Application Security Engineer
About The Position
Valence has built the only first-to-market AI native coaching platform for enterprise, offering personalized, expert, and human-like guidance and support to any leader or employee. We’re not just talking about the future of work — we’re building it now, with the most innovative Fortune 500 companies across healthcare, financial services, manufacturing, and technology. Our focus is on the problems that actually decide whether AI changes how organizations operate — the ones with no playbook, no obvious answers, and no guarantee of success. If you want to be part of the small group that defines how AI transforms the future at a global scale, this is your chance. And this isn’t for everyone. We’re not looking for people who want predictability or incremental progress. We only want those who are restless at the edge of what’s possible, who get bored when things feel “done,” and who are driven to redefine what AI can mean for leaders, companies, and the world. Because at Valence, the work worth doing is the kind that redefines work itself. The Role We are seeking a seasoned Application Security Engineer to help us secure our products and platform that serve our Fortune 500 customers. In this pivotal role, you will be working in close partnership with our engineering teams, ensuring that everything they build holds up to our security standards. While your primary focus will be application security, you are joining a small, elite team, and as such you will also work cross-domain, including working with MDM, or talking with customers directly.
Requirements
- Proven experience securing products & platforms, collaborating with development teams
- Strong expertise in application security: OWASP Top 10, threat modeling, code reviews, architecture design
- Proficiency with AI tooling, as part of your day-to-day activities
- Solid understanding of AI itself, including AI threats, adversarial testing
- Familiarity with AWS and infrastructure security overall
- Be comfortable writing and reviewing Python and TypeScript, with other coding experience a plus
- Experience with incident response and SOC processes
- Knowledge of compliance frameworks: SOC 2, ISO 27001, NIST
- Experience with enterprise security processes, such as security questionnaires and client calls
Nice To Haves
- We don’t expect candidates to have deep expertise in every area; strength in application security with curiosity and adaptability across adjacent domains is key
Responsibilities
- Stay ahead of engineering: review code, architecture, design, anything that’s being considered for release
- Guide features and designs toward security
- Provide hands-on manual pentesting on relevant code changes
- Build and maintain security tooling to ensure security scales with organisation
- Advise the DevOps team on infrastructure security best practices
- Help out with client-facing security needs, such as client calls
Benefits
- Competitive salary including base + bonuses
- Comprehensive health coverage (medical, dental, vision) from day one
- Generous PTO, company-wide R&R shutdowns, and paid parental leave
- Retirement plan support for US and global employees
- A WFH stipend, phone stipend and support to work in a We Work or other space as preferred.
- Meaningful ownership in a venture-backed company at a growth inflection point
- Financial upside that comes from scaling fast
- Top-up grants as we scale and you deliver exceptional performance — your compensation grows alongside your impact
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
