Application Security Engineer

๐Ÿ‡ฎ๐Ÿ‡ณ India - Remote
๐Ÿ”’ Cybersecurity๐Ÿ”ต Mid-level

Job description

About Glean:

Founded in 2019, Glean is an innovative AI-powered knowledge management platform designed to help organizations quickly find, organize, and share information across their teams. By integrating seamlessly with tools like Google Drive, Slack, and Microsoft Teams, Glean ensures employees can access the right knowledge at the right time, boosting productivity and collaboration. The companyโ€™s cutting-edge AI technology simplifies knowledge discovery, making it faster and more efficient for teams to leverage their collective intelligence.

Glean was born from Founder & CEO Arvind Jainโ€™s deep understanding of the challenges employees face in finding and understanding information at work. Seeing firsthand how fragmented knowledge and sprawling SaaS tools made it difficult to stay productive, he set out to build a better way - an AI-powered enterprise search platform that helps people quickly and intuitively access the information they need. Since then, Glean has evolved into the leading Work AI platform, combining enterprise-grade search, an AI assistant, and powerful application- and agent-building capabilities to fundamentally redefine how employees work.

About the Role:

Glean is looking for an Application Security Engineer with a primary focus on ensuring that our entire technology stack is free of software vulnerabilities (CVEs). This role is responsible for securing our base OS images, ensuring all open-source software (OSS) dependencies are scanned and patched, and integrating cutting-edge security tools into our CI/CD pipeline. The ideal candidate will drive the adoption of solutions like Googleโ€™s Assured Open Source Software (OSS) and explore alternative approaches to enhance software security.

You will:

  • Implement and improve the vulnerability management lifecycle, ensuring our entire tech stack is free from known vulnerabilities/CVEs.
  • Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management.
  • Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early.
  • Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities.
  • Ensure secure posture in SDLC by securing designs, conducting secure code reviews and penetration testing the features.
  • Develop automated security validation tests to enforce vulnerability-free deployments across the stack.
  • Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale.
  • Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

About you:

  • BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience).
  • 5+ years of experience in application security and vulnerability management.
  • Deep understanding of software security vulnerabilities, including CVEs, OWASP Top 10, and supply chain risks.
  • Deep understanding security design principles including but not limited to authentication, authorisation, RBAC, database security.
  • Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP).
  • Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies.
  • Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling.
  • Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure.
  • Knowledge of container security, Kubernetes security, and securing microservices architectures.
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams.
  • A strong proactive approach to security, identifying risks before they become problems.
  • Excellent problem-solving skills and the ability to balance security with performance and usability.
  • Experience working in fast-paced, highly collaborative environments where security is a shared responsibility.
  • Passion for open-source security and keeping up with the latest trends in software vulnerability management.

Location:

  • This role is hybrid (3 days a week in our Bangalore office)

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We’re committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

Share this job:
Please let Glean know you found this job on Remote First Jobs ๐Ÿ™

Similar Remote Jobs

Glean logo

Glean

AI-powered work assistant

  • 11-50 employees
  • Founded in 2019
  • 35 remote jobs
View all jobs

Latest Jobs at Glean

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service ๐Ÿ™

Apply