Application Security Engineer

at Perplexity AI
šŸ“ San Francisco, United States
USD 250,000-350,000 per year
MIDDLE
āœ… Hybrid

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 3 Software Development @ 6 Go @ 5 Python @ 5 Java @ 5 CI/CD @ 3 JavaScript @ 5 OAuth @ 2 OWASP @ 6

Details

Perplexity is seeking a highly skilled, experienced and hands-on Application Security Engineer to join the security team, revolutionizing the way people search and interact with the internet. You'll build systems, tools, and processes that make security seamless for developers and strong by default, enabling rapid innovation while protecting users at scale.

Responsibilities

  • Design and implement scalable, developer-friendly security solutions that integrate directly into engineering workflows
  • Lead threat modeling, design reviews, and code reviews for new features and major product launches
  • Build and evolve secure-by-default frameworks for authentication, authorization, input validation, and secrets management
  • Develop and integrate automated security tooling into CI/CD pipelines (e.g., linters, dependency scanners, policy enforcement)
  • Collaborate with product and engineering teams to remediate vulnerabilities, and contribute to incident response and postmortems
  • Own, manage, and improve third-party penetration testing engagements and the bug bounty program, working closely with external security researchers to identify and resolve vulnerabilities
  • Stay current on emerging threats and attack techniques, and drive ongoing maturity of the application security posture

Requirements

  • 8+ years of experience in Application Security, Product Security, or similar roles
  • Deep understanding of secure software development practices, threat modeling, and common vulnerabilities (e.g., OWASP Top 10)
  • Familiarity with modern authentication and authorization patterns (OAuth, OIDC, SSO, Zero Trust)
  • Proven track record of building secure infrastructure, reusable libraries, or developer tooling
  • Proficiency with at least one major programming language (examples given: Python, Go, JavaScript, Java)
  • Experience developing or integrating automated security tooling into CI/CD pipelines (linters, dependency scanners, policy enforcement)
  • Experience owning penetration testing engagements and bug bounty programs; ability to work with external researchers
  • Bonus: Experience with securing cloud infrastructure or AI/ML systems

Benefits

  • Cash compensation range: $250,000 - $350,000 per year
  • Final offers determined by factors including experience and expertise
  • Equity may be part of the total compensation package
  • Comprehensive health, dental, and vision insurance for you and your dependents
  • 401(k) plan

Workplace

  • Workplace type: Hybrid (San Francisco)