UpJobz
Start free trial
87 remote roles added today376 active tech employersπŸ‡ΊπŸ‡Έ πŸ‡¨πŸ‡¦ πŸ‡²πŸ‡½ Tri-border network749 metros covered12 database updates this hourTN visa filter live87 remote roles added today376 active tech employersπŸ‡ΊπŸ‡Έ πŸ‡¨πŸ‡¦ πŸ‡²πŸ‡½ Tri-border network749 metros covered12 database updates this hourTN visa filter live
Jobs/New York City/Application Security Engineer
New York City, NY

Application Security Engineer

Why join us Brex is the intelligent finance platform that enables companies to spend smarter and move faster in more than 200 markets. By combining global corporate cards and banking with intuitive spend management, bill pay, and travel software, Brex enables founders and finance teams to accelerate operations, gain re

Open employer applicationBack to listings
Company
Brex
Compensation
Not listed
Schedule
Full-Time
Role overview

What this role actually needs.

Why join us Brex is the intelligent finance platform that enables companies to spend smarter and move faster in more than 200 markets. By combining global corporate cards and banking with intuitive spend management, bill pay, and travel software, Brex enables founders and finance teams to accelerate operations, gain re Responsibilities: - Identify vulnerabilities across common vulnerability classes (e.g., OWASP Top 10), document findings clearly, and communicate risk to drive remediation efforts - Participate in penetration testing and design reviews alongside senior engineers, contributing to the identification of vulnerabilities and insecure designs - Contribute to internal tooling and automation efforts that support SAST and DAST testing of the Brex platform and promote secure development practices - Collaborate with engineering and product teams to support the design of secure product features - Actively contribute to a culture of security awareness through knowledge sharing and peer learning - 4+ years of work experience in Application Security or a related role Requirements: - 4+ years of work experience in Application Security or a related role - Demonstrated ability to find and document vulnerabilities in complex systems, with clear communication of business risk - Hands-on experience with a subset of secure development activities, such as code review, threat modeling, or penetration testing - Experience identifying security risks in AI/ML systems β€” such as prompt injection, model manipulation, or data poisoning β€” through work experience, personal projects, CTFs, or bug bounties - Familiarity with agentic workflows and the ability to reason about attack surfaces introduced by LLM-powered features - Knowledge of Python or scripting languages to automate tasks and build tooling Company context: Brex is the spend platform combining corporate cards, expense management, banking, and bill pay for growing companies.

Responsibilities

Day-to-day expectations

Brex lists these responsibilities for the Application Security Engineer role.

  • Identify vulnerabilities across common vulnerability classes (e.g., OWASP Top 10), document findings clearly, and communicate risk to drive remediation efforts
  • Participate in penetration testing and design reviews alongside senior engineers, contributing to the identification of vulnerabilities and insecure designs
  • Contribute to internal tooling and automation efforts that support SAST and DAST testing of the Brex platform and promote secure development practices
  • Collaborate with engineering and product teams to support the design of secure product features
  • Actively contribute to a culture of security awareness through knowledge sharing and peer learning
  • 4+ years of work experience in Application Security or a related role
Requirements

What a strong candidate brings

These requirements are extracted from the source listing and normalized for UpJobz readers.

  • 4+ years of work experience in Application Security or a related role
  • Demonstrated ability to find and document vulnerabilities in complex systems, with clear communication of business risk
  • Hands-on experience with a subset of secure development activities, such as code review, threat modeling, or penetration testing
  • Experience identifying security risks in AI/ML systems β€” such as prompt injection, model manipulation, or data poisoning β€” through work experience, personal projects, CTFs, or bug bounties
  • Familiarity with agentic workflows and the ability to reason about attack surfaces introduced by LLM-powered features
  • Knowledge of Python or scripting languages to automate tasks and build tooling
UpJobz market context

Why this listing is more than a copied job post.

Application Security Engineer is framed against UpJobz source checks, country scope, compensation visibility, and work-authorization signals so candidates can make a faster go/no-go decision.

United States tech market

United States roles on UpJobz are filtered for high-tech relevance, source freshness, and actionable employer detail before they are allowed into SEO surfaces.

Compensation read

The employer source does not expose a reliable salary range, so candidates should ask for compensation early instead of waiting until late-stage interviews.

Work authorization read

Current extracted signal: Open to TN, H-1B, and OPT candidates already in the United States. UpJobz treats this as a search signal, not legal advice, and links visa-sensitive roles back to the relevant visa hub where possible.

Location read

On-site roles in New York City should be compared against commute, local salary bands, and nearby employer demand.

Browse similar jobs

Subscriber playbook

Turn this listing into an application plan.

This is the first pass at the premium UpJobz layer: a fast brief that helps serious applicants move with more clarity.

Next moves

  • Tailor your resume around ai and llm instead of sending a generic application.
  • Use the first two bullets of your application to connect your background directly to application security engineer is a high-signal on-site role in new york city, and it is most realistic for open to tn, h-1b, and opt candidates already in the united states.
  • Open the role quickly if it fits and bookmark three similar jobs before you leave the page.

Interview themes

CybersecurityOn-siteaillmmachine-learningresearch

Watchouts

  • Compensation is hidden, so get range clarity in the first recruiter conversation.
  • Use open to tn, h-1b, and opt candidates already in the united states as part of your positioning so the recruiter does not have to infer it.
  • Show concrete examples of succeeding in on-site environments.
Role signals

Keywords to match against your background

Use these terms to decide whether your resume, portfolio, and recent projects line up with the role.

aillmmachine-learningresearchpythonkubernetesawssecurityplatformapifintechpaymentskotlinreactgo
Next step

Apply through the employer source

Open the source listing from brex.com, confirm the role is still active, then apply on the employer or ATS page.

Open employer application

Source: brex.com Β· Source ID: 8534944002 Β· Confidence: 88/100 Β· Last checked: May 7, 2026

How UpJobz verifies job sourcesContinue browsing tech jobs