Oneleet

Security and Compliance

ApplicationSecurityEngineer

$160–220k Somerset, New Jersey, United States; United States FULL TIME Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Senior candidates.

The Brief

“Application Security Engineer at Oneleet. Skills: Application security, Security tooling, Product security. Own integration, configuration, and output quality of security tooling. Tune outputs to maximize signal and minimize noise”

What You'll Achieve.

Make findings genuinely useful; Make findings actionable; Drive product roadmap priorities; Shape the future of cybersecurity

Industry & Context.

Security and Compliance

Problems you'll solve

Solving hard problems

What They're Looking For.

Must Have

5+ years of application security experience, significant time shipping security products, programming skills in at least one of Go, Python, or TypeScript, Hands-on experience tuning security tooling for production use, Understanding of vulnerability research, CVE/CWE taxonomies, and exploit reasoning, Has worked through what makes a security finding actually actionable vs. just technically true, Excellent communication skills, comfort working directly with customers, knows how to build things fast without unnecessarily complicating things, Experience in a fast-moving, start-up engineering environment

Nice to Have

Prior experience shipping a security product at a vendor, Contributions to open source security tooling, Offensive security background or OSCP / similar certifications, Hands-on experience with LLM agents, tool use, or autonomous AI systems

What You'll Do.

and output quality of security tooling

Tune outputs to maximize signal and minimize noise

Build security judgment layer on top of tooling

Partner with engineers on findings presentation

Work with PM and design on roadmap priorities

Review and shape architectural choices

Engage with customers directly

Benchmark output quality against competitors

Contribute back to open source security tooling

How You'll Work.

Team & Collaboration

Partner with backend and fullstack engineers; Partner with product and design; Be the security voice in product and engineering decisions; Work with PM and design on roadmap priorities

Communication Scope

Clear communicators; Excellent communication skills; Comfort working directly with customers

Full Job Description

ABOUT ONELEET Oneleet is one of the fastest-growing security and compliance platforms in history. We are on a mission to change the compliance and security industry by making cybersecurity and compliance effective, easy, and painless. We provide a platform that helps companies build, manage, and monitor their cybersecurity programs and achieve compliance standards such as SOC 2 and ISO 27001 efficiently, without cutting corners. Having just raised a $33 million Series A, we are rapidly growing in customers and employees. Our team has decades of experience in security and compliance. Join our team of opinionated rebels and help us build a category-defining company reshaping the broken and fragmented compliance and cybersecurity industry. WHO WE’RE LOOKING FOR: We value passionate self-starters with a growth mindset and a bias for action and personal accountability. If you love solving hard problems, thrive in ambiguity, and want to make a real impact, you’ll fit right in. We’re especially drawn to: - Rebels with a cause — frustrated with the status quo and eager to disrupt it. - Opinionated (but not obstinate) builders — decisive yet collaborative, who help us move fast. - Clear communicators — who own their ideas and follow through. Our mission is simple: make effective cybersecurity painless. We believe cybersecurity should empower, not burden. This belief unites our team and drives every decision we make. If you’re ready to challenge the status quo and help shape the future of cybersecurity, we’d love to meet you. JOB DESCRIPTION As an Application Security Engineer at Oneleet, you'll bring security depth to our product engineering teams as we expand our cybersecurity platform. You'll own the security judgment layer that sits between raw tooling output and what our customers actually see — deciding what to surface, what to suppress, and how to make findings genuinely useful rather than noisy. This is a hands-on, security-first engineering role at a Series A startup

Free ATS check

Applying for this Application Security Engineer role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 23 detected · ranked by frequency

Security tooling ×3

Security tooling integration ×3

Security tooling configuration ×3

Output quality tuning ×3

Rule design ×3

Severity scoring ×3

Triage flows ×3

Context-aware prioritization ×3

Exploitability reasoning ×3

Remediation flows ×3

Architectural choices review ×3

Customer engagement ×3

Output quality benchmarking ×3

Open source security tooling contribution ×3

Application security ×2

Product security ×2

Python

TypeScript

LLM agents

Security judgment

Security expertise

Product engineering

Role Details

Experience 5–10 yrs

Level Senior

Work Mode Remote-First

Type FULL TIME

Category engineering/dev

Salary Band 150k-200k

AI-Extracted Insights

Domain Areas

cybersecuritycompliance-standardssoc-2iso-27001vulnerability-researchcve-cwe-taxonomiesexploit-reasoning

Certifications

OSCP

How to Apply on Ashby

Ashby is a fast modern ATS — most applications take under 3 minutes.
The resume parser is strong; verify parsed experience dates and job titles.
Custom screening questions are often scored algorithmically — answer completely.
Location field affects geo-based screening; use your actual metro area.

ANONYMOUS · UNFILTERED

What do employees actually say about Oneleet?

Real rants from real employees. Read before you apply.

Read Company Rants →