Senior Application Security Engineer

Overview

Senior Application Security Engineer role ss Genius is building an ecosystem enabling entrepreneurs to succeed, offering business management tools including booking, marketing, analytics, payment processing, and more. Over 100,000 small business owners rely on Gloss Genius daily to run their operations.

This is a high-visibility role on the Foundations Engineering team. You will act as a frontline security voice for engineering and product teams, shaping the security of the entire product portfolio and ensuring security is considered from the earliest design discussions.

This role can be based remotely in the San Francisco Bay Area OR Hybrid in our NYC headquarters (Tuesdays & Thursdays in-office).

• Design Review:
  Act as the initial security point of contact for engineering and product teams. Conduct security-focused architectural reviews and threat modeling to identify and address vulnerabilities, working with development teams to find and fix issues.
• Policy & Process Adjustments:
  Contribute to the development of security policies and standards, create secure coding guidelines, build automated tools to prevent common security issues, and embed security into CI/CD pipelines.
• Vulnerability Management:
  Own end-to-end vulnerability management, deploy scanning tools across the engineering organization, triage vulnerabilities, and support ongoing tooling and process improvements.
• Vendor Evaluation:
  Evaluate new security vendors, run evaluations, coordinate demos, pilot tools internally, and recommend solutions that fit needs.

• 5+ years of experience in application or product security roles, preferably in high-growth, cloud-native environments
• Strong ability to collaborate with software development teams
• Experience performing architecture reviews/threat models for custom software
• Excellent communication skills, both written and verbal
• Familiarity with common security libraries and tools (static analysis, penetration testing)
• Understanding of common vulnerabilities and mitigation strategies (e.g., OWASP Top 10)
• Basic development or scripting skills
• Fundamental knowledge of network and web protocols (TCP/IP, HTTP, HTTPS)
• Willingness to participate in on-call rotations as needed
• Proactive project management with a focus on outcomes

• Flexible PTO
• Competitive health & dental insurance options, with premiums partially or fully covered
• Fertility and adoption benefits
• Generous, fully-paid parental leave policy
• 401k with employer contribution eligibility from day 1
• Professional development stipend
• Dependent Care FSA
• Home office support
• Team bonding opportunities for distributed teams

The starting base salary for this role in New York and California is between $180,000-$230,000 plus target equity and benefits. Salary offered depends on skills, experience, location, and education. Gloss Genius’s equity plan and a range of health, wellbeing, retirement, and other benefits are included.

Gloss Genius is proud to be an Equal Opportunity and Affirmative Action Employer. We celebrate differences and are committed to creating an inclusive workplace.

Agency submissions:
If a resume or applicant is submitted by a third party without a signed search agreement, it becomes Gloss Genius property and no fee is paid.