - Lead Software Engineer, Machine Learning - Ad Platforms

The Walt Disney Company

California, United States (On-Site)
1 Month ago
Sinch - Senior Software Developer - Mailgun Optimize and Validate

Sinch

United States (Remote)
3 Weeks ago
Mattel  Inc  - Manager, Development Live Ops

Mattel Inc

El Segundo, California, United States (On-Site)
6 Months ago
Flexra Software - Senior Data Engineer

Flexra Software

India (On-Site)
2 Weeks ago
Genies - Backend Engineer Intern (LLM)

Genies

San Mateo, California, United States (Hybrid)
1 Month ago
Playrix - Senior QA Automation Engineer

Playrix

Ireland (Remote)
1 Month ago
GoTo Group - Senior Software Engineer - Event Platform

GoTo Group

Bengaluru, Karnataka, India (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Palo Alto, California, United States

Temporal Technologies - Developer Success Engineer

Temporal Technologies

San Francisco, California, United States (On-Site)
2 Weeks ago
Kaedim - DevOps Engineer

Kaedim

San Francisco, California, United States (On-Site)
8 Months ago
Epoch Games - 3D Game Animator

Epoch Games

North Carolina, United States (Remote)
1 Month ago
ByteDance - Software Engineer, Unity Engine and XR

ByteDance

San Jose, California, United States (On-Site)
1 Month ago
The Walt Disney Company - Sr Software Engineer, Video Playback Engineering

The Walt Disney Company

Seattle, Washington, United States (On-Site)
4 Months ago
The Walt Disney Company - Disney's Hilton Head Island Resort Recreation Lifeguard - Full-Time

The Walt Disney Company

Hilton Head Island, South Carolina, United States (On-Site)
1 Month ago
Treck - Service Technician/Advisor

Treck

Alexandria, Virginia, United States (On-Site)
2 Weeks ago
Riot Games - Technical Art Director - Central Creative Team

Riot Games

Los Angeles, California, United States (On-Site)
2 Weeks ago
Philips - Cardiac Wireless Monitoring Technician II

Philips

Pleasanton, California, United States (On-Site)
1 Week ago
Google - Cybersecurity Associate Auditor

Google

Chicago, Illinois, United States (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Palo Alto, California, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Palo Alto, California, United States (Hybrid)

Palo Alto, California, United States (On-Site)

Palo Alto, California, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Palo Alto, California, United States (Hybrid)

Bengaluru, Karnataka, India (On-Site)

Palo Alto, California, United States (Hybrid)

View All Jobs

Get notified when new jobs are added by Glean

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug