Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Application Security Engineer

$231.9k - $318.25k

Retool

About Retool Nearly every company in the world runs on custom software for critical operations like tracking performance metrics, handling customer support workflows, building admin dashboards, and countless other processes you might not have even thought of. But most companies don't have adequate resources to properly invest in these tools, leading to a lot of old and clunky internal software or, even worse, users still stuck in manual and spreadsheet flows. At Retool, we’re building the first enterprise AppGen platform: software that transforms natural language into production-ready code, integrates directly with business data, and meets the highest standards of security and governance. AI is redefining what it means to build software—and who gets to build it. The definition of “developer” now includes analysts, operators, and domain experts creating solutions directly. As the pool of builders widens, so does the complexity of what they need to build. The opportunity is enormous, but so is the challenge of enabling this larger community to build production‑grade software safely. That means AI that understands real business data, enforces enterprise policies automatically, and empowers teams to create once and reuse everywhere with shared, trusted components. Over 100 million hours of work has been automated by developers and domain experts using our platform, freeing them to focus on creative problem‑solving and strategic initiatives that drive real business value. The people closest to knowing what needs to be built can now safely create custom solutions within enterprise guardrails. And that's a mission worth striving for. Let's build the future together! WHY WE’RE LOOKING FOR YOU Retool handles our customers’ most sensitive data and provides a platform where they write and execute arbitrary code. The security surface that comes with that is large, nuanced, and genuinely interesting. As the platform grows and our customers’ trust in it deepens, the scope and ambition of our security program have grown with it. We’re looking for an Application Security Engineer who combines deep security fundamentals with real engineering execution. This is not a role for someone who audits from a distance or advises without getting their hands dirty. You’ll be in the code, spotting systemic patterns, and building the tooling and solutions that address them at scale. You’ll recognize when a one‑off fix isn’t enough, synthesize what you’re seeing in the codebase, and work with engineering teams to make secure outcomes the default rather than the exception. You’ll need to understand the product deeply to secure it well: what customers build on Retool, where code executes, and how data flows. The security problems worth solving here live at the intersection of platform capability and customer trust, and your first team is the business, not just security. We’re also actively thinking about what AI‑accelerated development means for application security, from how to use AI to enhance and scale our own security work to managing the risk that comes with developers shipping more code, faster, with different review patterns than ever before. We’re already running experiments in this space, including using AI to find and fix vulnerabilities at scale, automating dependency management, and rethinking what security teams can actually accomplish with the right tooling and ambition. If you want to work out what AI genuinely changes about security engineering practice - in real conditions, not in theory - this role is for you. In This Role, You Will Identify systemic security gaps in our codebase and engineering workflows, and work with engineering teams to design and ship durable solutions; you’ll drive solutions, not just surface problems Build security tooling, automation, and code‑level controls that address classes of vulnerabilities, including custom linters, static analysis rules, and automated checks, shifting the cost of catching issues left rather than handling them one at a time or after they’ve reached production Conduct in‑depth code reviews and security design reviews for significant product initiatives, with the technical depth to engage meaningfully with architectural tradeoffs rather than just flag issues for others to resolve Drive threat modeling and security assessments for new features, and translate security requirements into practical engineering guidance that developers can actually act on Contribute to the team’s evolving approach to security as AI‑assisted development scales internally, including how faster and higher‑volume code production changes how we find, prioritize, and fix risks Triage, track, and drive remediation of vulnerabilities with product engineering teams, and contribute to our penetration testing and bug bounty programs The Skillset You’ll Bring 5+ years of hands‑on experience in application security and security engineering: you’ve built things, not only assessed them, and your background is not mainly consulting, audit, or compliance work The ability to operate independently with good judgment in a fast‑moving environment: you prioritize well by understanding the needs of the business and our shared objectives, make calls with incomplete information, and know when to move fast versus when to slow down and get it right, or elevate and ask for help Communication that earns trust: you can make security legible to engineers without being preachy, and you measure your impact by how well you’ve supported the business, not by how many issues you catalogued A track record of shipping security tooling or automation that improved things for more than one team Genuine engineering depth: you can read, reason about, and review code at the level needed to find real bugs and understand their root causes, not just pattern‑match to a checklist Comfort working in TypeScript and Python: Retool’s platform is built in TypeScript and our security tooling leans on Python, you’ll need to be productive in both and not just conversant Strong AppSec fundamentals: threat modeling, secure code review, a working understanding of common vulnerability classes and, importantly, how to address them durably rather than symptomatically A pragmatic, signal‑oriented relationship with AI tooling: you reach for it where it genuinely sharpens your work, you’re skeptical where it doesn’t, and you’re thinking about what developer‑side AI adoption means for how security risk compounds at scale Nice To Have Offensive security experience like bug bounty, CTF participation, redteam, or pentesting work Experience building or contributing to SAST pipelines, custom static analysis rules, or automated security testing infrastructurePrior experience at a startup or high‑growth scaleup, where security programs aren’t fully pre‑defined and priorities shift For candidates based in the United States, the pay range(s) for this role is listed below and represents base salary range for non‑commissionable roles or on‑target earnings (OTE) for commissionable roles. This salary range may be inclusive of several career levels at Retool and will be narrowed during the interview process based on a number of factors such as (but not limited to), scope and responsibilities, the candidate’s experience and qualifications, and location. Additional compensation in the form(s) of equity and/or commission are dependent on the position offered. Retool provides a comprehensive benefit plan, including medical, dental, vision, and 401(k). Pay and benefits are subject to change at any time, consistent with the terms of any applicable compensation or benefit plans. The base pay range for this role is $231,900 – $318,250 per year. Retool offers generous benefits to all employees and hybrid work location. For more information, please visit the benefits and perks section of our careers page! Retool is currently set up to employ all roles in the US and specific roles in the UK. To find roles that can be employed in the UK, please refer to our careers page and review the indicated locations. #J-18808-Ljbffr

