Zocdoc's most important asset is our people. As an Application Security Engineer, you’ll play a meaningful role in helping our development organization build secure software with confidence. In this role, you’ll work closely with our Compliance, Security, and Engineering teams to support our secure software development lifecycle, strengthen application security governance, and help shape emerging AI governance guardrails across the business. You'll enjoy this role if you... Personally motivated by helping teams build secure software and reduce risk before issues reach production. Autonomous, urgent, and creative. You genuinely love turning security requirements into practical guidance for developers. Highly collaborative and energized by partnering with engineering squads across the software development lifecycle. Passionate about application security, secure coding, and improving how teams work within modern development environments. A clear communicator who can make security concepts approachable and actionable for technical partners. The kind of person who is excited by emerging technology trends, especially AI security risks and automated workflows. Serious about your work, but not about yourself. Your day to day is... Serving as an accessible point of contact for engineering squads, helping teams understand and follow secure development lifecycle guidelines. Assisting developers in reviewing and interpreting alerts from static analysis and software composition analysis tools, including helping distinguish true vulnerabilities from false positives. Providing clear, actionable guidance on remediating common application security vulnerabilities, including issues aligned to the OWASP Top 10. Helping maintain internal security documentation, developer playbooks, and secure coding training materials so that compliance expectations are clear and achievable. Supporting application security governance by tracking key security milestones and organizing technical evidence from repositories and deployment pipelines for compliance audits. Monitoring application security metrics, including vulnerability patch timelines and policy exceptions, to support regular leadership reporting. Working with cutting-edge GenAI tools and technology while supporting AI governance frameworks and helping ensure AI-enabled workflows align with privacy and security guardrails.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree