Senior Application Security Engineer

· Remote

Location

Remote

Type

Full Time

Job Description

Senior Application Security Engineer

Posted 11 Hours Ago
Easy Apply
Be an Early Applicant
3 Locations
Remote
139K-250K Annually
Senior level
Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
Webflow is the AI-native platform that lets anyone build manage and scale powerful code-free web experiences.
The Role
As a Senior Application Security Engineer you will secure Webflow's applications implement secure development practices and mentor junior engineers.
Summary Generated by Built In

At Webflow our mission is to bring development superpowers to everyone. As the pioneer of the Website Experience Platform (WXP) we’re redefining how teams Build Manage and Optimize for the web — combining visual development powerful content management systems AI-driven personalization seamless hosting and end-to-end analytics in a single unified platform. With AI at the core Webflow helps teams move faster create more performant digital experiences and scale without heavy engineering support. From independent designers and creative agencies to global enterprises hundreds of thousands of organizations use Webflow to turn ideas into reality — and to power what’s possible on the web.

We’re looking for a Senior Application Security Engineer to help us level up Webflow’s secure development practices ranging from secure coding tooling and improving procedures.

About the role:
  • Location: Remote-first (United States; BC & ON Canada)
  • Full-time
  • Temporary 
  • Exempt
  • The cash compensation for this role is tailored to align with the cost of labor in different geographic markets. We've structured the base pay ranges for this role into zones for our geographic markets and the specific base pay within the range will be determined by the candidate’s geographic location job-related experience knowledge qualifications and skills.
    • United States  (all figures cited below are in USD and pertain to workers in the United States)
      • Zone A: $158000 - $238000
      • Zone B: $149000 - $224000
      • Zone C: $139000 - $210000
    • Canada (figures cited below are in CAD and pertain to workers in ON & BC Canada)
      • $199000 - $250000

This role is also eligible to participate in Webflow's company-wide bonus program. Target amounts are a percentage of base salary and vary by career level. Payouts are based on company performance against established financial and operational goals. 

Please visit our Careers page for more information on which locations are included in each of our geographic pay zones. However please confirm the zone for your specific location with your recruiter.

Reporting to the Sr. Manager Application Security

As a Senior Application Security Engineer you’ll… 

  • Collaborate with the Webflow engineering team to secure Webflow’s web application platform and ecosystem.
  • Bring security best practices to the software development lifecycle.
  • Work as part of a team to champion security standards while balancing business strategies and requirements.
  • Support Webflow’s security current and future compliance frameworks
  • Work to find security vulnerabilities through grey-box techniques and propose solutions at the architecture and code level to mitigate findings.
  • Contribute code and architecture improvements to enable security within Webflow’s application for engineers.
  • Cross-train entry level application security engineers

In addition to the responsibilities outlined above at Webflow we will support you in identifying where your interests and development opportunities lie and we'll help you incorporate them into your role.

About you:

Requirements:

    • BA/BS degree or equivalent experience
    • You bring 5+ years of application security experience including hands-on software development and have worked on securing high-complexity large-scale applications.
    • You have experience in secure software design secure coding and modern web application security with ability to identify security design flaws and business-logic vulnerabilities and to drive risk-based remediation with engineering teams.
    • You have led threat modeling efforts and/or conducted penetration testing or manage third-party pentests ensuring findings are clearly documented communicated and remediated to completion.
    • You have managed one or more of application security programs or tooling initiatives such as SCA Supply Chain SAST DAST and /or led bug bounty programs
    • You have contributed to security controls within large-scale solutions including designing and/or delivering security features directly into applications (e.g. authorization models security controls or admin-level protections) in close collaboration with engineering and partner orgs.
    • You have experience using and building automation that leverage agentic AI including applying AI coding agents to scale security reviews detection and automation responsibly.
    • You have participated in response efforts for application security incidents from triage and containment through remediation and post-incident improvements
    • Stay curious and open to growth — actively building fluency in emerging technologies like AI to unlock creativity accelerate progress and amplify impact.
Our Core Behaviors:
  • Build lasting customer trust. We build trust by taking action that puts customer trust first.
  • Win together. We play to win and we win as one team. Success at Webflow isn't a solo act.
  • Reinvent ourselves. We don't just improve what exists we imagine what's possible.
  • Deliver with speed quality and craft. We move fast because the moment demands it and we do so without lowering the bar.
Benefits & wellness
  • Equity ownership (RSUs) in a growing privately-owned company
  • 100% employer-paid healthcare vision and dental insurance coverage for full-time employees (working 30+ hours per week) and their dependents. Full-time employees may also be eligible for voluntary insurance options where applicable in the respective country of employment
  • 12 weeks of paid parental leave for both birthing and non-birthing caregivers as well as an additional 6-8 weeks of pregnancy disability leave for birthing parents to be used before child bonding leave (note: where local requirements are more generous employees receive the greater benefit); full-time employees also have access to family planning care and reimbursement
  • Flexible PTO for all locations and sabbatical program
  • Access to mental wellness and professional coaching therapy and Employee Assistance Program
  • Monthly stipends to support work and wellness
  • 401k plan or pension schemes (in countries where statutorily required) and other financial wellness benefits like CPA and financial advisor coverage