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Application Security Engineer in San Francisco, CA vacancy
  •  ...Senior Security Engineer – Secure Code Review My client is seeking a Senior Security Engineer to join their Application Security practice. This role is ideal for a hands‑on AppSec professional with a strong software development background and deep experience performing... 
    Suggested

    AGS INC

    San Francisco, CA
    1 day ago
  •  ...We are seeking a Sr. Application Security or DevSecOps Engineer with broad set of experiences to have an early and formative impact in many areas of the ZetaChain security program. The ideal candidate will be responsible for ensuring the security of our applications throughout... 
    Suggested
    Contract work
    Remote work
    Flexible hours

    Zetachain

    San Francisco, CA
    2 hours ago
  • $214.2k - $252k

     ...practicing MDs, AI scientists, PhDs, creatives, technologists, and engineers working together to empower people and make care make more...  ...of New York, and East Liberty in Pittsburgh. Senior Application Security Engineer Want to work on building out security from the ground... 
    Suggested
    Hourly pay
    Full time
    Flexible hours

    Abridge

    San Francisco, CA
    1 day ago
  •  ...some of the most cutting edge software/security solutions platforms in the world Why...  ...Details RESPONSIBILITIES Perform application security assessments including manual...  ...backed workflows with customer product and engineering teams. Integrate security tooling (... 
    Suggested
    Long term contract
    Work at office
    Local area

    Jobot

    San Francisco, CA
    57 minutes ago
  •  ...public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a...  ...more. Who we’re looking for: We are seeking an Application Security Engineer with expertise in Static and Dynamic Application Security... 
    Suggested
    Contract work
    Remote work

    GrabJobs

    San Francisco, CA
    3 days ago
  • $165k - $190k

     ...world of TV advertising through the intelligent application of AI and machine learning, Tatari helps some...  ...attestation, and a clear mandate to mature our security and privacy posture. We're looking for the right engineer to make it happen. The Role As our first dedicated... 
    Work at office
    2 days per week

    Tatari

    San Francisco, CA
    1 day ago
  •  ...Find out more about our hiring culture: Dream Team Culture Job Description At ZetaChain, we are seeking a dedicated Protocol Security Engineer to play a pivotal role in fortifying the security of our cutting-edge protocol. You will be deeply involved in the development... 
    Contract work
    Remote work
    Home office

    Blockchain Works

    San Francisco, CA
    4 days ago
  •  ...Application Security Engineer The Application Security Engineer will be responsible for analyzing software code repositories, code designs, processes, and implementation from a security perspective, and work with software development and infrastructure teams to identify... 

