[Hiring] Application Security Engineer @Brex

Role Description

As an Application Security Engineer, you will contribute to finding and responding to security vulnerabilities across the Brex platform. In this role, you will:

• Participate in code reviews, design reviews, penetration testing, and vulnerability management.
• Contribute to tooling that performs static and dynamic testing of the Brex platform and supports secure developer workflows.
• Work closely with Security Operations, GRC, Product Security, Front End Platform, and IT Infrastructure teams.

This role is highly cross-functional, allowing you to collaborate with engineering teams across Brex and grow your security expertise in a fast-moving environment.

You'll apply emerging AI security best practices to help secure our agentic features and identify attack surfaces introduced by LLM-powered systems.

Qualifications

• 4+ years of work experience in Application Security or a related role.
• Demonstrated ability to find and document vulnerabilities in complex systems, with clear communication of business risk.
• Hands-on experience with secure development activities, such as code review, threat modeling, or penetration testing.
• Experience identifying security risks in AI/ML systems through work experience, personal projects, CTFs, or bug bounties.
• Familiarity with agentic workflows and reasoning about attack surfaces introduced by LLM-powered features.
• Knowledge of Python or scripting languages to automate tasks and build tooling.
• Collaborative mindset paired with strong written and verbal communication skills.

Requirements

• Experience with Kotlin, gRPC, GraphQL, Kubernetes.
• Previous experience as a software engineer.
• Experience with securing distributed systems in AWS and cloud environments.
• Experience with web application security reviews.
• Contributions to the wider technical community — open source, public research, CTF participation, blogging, CVEs, or presentations.
• Experience submitting to bug bounty or responsible disclosure programs.
• Published AI security research or contributions to AI security frameworks.

Benefits

• The expected salary range for this role is $152,000 - $190,000.
• Starting base pay will depend on factors including location, skills, experience, market demands, and internal pay parity.
• Equity and other forms of compensation may be provided as part of a total compensation package.