Security Engineer, Application Security

About this role

OpenAI is seeking an Application Security Engineer to identify and mitigate software vulnerabilities through code reviews, penetration testing, and security tool development. You'll work with development teams to embed secure coding practices throughout the SDLC and foster security awareness across the organization.

What you'll do

• Conduct security assessments, code reviews, and penetration testing to identify application vulnerabilities
• Design and implement security tools, frameworks, and methodologies to protect applications
• Collaborate with development teams to integrate security best practices into the software development lifecycle
• Perform threat modeling and risk assessments to proactively identify and mitigate potential risks
• Track, analyze, and manage vulnerabilities while guiding remediation efforts
• Support incident investigation, analysis, and response for application security incidents

What they're looking for

• Application security and secure coding practices
• Code review and penetration testing
• Programming languages (Python, Java, C++, or similar)
• Security tools (Burp Suite, OWASP ZAP)
• Threat modeling and risk assessment
• Security protocols and encryption methods
• Incident response
• Technical and non-technical communication

Benefits

• Hybrid work model (3 days per week in office)
• Relocation assistance available
• Based in San Francisco, Seattle, New York City, or remote consideration
• Work on AI safety and transformative technology
• Equal opportunity employer with comprehensive non-discrimination policy