tatari
Senior Application Security Engineer
At a Glance
- Location
- San Francisco, California, United States
- Work Regime
- hybrid
- Compensation
- Benefits: Total compensation ($165,000-$190,000) Equity compensation Health i
- Posted
- 2026-06-11T12:52:00-04:00
Key Requirements
Required Skills
Domain Knowledge
- Automation
- Engineering
- SaaS
Benefits & Perks
ductivity Perk Unlimited PTO and sick days Monthly Company
Equity compensation Health insurance coverage for you and your dependents 40
Requirements
Production Python experience with the engineering depth to review code meaningfully and build security tooling; Java or Rust is a bonus
Significant hands-on application security experience, ideally at a SaaS company, including working knowledge of established standards (OWASP Top 10, API Security Top 10, ASVS, SPVS, AISVS) and how common vulnerability classes manifest in production systems
Threat modeling experience with Product and Engineering teams
Experience building security tooling or automation (scripts, pipelines, libraries)
Familiarity with AWS and Kubernetes security controls as they relate to application-layer risks
Working knowledge of how LLMs introduce new attack surfaces and how to mitigate them, with practical experience using AI tools in security or engineering workflows
Compensation & Benefits
Total compensation ($165,000-$190,000)
Equity compensation
Health insurance coverage for you and your dependents
401K, FSA, and commuter benefits
$150 monthly spending account
$1,000 annual continued education benefit
Responsibilities
As our first dedicated Application Security Engineer, you will define the security architecture for everything we ship.
You will work directly with our Engineering teams to identify vulnerabilities, design mitigations, and build the tooling and automation that makes secure development the path of least resistance.
You will report to the Head of Security as a key technical contributor to Tatari's Security program.
You write production-quality code.
And you know how to bring engineers along with you.
Design and execute greenfield AppSec initiatives across Tatari's SaaS platform from threat modeling to remediation