Application Security Engineer

Department: Security | Team: Security

Perplexity is seeking a highly skilled, experienced and hands-on Application Security Engineer to join our dynamic security team, revolutionizing the way people search and interact with the internet. You’ll build the systems, tools, and processes that make security seamless for developers and strong by default, enabling rapid innovation while protecting our users at scale.

Responsibilities

• Design and implement scalable, developer-friendly security solutions that integrate directly into engineering workflows

• Lead threat modeling, design reviews, and code reviews for new features and major product launches

• Build and evolve secure-by-default frameworks for authentication, authorization, input validation, and secrets management

• Develop and integrate automated security tooling into CI/CD pipelines (e.g., linters, dependency scanners, policy enforcement)

• Collaborate with product and engineering teams to remediate vulnerabilities, and contribute to incident response and postmortems

• Own, manage, and improve our third-party penetration testing engagements and bug bounty program, working closely with external security researchers to identify and resolve vulnerabilities

• Stay current on emerging threats and attack techniques, and drive ongoing maturity of our application security posture

Qualifications

• 8+ years of experience in Application Security, Product Security, or similar roles

• Deep understanding of secure software development practices, threat modeling, and common vulnerabilities (e.g., OWASP Top 10)

• Familiarity with modern authentication and authorization patterns (OAuth, OIDC, SSO, Zero Trust)

• Proven track record of building secure infrastructure, reusable libraries, or developer tooling

• Proficiency with at least one major programming language (e.g., Python, Go, JavaScript, Java)

• Bonus: Experience with securing cloud infrastructure or AI/ML systems