Application Security Engineer, AI Security

About this role

Notion seeks an Application Security Engineer to secure its AI products and features. You'll design security models, conduct red teaming for AI-specific threats like prompt injection, and guide product teams on secure architecture while preventing vulnerabilities at scale.

What you'll do

• Define security models for Notion's AI products and guide engineering teams on enterprise security requirements
• Perform hands-on testing and develop automated red teaming for AI and agentic features, focusing on prompt injection risks
• Provide architectural solutions and design guidance to make secure development the easiest path for teams
• Educate developers on security and privacy best practices using AI-assisted tools and preventative mechanisms
• Lead and participate in application security incident response and mitigation strategies
• Stay current with AI security threats and emerging vulnerabilities in LLM-based systems

What they're looking for

• Security architecture and secure software design (6+ years experience)
• Application security and threat modeling expertise
• AI security knowledge, including prompt injection and LLM vulnerabilities
• Problem decomposition and technical solution design
• Clear communication of complex security concepts to non-security teams
• Familiarity with AI development tools (Cursor, Claude, etc.)
• Pragmatic, business-oriented decision-making
• Startup environment adaptability and self-motivation

Benefits

• Work on securing AI products at a hyper-growth company
• Hybrid work model with office anchor days in San Francisco or New York City
• Opportunity to shape security standards for AI-era products
• Collaborative environment with cross-functional product and engineering teams