tatari

Senior Application Security Engineer

Apply Now

At a Glance

Location
San Francisco, California, United States
Work Regime
hybrid
Compensation
Benefits: Total compensation ($165,000-$190,000) Equity compensation Health i
Posted
2026-06-11T12:52:00-04:00

Key Requirements

Required Skills

AWSJavaKubernetesPythonRust

Domain Knowledge

  • Automation
  • Engineering
  • SaaS

Benefits & Perks

Time Off

ductivity Perk Unlimited PTO and sick days Monthly Company

Health Insurance

Equity compensation Health insurance coverage for you and your dependents 40

Requirements

Production Python experience with the engineering depth to review code meaningfully and build security tooling; Java or Rust is a bonus

Significant hands-on application security experience, ideally at a SaaS company, including working knowledge of established standards (OWASP Top 10, API Security Top 10, ASVS, SPVS, AISVS) and how common vulnerability classes manifest in production systems

Threat modeling experience with Product and Engineering teams

Experience building security tooling or automation (scripts, pipelines, libraries)

Familiarity with AWS and Kubernetes security controls as they relate to application-layer risks

Working knowledge of how LLMs introduce new attack surfaces and how to mitigate them, with practical experience using AI tools in security or engineering workflows

Compensation & Benefits

Total compensation ($165,000-$190,000)

Equity compensation

Health insurance coverage for you and your dependents

401K, FSA, and commuter benefits

$150 monthly spending account

$1,000 annual continued education benefit

Responsibilities

As our first dedicated Application Security Engineer, you will define the security architecture for everything we ship.

You will work directly with our Engineering teams to identify vulnerabilities, design mitigations, and build the tooling and automation that makes secure development the path of least resistance.

You will report to the Head of Security as a key technical contributor to Tatari's Security program.

You write production-quality code.

And you know how to bring engineers along with you.

Design and execute greenfield AppSec initiatives across Tatari's SaaS platform from threat modeling to remediation