Product Security Engineer

About Applied Intuition

Applied Intuition, Inc. is powering the future of physical AI. Founded in 2017 and now valued at $15 billion, the Silicon Valley company is creating the digital infrastructure needed to bring intelligence to every moving machine on the planet. Applied Intuition services the automotive, defense, trucking, construction, mining and agriculture industries in three core areas: tools and infrastructure, operating systems, and autonomy. Eighteen of the top 20 global automakers, as well as the United States military and its allies, trust the company's solutions to deliver physical intelligence. Applied Intuition is headquartered in Sunnyvale, California, with offices in Washington, D.C.; San Diego; Ft. Walton Beach, Florida; Ann Arbor, Michigan; London; Stuttgart; Munich; Stockholm; Bangalore; Seoul; and Tokyo. Learn more at applied.co.

We are an in-office company, and our expectation is that employees primarily work from their Applied Intuition office 5 days a week. However, we also recognize the importance of flexibility and trust our employees to manage their schedules responsibly. This may include occasional remote work, starting the day with morning meetings from home before heading to the office, or leaving earlier when needed to accommodate family commitments.

About the role

We are seeking a multifaceted Product Security Engineer whose role will be to embed security directly into the Applied Intuitions product design and development lifecycle. Working closely with cross-functional engineering teams, you will play a crucial role in securing our application platform.
At Applied Intuition, you will:

• Analyze Applied Intuition's applications and system architectures from their inception to release. Proactively identify potential security vulnerabilities and integrate robust security controls and conduct architecture reviews and threat modeling.
• Conduct regular security assessments and utilize AI-assisted testing on products and systems to systematically identify and mitigate vulnerabilities before they can be exploited.
• Assist in maturing Applied's vulnerability management program and drive risk-contextualized resolutions discovered through various security platforms, collaborating closely with development teams.
• Provide continuous guidance and education to developers on secure coding practices, emerging threats, and general security best practices to cultivate a security-conscious culture.
• Collaborate with incident response teams and join security incident calls that impact product operations and create targeted remediation suggestions based on current threat landscapes.
• Work alongside software engineers to mature automated SAST and DAST tooling to secure development frameworks and CI/CD pipelines.

We're looking for someone who has:

• 5+ years of demonstrable experience as a Security Engineer, Application Security Engineer, or Product Security Engineer within a highly complex, rapidly scaling software organization.
• Proficiency in modern programming languages (such as Python, Typescript, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with modern security protocols and encryption methods.
• Implemented AI to rapidly identify, validate, and scale security programs.
• Deep, practical knowledge of container security (Kubernetes), compute constraints, and securing ephemeral workloads across major public cloud platforms (AWS, GCP, Azure) and on-premises environments.
• Hands-on experience deploying, tuning, and automating SAST, DAST, and CI/CD pipeline security tools.
• Specific operational experience configuring and driving remediation through cloud security platforms.
• Proven experience securing large-scale platform migrations and managing the distinct security lifecycles of both legacy systems and modern microservices.

Nice to have:

• Direct professional experience in the autonomous vehicle, automotive, aerospace, or defense sectors.
• Familiarity with physics-based simulation environments, deterministic computing constraints, or managing High-Performance Computing (HPC) clusters.
• Demonstrable contributions to open-source security tools, published vulnerability research, or recognized vulnerability disclosures (CVEs)

Compensation at Applied Intuition for eligible roles includes base salary, equity, and benefits. Base salary is a single component of the total compensation package, which may also include equity in the form of options and/or restricted stock units, comprehensive health, dental, vision, life and disability insurance coverage, 401k retirement benefits with employer match, learning and wellness stipends, and paid time off. Note that benefits are subject to change and may vary based on jurisdiction of employment.

Applied Intuition pay ranges reflect the minimum and maximum intended target base salary for new hire salaries for the position. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, interview performance, and the level and scope of the position.

Please reference the job posting's subtitle for where this position will be located. For pay transparency purposes, the base salary range for this full-time position in the location listed is: $125,000 - $160,000 USD annually.


Don't meet every single requirement? If you're excited about this role but your past experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.

Applied Intuition is an equal opportunity employer and federal contractor or subcontractor. Consequently, the parties agree that, as applicable, they will abide by the requirements of 41 CFR 60-1.4(a), 41 CFR 60-300.5(a) and 41 CFR 60-741.5(a) and that these laws are incorporated herein by reference. These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. These regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability. The parties also agree that, as applicable, they will abide by the requirements of Executive Order 13496 (29 CFR Part 471, Appendix A to Subpart A), relating to the notice of employee rights under federal labor laws.