Karbon
AppSec Engineer
Austin, TX, United States; Chicago, IL, United States; Denver, CO, United States; Los Angeles, CA, United States; San Diego, CA, United States; San Francisco, CA, United StatesFrom $169kmidAdded 2 days ago
About this role
Karbon, an AI-powered practice management software leader, is hiring an AppSec Engineer to embed security practices across development and cloud infrastructure. You'll balance security rigor with delivery speed, leverage AI tools to enhance security work, and collaborate with engineering teams to identify and mitigate risks.
What you'll do
- Embed security into feature design, development processes, and architectural reviews through threat modeling and design participation
- Assess and communicate security risks from AI tool adoption and AI-generated code to both technical and non-technical stakeholders
- Apply AI-assisted tooling for code review, threat detection, vulnerability triage, and security documentation
- Partner across engineering teams to balance security requirements with delivery timelines and help resolve trade-offs
- Stay current on emerging security technologies, threats, and foundational practices like account hygiene and least privilege access
- Support multiple security domains including corporate IT security, cloud systems, and detection rule optimization
What they're looking for
- Application security (AppSec) and secure development practices
- Cloud security and infrastructure security
- Threat modeling and security design reviews
- AI security fundamentals and risk assessment
- Security communication to technical and non-technical audiences
- Vulnerability assessment and triage
- Network and security fundamentals
- AI-assisted security tooling and automation
Benefits
- Work at a well-funded, rapidly growing company ranked #1 on G2
- Flexible work across multiple U.S. locations (Austin, Chicago, Denver, Los Angeles, San Diego, San Francisco)
- Great Place to Work® certified with Fortune Best Small Workplaces recognition
- Globally distributed team with hybrid and distributed work options
- Opportunity to influence security practices at a fast-growing organization
- Exposure to diverse security domains and modern AI-integrated development practices
Opens the official application on the employer’s site. No login required.