58 application security engineer jobs at 45 companies in Tracy, CA
🚀PromotedHiringCafe
Founding Backend / Infra Engineer
Cupertino, CA, US
$160k-$300k/yrOn-SiteFull Time
HiringCafe: Building a 100× better job search engine to take on Indeed and LinkedIn.
Own the crawlers, pipelines, and infrastructure powering a real-time job search engine. Strong Node.js and Python fundamentals; bonus points for security and reverse-engineering chops.
BitGoNYSE: BTGO: Provides secure infrastructure for institutional digital asset management.
8+ YOE8+ years building and scaling application security programs for FinTech/Web3; strong engineering background in distributed systems, Python or Java, Kubernetes, AWS, Terraform; experience with SAST/DAST, CI/CD security automation, KMS/encryption, SOC 2/GDPR controls, and securing AI/ML lifecycles.
ServiceNowNYSE: NOW: Provides a cloud platform for automating enterprise digital workflows.
5+ YOE5+ years in application security, 3+ years penetration testing, experience with SAST/DAST, Snyk, GitHub Dependabot, Burp Suite, Python/Golang, cloud security (AWS/GCP/Azure), and AI/LLM security; BS or equivalent.
Nclusion: Provides digital banking and payment infrastructure for unbanked populations.
10+ YOE10+ years in software or application security; strong programming in Go, Python, Java, TypeScript, or C++; experience with Kubernetes, Terraform, threat modeling, API security, IAM concepts, and secure CI/CD; pragmatic balance of developer productivity and risk.
Research Triangle Park or San Jose or New York City or New York or Washington or Canada
$167k-$211k/yrHybridFull Time
CiscoNASDAQ: CSCO: Develops and sells networking hardware and cybersecurity software.
1+ YOEAdvanced AI research experience applied to networking/security or related computer science areas; ability to design and run experiments, build and evaluate models, and communicate research to cross-functional teams.
Omnissa: Provides AI-driven digital workspace and endpoint management software solutions.
12+ YOE12+ years application security experience; expertise in threat modeling, secure design and architecture for cloud-native systems; proficiency reading Java and C++; experience with code review, vulnerability research, and maturing security programs.
RobinhoodNASDAQ: HOOD: Provides a commission-free platform for investing and financial services.
5+ YOE5+ years in application security or related field; experience with secure SDLC and threat modeling; production-grade Python/Go experience; collaboration with engineers; reliability and incident response focus.
Nectar Social: AI platform for social commerce and community management.
5+ YOE5+ years in security engineering or application/product security; strong application and cloud security fundamentals; hands-on compliance program experience (SOC 2/ISO 27001); programming skills for security tooling; experience with enterprise security reviews and AI workloads.
6+ YOE6+ years security engineering experience, expertise in infrastructure/corporate/application security domains, strong secure-architecture skills, AI tooling familiarity, Kubernetes, cloud and IAM experience.
San Francisco or Palo Alto or Toronto or Los Angeles
OnsiteFull Time
HeyGen: Generate professional AI videos using digital avatars and voices.
Hands-on Python and AWS experience, cloud and application security, vulnerability management, IAM and secrets management, familiarity with SOC 2/ISO 27001, strong communication and threat modeling skills.
Python, AWS, Drata, Infisical, Bugcrowd, SOC 2, ISO 27001
Los Angeles or Palo Alto or Bellevue or Santa Monica
$133k-$235k/yrOnsiteFull Time
SnapNYSE: SNAP: Develops social media applications and augmented reality technology.
2+ YOEBachelor’s degree or equivalent, 2+ years security-related experience, expertise in infrastructure/application/cloud security domains, programming (Python/Go/Java), experience with vulnerability scanners, SIEM, EDR, and strong communication and problem-solving skills.
AMDNASDAQ: AMD: Designs and manufactures computer processors and graphics technology.
Strong C++ experience, application security knowledge, familiarity with cryptography (e.g., OpenSSL), multithreading and performance optimization, experience with Linux/Windows and working in large codebases; Bachelor's or Master's in CS/CE/EE.
Lead Senior Security Engineer (Enterprise AI Platform)
Palo Alto, California, United States
HybridFull Time
Evolver: AI-powered platform automating complex workflows for professional services firms.
8+ YOE8+ years in security architecture/engineering for cloud-native or enterprise SaaS; deep cloud (Azure) and application security, IAM, SSO/SAML/OIDC, RBAC, secrets and vulnerability management; experience with enterprise customers and compliance (SOC 2/ISO 27001).
Microsoft Azure, SSO, SAML, OIDC, RBAC, CI/CD, infrastructure-as-code, API, containers
Lam ResearchNASDAQ: LRCX: Manufacturing equipment used to fabricate advanced semiconductor microchips.
3+ YOEBachelor's degree or equivalent experience, 3+ years in information/application/product security or related field; Secure SDLC, threat modeling, code review, SAST/DAST/SCA tooling, CI/CD and developer tool familiarity; strong communication.
Interaction: Building an AI personal assistant that operates via iMessage.
Experienced security engineer with deep technical expertise across agent/AI, application, cloud, detection, or privacy/security disciplines; platform thinking; experience with TypeScript and Python preferred; ability to stabilize systems under pressure.
Sr Application Engineer — IT Inventory Platform, IS&T
Sunnyvale, California, United States
OnsiteFull Time
AppleNASDAQ: AAPL: Designs and sells consumer electronics, software, and online services.
Design, operate, and evolve an asset intelligence platform that aggregates discovery integrations and provides visibility for IT service management, software asset management, and security/compliance stakeholders.
Lam ResearchNASDAQ: LRCX: Designs and manufactures wafer fabrication equipment for the semiconductor industry.
3+ YOEBachelor's degree or equivalent experience, 3+ years in information/application/product security or related field. Experience with Secure SDLC, threat modeling, code review, SAST/SCA/DAST, CI/CD and developer toolchains, and communicating findings to engineering teams.
Replit: Cloud-based platform for building and hosting software applications.
5+ YOE5 years of experience in Application Security, DevSecOps, or Software Engineering; development background; code literacy in JavaScript/TypeScript, Python, and Go; SAST/SCA/secret scanning tooling experience; knowledge of SOC 2, ISO 27001, or NIST.