about 3 hours ago
Base Salary
$165k - $190k/yr
Responsibilities
- Design and execute greenfield AppSec initiatives across Tatari's SaaS platform.
- Build and maintain security automation integrated into CI/CD pipelines.
- Own container security across build and runtime.
- Develop internal tooling and libraries for secure coding.
- Manage SAST/DAST/SCA tooling selection and integration.
- Conduct application security reviews and threat models.
- Identify and remediate vulnerabilities across APIs and services.
- Establish secure coding standards with Engineering teams.
- Assess and mitigate risks introduced by LLMs.
- Integrate agentic tooling into AppSec workflows.
- Contribute to security incident response for application-layer issues.
Requirements
- Production Python experience with the ability to review code and build security tooling.
- Significant hands-on application security experience, ideally in a SaaS environment.
- Experience with established security standards like OWASP Top 10.
- Threat modeling experience with Product and Engineering teams.
- Experience building security tooling or automation.
- Familiarity with AWS and Kubernetes security controls.
- Knowledge of LLMs and their associated risks.
- Experience reviewing API designs for security vulnerabilities.
- Track record of embedding with Engineering teams for code review and standards definition.
- Experience building or maturing an AppSec program from scratch.
Benefits
- Total compensation between $165,000-$190,000.
- Equity compensation.
- Health insurance coverage for you and your dependents.
- 401K, FSA, and commuter benefits.
- $150 monthly spending account.
- $1,000 annual continued education benefit.
- $500 Newbie Productivity Perk.
- Unlimited PTO and sick days.
- Monthly Company Wellness Day Off.
- Snacks, drinks, and catered lunches at the office.
- Team building events.
- Hybrid RTO of 2 days per week in office.