Webflow
Webflow is the way to design, build, and launch powerful websites visually — without coding.
Staff Application Security Engineer
Application EngineerApplication EngineerFull TimeRemoteTeam 501-1,000Since 2013H1B SponsorCompany SiteLinkedIn
Location
California
Posted
49 days ago
Salary
$164K - $247K / year
Bachelor Degree7 yrs expEnglishSDLC
Job Description
• Collaborate with the Webflow engineering team to secure Webflow’s web application platform and ecosystem.
• Bring security best practices to the software development lifecycle.
• Champion security standards while balancing business strategies and requirements.
• Support Webflow’s security compliance frameworks
• Find security vulnerabilities through grey-box techniques
• Propose solutions at the architecture and code level.
• Contribute code and architecture improvements to enable security within Webflow’s application.
• Cross-train entry and mid-level application security engineers.
Job Requirements
- BA/BS degree or equivalent experience
- 7+ years of application security experience
- Hands-on software development experience
- Technical authority in securing high-complexity, large-scale applications
- Deep expertise in secure software design, secure coding, and modern web application security
- Proven ability to identify security design flaws and complex business-logic vulnerabilities
- Experience leading threat modeling efforts
- Conduct and oversee advanced penetration testing
- Manage third-party pentests
- Designed, implemented, and evolved software supply chain security programs
- Owned or led bug bounty programs and major security tooling initiatives
- Implemented and improved Secure Development Lifecycle (SDLC) processes at scale
- Driven multi-quarter application security roadmaps and complex security programs
- Led security initiatives within large-scale solutions
- Experience using and building security solutions that leverage agentic AI
- Participated in and led response efforts for application security incidents
- Actively mentor and elevate other application security engineers
- Passion for security and continuous learning
- Ability to explain complex security concepts clearly.
Benefits
- Ownership in what you help build.
- Health coverage that actually covers you.
- Support for every stage of family life.
- Time off that’s actually off.
- Wellness for the whole you.
- Invest in your future.
- Monthly stipends that flex with your life.
- Bonus for building together.
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
Staff Application Security Engineer
ThumbtackWe help people care for their home from top to bottom — and empower small businesses nationwide to grow.
Application Engineer49 days ago
Full TimeRemoteTeam 1,001-5,000H1B Sponsor
Staff Application Security Engineer at Thumbtack managing application security direction
AWSCloudGoogle Cloud Platform
Application Engineer50 days ago
Full TimeRemoteTeam 1,001-5,000Since 2006H1B Sponsor
Senior VoIP Application Engineer developing reliable VOIP applications for Nextiva
AWSAzureCloudFirewallsGoogle Cloud PlatformJavaJavaScriptNoSQLPythonSQLVoIP
Application Engineer50 days ago
Full TimeRemoteTeam 1,001-5,000H1B No Sponsor
Applications Engineer III developing technical solutions for new equipment
Oracle
United States
Application Security Engineer – Public Trust/Secret Clearance
TOMORROW HIRETOMORROW HIRE is revolutionizing the staffing industry by integrating advanced AI technology with deep human expertise.
Application Engineer50 days ago
Full TimeRemoteTeam 1-10Since 2024H1B No Sponsor
Application Security Engineer supporting secure development of federal applications
JavaLinuxPythonSeleniumUnix.NET
District of Columbia + 1 moreAll locations: District of Columbia, Washington
$120K - $140K / year
