Zip

Senior Application Security Engineer

Zip4 days ago
Location

San Francisco

Type

Full Time

Salary

USD 160,000 – 220,000

Level

Senior

Role

Senior Application Security Engineer

Posted

Mar 14, 2026

Full TimeSenior

The role

Summary

Zip is seeking a Senior Application Security Engineer to lead critical security initiatives for their innovative procurement platform. The ideal candidate will design technical controls, support secure product development, and help protect customer data while enabling the company's rapid growth and expansion into new markets.

What you'll do

Security Controls Design: Design and implement technical controls to eliminate or mitigate classes of security vulnerabilities across the platform
Secure Product Development: Support development of secure products through comprehensive security assessments, including design reviews, threat modeling, and static/dynamic scanning
Security Validation: Validate, triage, and coordinate security findings from bug bounty programs and third-party penetration tests
Security Mentorship: Mentor security analysts and security champions on advanced security best practices and techniques

What we look for

Technical

Production Code DevelopmentExperience writing high-quality production code for security tooling and services
Web SecurityExpertise in web application, API, and cloud environment security
Security Risk AssessmentStrong understanding of security risks and ability to balance security requirements with business objectives

Education

Cybersecurity DegreeBachelor's degree in Computer Science, Cybersecurity, or related technical field preferred

Experience

Security EngineeringProven experience in application security, preferably in high-growth technology companies
Cloud SecurityHands-on experience with cloud security in AWS or similar cloud environments

Skills

Required skills

PythonProduction-level Python programming skills
Cloud SecurityAdvanced knowledge of cloud security principles and practices
Security AssessmentProficiency in security vulnerability assessment and mitigation techniques

Nice to have

Compliance FrameworksExperience with SOC 2, ISO 27001, and FedRAMP compliance standards
Offensive SecurityBackground in offensive security techniques, bug bounty programs, or Capture The Flag (CTF) competitions

Compensation & benefits

Salary

USD 160,000 – 220,000 (annual)

Stock options

Available

Benefits

Startup Equity

Opportunity to receive company stock options

Comprehensive Healthcare

100% coverage for health, vision, and dental insurance

Flexible PTO

Unlimited paid time off policy

Home Office Stipend

Financial support for home office setup

Commuter Benefits

Monthly commuter expense reimbursement

Parental Leave

Paid parental leave program

Fertility Support

Fertility treatment financial stipend

401k Plan

Retirement savings plan with potential company matching

Interview process

  1. 1
    Initial Screening Preliminary review of application and resume by recruiting team
  2. 2
    Technical Phone Screen Detailed discussion of security engineering experience and technical capabilities
  3. 3
    Security Design Challenge Technical assessment involving security architecture and vulnerability mitigation scenarios
  4. 4
    On-site/Virtual Interviews Multiple interview rounds with security team, engineering leadership, and potential teammates
  5. 5
    Final Executive Interview Concluding interview with senior leadership to assess cultural fit and strategic alignment
Apply for this position

You'll be redirected to the company's application page

Zip

Zip

View all jobs

Zip provides an intake-to-pay platform designed to streamline procurement processes, automate approvals, and improve visibility and control for organizations.

San Francisco, CA, USAFounded 2019ziphq.com

Tech Stack

Languages
Python
Frameworks
ReactGraphQL
Tools
KubernetesAWS
Apply Now

On this page