    Central Business Solutions

    San Francisco, CA
    1 day ago
  • $50 - $80 per hour

     ...Software Security Firm looking for Application Security Engineer This Jobot Consulting Job is hosted by: John Erwin Are you a fit? Easy Apply now by clicking the "Quick Apply" button and sending us your resume. Salary: $50 - $80 per hour A bit about us: We are a Software... 
    Hourly pay
    Long term contract
    Work at office
    Local area

    Jobot

    San Francisco, CA
    3 days ago
  • $325k - $405k

    A leading AI research firm in San Francisco is seeking a Security Engineer for Application Security. The role involves identifying and mitigating security vulnerabilities, conducting assessments, and developing security tools. Ideal candidates will have extensive experience... 
    Remote job

    Jobleads-US

    San Francisco, CA
    3 days ago
  • $180k - $220k

    Senior Application Security Engineer, AI and Machine Learning San Francisco, California, United States; Seattle, Washington, United States Who We Are Lightning AI is the company behind PyTorch Lightning. Founded in 2019, we build an end‑to‑end platform for developing,... 
    Work at office
    Work from home
    Flexible hours
    2 days per week

    Lightning-Ai

    San Francisco, CA
    2 days ago
  • $200k - $235k

     ...we have focused on enabling our clients to securely navigate the digital asset space. With a...  ...engagements. Secure next‑generation AI‑integrated applications by establishing input/output validation protocols and LLM guardrails. Engineer proactive defenses to safeguard platform... 
    Full time
    Work at office
    Worldwide

    BitGo

    San Francisco, CA
    2 days ago
  • $215k

    Quanata is seeking an Application Security Engineer to ensure secure application development within our AI-native insurance platform. This role involves collaborating with Product, Engineering, and Security teams to integrate security controls throughout the software lifecycle... 
    Remote job

    Quanata

    San Francisco, CA
    5 days ago
  • $185k - $260k

     ...we’re excited about what’s ahead. About The Role Our engineering organization is growing, and with that growth comes an expanding application and infrastructure footprint that requires dedicated application security ownership. This role exists to build that function... 
    Full time
    Contract work
    Temporary work
    For contractors
    Work at office
    Remote work
    Visa sponsorship
    Flexible hours

    Bitwise Asset Management

    San Francisco, CA
    2 days ago
  •  ...support you need to grow your career. Engineering at Brex Engineering at Brex is about building...  .... Our teams span Software, Data, Security, and IT, and operate with high autonomy...  ...become leaders. What you’ll do As a Staff Application Security Engineer, you will define the... 
    Work at office
    Remote work
    Work from home
    3 days per week

    EngineersOfAI

    San Francisco, CA
    2 days ago
  • $320k

     ...Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems. About the Role Anthropic's Application Security team secures the systems that build, serve, and increasingly are... 
    Visa sponsorship

    Anthropic

    San Francisco, CA
    2 days ago
  • $237.8k

     ...their data and AI are fully understood, secured, and resilient to enable the acceleration...  ...We are looking for a Senior Security Engineer who thinks like a product architect and...  ...to this processing. By submitting your application, you confirm that the information provided... 
    Local area
    Worldwide
    Shift work

    Veeam Software

    San Francisco, CA
    2 days ago
  • $180k - $210k

     ..., go to . About the Role We’re looking for a Director of Application Security to architect and lead an AI‑native, agent‑driven Application...  ..., real‑time risk signals, and deep integration with how engineers build software. Zeta is at the forefront of the AI‑native... 
    Shift work

