Security Engineer, Application Security

About this role

OpenAI seeks an Application Security Engineer to identify and mitigate software vulnerabilities through code reviews, penetration testing, and security tool development. You'll partner with development teams to embed secure coding practices throughout the software development lifecycle while fostering organizational security awareness.

What you'll do

• Conduct security assessments, code reviews, and penetration testing to identify application vulnerabilities
• Design and implement security tools, frameworks, and methodologies to protect against threats
• Collaborate with development teams to integrate security best practices into the SDLC
• Perform threat modeling and risk assessments to proactively identify mitigation strategies
• Track and manage application vulnerabilities, guiding remediation efforts
• Support incident response investigations and provide security guidance to developers

What they're looking for

• Application security and secure coding practices
• Penetration testing and vulnerability assessment
• Programming languages (Python, Java, C++, etc.)
• Security tools (Burp Suite, OWASP ZAP)
• Threat modeling and risk assessment
• Security protocols and encryption methods
• Incident response
• Technical and non-technical communication

Benefits

• Hybrid work model (3 days in office per week)
• Relocation assistance available
• Work on cutting-edge AI security challenges
• Collaborative security-focused culture
• Flexibility across San Francisco, Seattle, or New York City locations