Wrike
ApplicationSecurityEngineer
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Application Security Engineer at Wrike. Skills: Application Security, Secure Code Review, Threat Modeling, CI/CD Integration. Own Application Security activities. Assess vulnerabilities and findings”
What You'll Achieve.
build and ship securely by default; strengthen secure design and coding practices; enable teams to release features safely; independently own recurring security work; balance security, product priorities, and delivery speed; help teams focus on the most important issues; improve day-to-day AppSec workflows; integrate security more effectively into developer workflows and CI/CD pipelines; provide clear prioritization and actionable remediation guidance; reinforce standards, reference patterns, and review expectations; support complex AppSec analysis; influence both product security posture and developer experience at scale; helping teams move fast while building securely
Industry & Context.
identify risks early; distinguish meaningful risk from noise; help teams focus on the most important issues; recommend compensating controls or practical alternatives; prioritize findings based on exploitability, exposure, business impact, and remediation effort
What They're Looking For.
Must Have
hands-on knowledge of common web and API security issues, authentication and session management concepts, secrets handling, secure coding fundamentals, Proven experience conducting secure code reviews in modern engineering environments, experience leading or facilitating routine threat modeling for product features or services, Experience managing Application Security tools such as SAST, SCA, DAST, and secrets scanning solutions, bug bounty platforms, Working knowledge of OAuth/OIDC, service-to-service authentication, secrets management, foundational cloud or container security concepts, Ability to prioritize findings based on exploitability, exposure, business impact, and remediation effort, written and verbal communication skills, Sound judgment when using AI-assisted workflows
Nice to Have
Experience building AppSec automations, improving developer workflows, tuning security controls in CI/CD environments, Experience delivering practical secure coding guidance, lightweight internal security training, Background in privacy-sensitive systems, cloud-native services, multi-service architectures, Experience supporting security for AI/ML product features, model-integrated systems, governance of AI-assisted engineering workflows
What You'll Do.
Own Application Security activities
Assess vulnerabilities and findings
Validate security fixes
Improve AppSec workflows
Help engineers understand security findings
Contribute to secure-by-default development
Use structured AI workflows
How You'll Work.
Team & Collaboration
work closely with engineering teams; partner closely with backend, frontend, mobile, platform, QA, and product teams; collaborating with peers across security, infrastructure, and compliance; building trusted relationships with engineers; communicating clearly; translating security concerns into practical guidance; integrate security into design, development, and delivery processes
Communication Scope
written communication skills; verbal communication skills; ability to work effectively with engineers; technical leads; product stakeholders; communicating clearly
Full Job Description
Wrike is the most powerful work management platform. Built for teams and organizations looking to collaborate, create, and exceed every day, Wrike brings everyone and all work into a single place to remove complexity, increase productivity, and free people up to focus on their most purposeful work. Our vision: A world where everyone is free to focus on their most purposeful work, together. About the Role: We’re looking for an Application Security Engineer to help our product teams build and ship securely by default. In this role, you will work closely with engineering teams to identify risks early, strengthen secure design and coding practices, and enable teams to release features safely without creating unnecessary friction. This is a hands-on AppSec role for someone who can independently own recurring security work across multiple teams. You should be comfortable reviewing architecture and code, validating findings, guiding remediation, and making practical recommendations that balance security, product priorities, and delivery speed. Your Impact: - Own recurring Application Security activities for multiple product teams, including secure design reviews, threat modeling, code review, testing validation, and remediation guidance. - Assess vulnerabilities and findings from scanners, testing, bug reports, and internal reviews; distinguish meaningful risk from noise and help teams focus on the most important issues. - Validate security fixes and recommend compensating controls or practical alternatives when ideal remediation is not immediately possible. - Improve day-to-day AppSec workflows by tuning checks, refining rules, improving triage quality, and integrating security more effectively into developer workflows and CI/CD pipelines. - Help engineers understand security findings in practical product terms by providing clear prioritization and actionable remediation guidance. - Contribute to secure-by-default development practices by reinforcing standards, reference
Applying for this Application Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Greenhouse
- Create a Greenhouse profile before applying — it saves time across multiple applications.
- Upload your resume as a PDF; the parser handles it better than Word.
- Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
- Enable email notifications to track application status in real time.
ANONYMOUS · UNFILTERED
What do employees actually say about Wrike?
Real rants from real employees. Read before you apply.