    Zeta Global

    San Francisco, CA
    2 days ago
  •  ...including Patrick Collison and Andrej Karpathy. We are building AI applications for the world's most important institutions, delivering...  ...DeepMind, NVIDIA, and Databricks About the Role As our Security Engineer, Application & AI, you will own the security of our... 
    Contract work

    BrainCo

    San Francisco, CA
    2 days ago
  •  ...the US, UK, Europe, Japan and Canada, and has been used for more than 500,000 patients worldwide. We are looking for an Application Security Engineer to work with our engineering team to ensure security is an integral part of our Software Development Lifecycle (SDLC).... 
    Work at office
    Local area
    Worldwide
    Relocation
    3 days per week

    Heartflow

    San Francisco, CA
    2 days ago
  • $155k - $225k

    Attentive Mobile, Inc. is seeking a Senior Application Security Engineer to enhance security across their platforms. The ideal candidate will have over 5 years of security experience, particularly in application security, and be well-versed in programming with Java, Python... 

    Attentive Mobile, Inc.

    San Francisco, CA
    2 days ago
  • $140k - $180k

     ...headquartered in New York City with offices around the world. To learn more, go to About the Role We’re seeking a Lead Application Security Engineer to help advance Zeta Global’s application and platform security posture through AI-native security practices,... 
    Full time

    Zeta Global

    San Francisco, CA
    1 day ago
  • $405k

     ...a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together...  ...AI systems. About the role We are seeking a Security Engineering Manager to lead our Application Security team in ensuring the security and... 
    Work at office
    Visa sponsorship
    Flexible hours
    Shift work

    Anthropic

    San Francisco, CA
    more than 2 months ago
  • $130k - $180k

     ...Applications Engineer Chef Robotics is accelerating the deployment of intelligent machines in the physical world, starting with food production — the sector facing the largest labor shortage in the U.S., with 1.14M unfilled jobs today and 3.1M projected by 2030. These... 
    Flexible hours
    Night shift

    Chef Robotics

    San Francisco, CA
    8 hours ago
  •  ...cities are managed. Powered by a proprietary visual intelligence engine with full spatial reasoning, EchoTwin transforms municipal...  ...challenges in real time. What You’ll Do We are seeking a skilled Application Engineer to join our team, focusing on deploying and... 
    Flexible hours

    EchoTwin AI, Inc.

    San Francisco, CA
    3 days ago
  • $125k - $160k

     ...based on your skills and experience — talk with your recruiter to learn more. Base pay range $125,000.00/yr - $160,000.00/yr Applications Engineer – Industrial Vision & AI Deployment ~50% Overnight Travel About the Opportunity A rapidly growing AI + computer‑vision scale... 
    Night shift

    Direct Recruiters

    San Francisco, CA
    3 days ago
  • $130k - $175k

     ...Thank you for your interest in Uncountable Engineering! Description Uncountable is seeking experienced engineers to lead the transformation...  ...to accelerate discovery through Generative AI. As an LLM Applications Engineer, you will be the architect of our LLM infrastructure... 

    Uncountable Inc

    San Francisco, CA
    4 days ago
  • $125.64k

     ...Join to apply for the Product Security Engineer role at Chime About The Role We are looking for an early-career Security Engineer to join...  ...of a hands-on security team working across Infrastructure, Application, and Enterprise Security where responsibilities sometimes overlap... 
    Full time
    Local area

    Chime

    San Francisco, CA
    1 day ago
  • $272k - $320k

     ..., empower, and be owned by everyone. About the Security team: Well beyond “regular company security” the...  ...and software security. The team of 15+ engineers helps guide, blockchain, device, cloud, mobile and application security across all of our technologies. For example... 
    Flexible hours

    World Services

    San Francisco, CA
    4 days ago
  • $65k - $80k

     ...Senior Product Security Engineer Join LMArena as a Senior Product Security Engineer. LMArena is the open platform for evaluating how AI models...  ...equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex,... 
    Permanent employment
    Full time
    Work at office

    LMArena

    San Francisco, CA
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Application Security Engineer. Be the first to apply!