Temporary employees may be eligible for paid holiday and time off statutory leaves of absence and company-sponsored medical benefits depending on their Fixed Term Contract and their country/state of employment.

Remote together

At Webflow equality is a core tenet of our culture. We are an Equal Opportunity (EEO)/Veterans/Disabled Employer and are committed to building an inclusive global team that represents a variety of backgrounds perspectives beliefs and experiences. Employment decisions are made on the basis of job-related criteria without regard to race color religion sex sexual orientation gender identity national origin disability veteran status or any other classification protected by applicable law. Pursuant to the San Francisco Fair Chance Ordinance Webflow will consider for employment qualified applicants with arrest and conviction records.

Stay connected

Not ready to apply but want to be part of the Webflow community? Consider following our story on our Webflow Blog LinkedIn X (Twitter) and/or Glassdoor. 

Please note:

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process to perform essential job functions and to receive other benefits and privileges of employment. Upon interview scheduling instructions for confidential accommodation requests will be administered.

To join Webflow you'll need a valid right to work authorization depending on the country of employment.

If you are extended an offer that offer may be contingent upon your successful completion of a background check which will be conducted in accordance with applicable laws. We may obtain one or more background screening reports about you solely for employment purposes.

For information about how Webflow processes your personal information please review Webflow’s Applicant Privacy Notice


Top Skills

Ai Coding Agents
Application Security
Dast
Penetration Testing
Sast
Sca Supply Chain
Secure Coding
Threat Modeling

What the Team is Saying

Sef N.
Lauren S.
Henry L.
Am I A Good Fit?
beta
Expert contributor network
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: San Francisco CA
800 Employees
Year Founded: 2013

What We Do

Webflow empowers teams — from startups to the Fortune 500 — to design build and grow for the web all without writing a single line of code. Simply put: we’re changing the way the internet gets built. Instead of relying on long dev cycles or heavy engineering support Webflow lets teams move from idea to launch faster — bringing creativity and speed together in one place. Designers marketers and developers use Webflow to collaborate visually experiment freely and publish confidently. Whether you’re launching your first landing page or reimagining a global brand site Webflow gives you the flexibility to do it your way. More than 300000 organizations use Webflow to build experiences that connect with their audiences and scale with their ambitions. Our customers span industries and time zones but they share the same goal: to create beautiful performant websites that grow their business and tell their story. As the web evolves we’re building for what’s next. Our AI-native platform helps teams design smarter publish faster and optimize every part of their web presence all from one connected workspace.

Why Work With Us

At Webflow you’ll do work that challenges and inspires you. We’re a remote-first team that values creativity growth and balance—where you’re trusted to take risks learn fast and build what’s next for the web together.

Gallery

Webflow Offices

Remote Workspace

Employees work remotely.

Our remote-first and global mobility policy supports the best of both worlds: You have the flexibility of working from home (or anywhere you want) plus opportunities to spend time with your colleagues in person at one of our offices or team offsites

Typical time on-site: None
Company Office Image
HQSan Francisco
Company Office Image
Buenos Aires
Company Office Image
Chicago
Company Office Image
London
Learn more

Similar Jobs

Webflow

Senior Manager People Technology

Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
Easy Apply
Remote
U.S.
800 Employees
152K-215K Annually

Webflow

Senior Solutions and CS Enablement Business Partner

Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
Easy Apply
Remote
U.S.
800 Employees
126K-175K Annually

Webflow

Staff Engineer

Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
Easy Apply
Remote
3 Locations
800 Employees
194K-398K Annually

Webflow

Senior Forward Deployed Engineer

Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
Easy Apply
Remote
U.S.
800 Employees
143K-210K Annually
Apply Now

Date Posted

04/14/2026

Views

0

Back to Job Listings Add To Job List Company Profile View Company Reviews
Neutral
Subjectivity Score: 0
142,000+ Jobs Tracked
12,400+ Companies
1,930 Categories