Back to Jobs
Bangalore, India Hybrid Full-time

Glean is hiring an Application Security Engineer

Responsibilities

  • Implement and improve the vulnerability management lifecycle, ensuring our entire tech stack is free from known vulnerabilities/CVEs
  • Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management
  • Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early
  • Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities
  • Ensure secure posture in SDLC by securing designs, conducting secure code reviews and penetration testing the features
  • Develop automated security validation tests to enforce vulnerability-free deployments across the stack
  • Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale
  • Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean

Requirements

  • BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience)
  • 3+ years of experience in application security and vulnerability management
  • Deep understanding of software security vulnerabilities, including CVEs, OWASP Top 10, and supply chain risks
  • Deep understanding security design principles including but not limited to authentication, authorisation, RBAC, database security
  • Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP)
  • Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies
  • Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling
  • Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure
  • Knowledge of container security, Kubernetes security, and securing microservices architectures
  • Ability to lead cross-functional initiatives and drive security adoption within engineering teams
  • A strong proactive approach to security, identifying risks before they become problems
  • Excellent problem-solving skills and the ability to balance security with performance and usability
  • Experience working in fast-paced, highly collaborative environments where security is a shared responsibility
  • Passion for open-source security and keeping up with the latest trends in software vulnerability management

Work Arrangement

Hybrid — Bangalore

Additional Information

  • This role is hybrid (3 days a week in our Bangalore office)
  • We are committed to an inclusive and diverse company
  • We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race
Required Skills
Package managersPythonJava
About company
Glean
Glean is the Work AI platform that helps everyone work smarter with AI. It evolved from advanced enterprise search into a full-scale Work AI ecosystem, powering intelligent Search, an AI Assistant, and scalable AI agents on a secure, open platform. Glean offers enterprise SaaS connectors, flexible LLM choice, and robust APIs to help organizations govern, scale, and customize AI across their business. Its Enterprise Graph and Personal Knowledge Graph map relationships between people, content, and activity to deliver personalized, context-aware responses and AI agents that automate work across teams.
All jobs at Glean Visit website
Job Details
Category security
Posted 5 hours ago