
Application Security Engineer
3 semanas atrás
We are seeking an experienced Application Security Engineer to serve as a trusted partner to our software development teams. This role focuses on making our product secure by design—embedding security into how software is architected, written, deployed, and maintained. Unlike infrastructure security roles, this position centers on application-layer and code-level security, working closely with developers to enable fast, confident delivery by providing meaningful, actionable security tooling and feedback. This includes leveraging modern AI-assisted techniques to accelerate vulnerability analysis, exploit chaining, and demonstration of actual risk. You will ensure engineering teams move faster—not slower—while minimizing noise. This role is part of the IT & Security team and prioritizes embedding guardrails into developer workflows rather than enforcement gates.
About NerdyAt Nerdy (NYSE: NRDY) - the company behind Varsity Tutors - we\'re redrawing the blueprint of learning. Our Live + AI platform fuses real-time human expertise with proprietary generative-AI systems, setting a new bar for measurable academic impact at global scale. We recruit the kind of technologists and operators you\'d bet on as solo founders - people who turn ambiguous problems into shipping code, iterate faster than markets move, and compound their advantage with every data point. In an era where great employees can deliver 10-times the leverage of the merely good, we back those who play to win.
How we compete- AI-Native at every level From the CEO to day-one hires, everyone builds and ships with generative AI. If you\'re not wielding AI, you\'re not done.
- Entrepreneurial velocity Move at founder speed, prototype in hours, and measure in real user outcomes. Slow teams die.
- Free-market rigor Ideas rise or fall on merit and results - no committees, no politics, no cap on upside.
- Full-stack ownership You design, build, and run what you ship; accountability is a feature, not a bug.
- Reward for contribution Pay rises with impact, not years. Outstanding results earn outsized rewards. We evaluate both what you achieve and how you achieve it: living our leadership principles and using AI effectively are formally measured and rewarded.
- Relentless exploration Push the frontier of generative AI in live learning and - because only the paranoid survive - questioning every legacy assumption along the way.
- Is Apolitical You stay focused on mission-aligned outcomes, not distractions or unrelated causes.
Required :
- Experience as an Application Security Engineer, Security Consultant, or Security-focused Software Engineer.
- Strong understanding of secure coding practices and common vulnerability patterns.
- Ability to apply common web application attack techniques and create proof-of-concept exploits to validate whether vulnerabilities are exploitable in our environment.
- Proven ability to analyze exploit chains and demonstrate actual risk, leveraging AI to accelerate discovery and validation.
- Hands-on experience integrating security tooling into CI/CD pipelines.
- Familiarity with Ruby, Go, JavaScript/React, and related frameworks.
- Deep familiarity with OWASP guidance, including the OWASP Top 10, ASVS, and Secure Coding Guidelines.
- Partner with DevOps to embed application security into CI/CD pipeline design and practices.
- Ability to assess and communicate application risk in architectural and business context.
- Comfortable demonstrating real-world exploits to technical and non-technical stakeholders.
- Excellent written and verbal communication skills in an async-first, remote environment.
Preferred :
- Experience leveraging and adapting open-source tools and frameworks for application security testing and validation.
- Experience with API security testing and continuous monitoring, leveraging AI for fuzzing, intelligent input generation, and automated discovery.
- Experience building or maintaining secure development training programs.
- Security certifications (OSWE, OSCP, GIAC) are a plus but not required.
- Enable engineering teams to move quickly while embedding security into development workflows—security and speed go hand-in-hand.
- Partner with engineering on secure use of AI services, evaluating controls such as AI gateways, prompt inspection, and policy enforcement.
- Identify, prioritize, and implement security tooling in developer environments and CI/CD pipelines, with AI-assisted triage to reduce noise and highlight exploitable risks.
- Collaborate with developers to identify vulnerabilities in code, APIs, and dependencies; improve secure coding awareness; and participate in design reviews and threat modeling.
- Demonstrate practical exploit techniques to raise security awareness and drive remediation, including chaining multiple weaknesses across services to illustrate end-to-end risk.
- Analyze vulnerabilities across code, dependencies, APIs, and logic, with AI-assisted techniques to identify and prioritize exploit chains.
- Build or adapt automation scripts and tools for continuous security validation, using AI copilots to accelerate script generation and validation.
- Provide coaching, documentation, and embedded training to help developers understand and apply security guidance within their workflows.
- Continuously evaluate emerging AI and application security threats and detection techniques.
- Lead incident response activities as part of the incident commander rotation.
- Drive continuous improvement of incident response runbooks and playbooks.
- Competitive USD Compensation: Enjoy a market-leading rate paid in U.S. dollars.
- 100% Remote (Home Country Only): Work from anywhere in your home country—no relocation required, no borders crossed.
- Flexible Time Off: Our flexible PTO lets you recharge on your own terms and when you need it the most.
- Local Holiday Pay: We honor your nation\'s official holidays with paid time off—celebrate what matters to you.
- Continuous Learning: Get a free, all-inclusive learning membership for you and your household—including 1-on-1 tutoring hours, unlimited on-demand classes, and access to our full suite of learning products and services.
- Supercharge with AI: Gain exclusive access to cutting-edge AI tools that boost your productivity, making you feel almost super-human (cape not included).
- Feedback-Rich, Collaborative Culture: Tap into regular training, peer reviews, and a team that treats every team member as a vital collaborator and owner in our success.
- Make a Global Impact: Your expertise fuels an innovative platform used by learners around the world—be part of something transformative.
If you're driven by impact, energized by ownership, and excited to help shape what's next, you'll thrive here. We move fast, think big, and reward those who deliver. This isn\'t a traditional corporate environment - it's a place to do the most meaningful work of your career.
Job details- Seniority level: Mid-Senior level
- Employment type: Contract
- Job function: Information Technology
- Industries: Technology, Information and Internet
-
Security Software Engineer
3 semanas atrás
Manaus, Amazonas, Brasil Canonical Tempo inteiroJoin to apply for the Security Software Engineer role at Canonical 1 day ago Be among the first 25 applicants Join to apply for the Security Software Engineer role at Canonical Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is widely used in breakthrough...
-
Security Engineer
3 semanas atrás
Manaus, Amazonas, Brasil Varsity Tutors, a Nerdy Company Tempo inteiroSecurity Engineer - Detection & Response Join to apply for the Security Engineer - Detection & Response role at Varsity Tutors, a Nerdy Company Security Engineer - Detection & Response 1 day ago Be among the first 25 applicants Join to apply for the Security Engineer - Detection & Response role at Varsity Tutors, a Nerdy Company Get AI-powered advice on...
-
Software Field Application Engineer
3 semanas atrás
Manaus, Amazonas, Brasil Quectel Tempo inteiroJoin to apply for the Software Field Application Engineer role at Quectel 2 days ago Be among the first 25 applicants Join to apply for the Software Field Application Engineer role at Quectel Get AI-powered advice on this job and more exclusive features. Job SummaryThe Software Field Application Engineer (SW FAE) will provide technical expertise and...
-
Identity Security Engineer
1 semana atrás
Manaus, Amazonas, Brasil Lincoln Electric Tempo inteiroJob Responsibilities The Identity Security Engineer role focuses on managing user identities and access controls to ensure security and compliance. Based on industry standards, the responsibilities include: Designing and Implementing Solutions: The engineer will design, implement, and maintain IGA solutions to manage user identities and access rights,...
-
Site Reliability Engineer ID38563
3 semanas atrás
Manaus, Amazonas, Brasil AgileEngine Tempo inteiroSite Reliability Engineer ID38563 ($3,000 signing bonus)Join to apply for the Site Reliability Engineer ID38563 ($3,000 signing bonus) role at AgileEngine Site Reliability Engineer ID38563 ($3,000 signing bonus)3 weeks ago Be among the first 25 applicants Join to apply for the Site Reliability Engineer ID38563 ($3,000 signing bonus) role at AgileEngine ...
-
Linux Cryptography and Security Engineer
2 semanas atrás
Manaus, Amazonas, Brasil Canonical Tempo inteiroLinux Cryptography and Security Engineer Join to apply for the Linux Cryptography and Security Engineer role at Canonical Overview This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables Ubuntu and its users to operate securely and remain compliant to international...
-
Senior Security Operations Engineer
2 semanas atrás
Manaus, Amazonas, Brasil Canonical Tempo inteiroOverview We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience: at the high end, deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior...
-
Senior Security Operations Engineer
2 semanas atrás
Manaus, Amazonas, Brasil Canonical Tempo inteiroOverviewWe have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience: at the high end, deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior...
-
Secure Web Gateway Engineer
1 semana atrás
Manaus, Amazonas, Brasil beBeeSecurity Tempo inteiro US$180.000 - US$250.000Job Title: Secure Web Gateway EngineerWe are seeking an experienced Staff Engineer to join our Secure Web Gateway team. The ideal candidate will have expertise in designing and developing high-performance data plane services.Design, develop, and implement advanced features on the cloud data plane.Work with complex data structures and algorithms in C, C++,...
-
Golang Engineer
2 semanas atrás
Manaus, Amazonas, Brasil Canonical Tempo inteiroJoin to apply for the Golang Engineer role at Canonical 3 days ago Be among the first 25 applicants Join to apply for the Golang Engineer role at Canonical Canonical is a leading provider of open-source software and operating systems for global enterprise and technology markets. Our platform, Ubuntu, is very widely used in breakthrough enterprise...