All roles

Open role

[Remote] Staff Application Security Engineer

Remote · France Full-time

Note: The job is a remote job and is open to candidates in USA. Brex is the intelligent finance platform that enables companies to spend smarter and move faster in more than 200 markets. As a Staff Application Security Engineer, you will define the technical vision and long-term security architecture for the Brex platform, serving as the technical leader for the Application Security team and driving the strategic direction of secure product lifecycle and vulnerability management programs.

Responsibilities

  • Lead the technical vision and strategic roadmap for the Application Security team, aligning security objectives with Brex's enterprise growth and high-velocity engineering metrics
  • Establish technical standards and secure defaults across the entire engineering organization, fostering a culture of collaborative security excellence and bridging product platforms, infra, and trust
  • Architect and secure novel AI/ML and agentic workflows, applying cutting-edge practices to mitigate risks such as prompt injection, model manipulation, and data poisoning
  • Mentor and coach engineers within the team and across the broader organization, guiding technical growth, helping individuals level up their security expertise, and accelerating team delivery
  • Drive proactive vulnerability discovery and offensive security testing strategies, executing complex attack chains to demonstrate business impact and prioritize cross-functional remediation
  • Partner with Product Platform, Cloud Infrastructure, and Data engineering teams to ensure core primitives, APIs, and microservices are secure by default from design to deployment

Skills

  • 8+ years of experience in Application Security, Product Security, or software engineering with a primary focus on offensive and defensive application security
  • Proven track record of technical leadership and team mentorship on complex, multi-quarter security engineering initiatives in a fast-paced environment
  • Deep proficiency and technical expertise in AI security, including hands-on experience securing agentic architectures, LLM gateways, and evaluating adversarial AI vectors
  • Strong systems-thinking capabilities with extensive experience defining secure product development lifecycles, threat modeling complex topologies, and cloud-native container security (AWS, Kubernetes)
  • Proficiency in Python, Go, or similar languages to architect internal tooling, pipeline automation, and advanced detection/scanning engines
  • Exceptional written and verbal communication skills, with a demonstrated ability to navigate ambiguity, influence technical leaders, and manage up and out across EPD organizations
  • Experience with Kotlin, gRPC, GraphQL, Kubernetes
  • Previous experience in building and scaling security teams
  • Experience with securing distributed systems in AWS and cloud environments
  • Contributions to the wider technical community — open source, public research, CTF participation, blogging, CVEs, or presentations
  • Experience submitting to bug bounty or responsible disclosure programs
  • Published AI security research or contributions to AI security frameworks

Benefits

  • We are a hybrid environment that combines the energy and connections of being in the office with the benefits and flexibility of working from home.
  • We currently require 3 days per week in the office - Monday, Wednesday and Thursday.
  • As a perk, we also have up to four weeks per year of fully remote work!

Company Overview

  • Brex is a financial service and technology company that provides business credit cards and cash management accounts. It is a sub-organization of Capital One. It was founded in 2017, and is headquartered in San Francisco, California, USA, with a workforce of 1001-5000 employees. Its website is https://brex.com.
  • Company H1B Sponsorship

  • Brex has a track record of offering H1B sponsorships, with 13 in 2026, 31 in 2025, 48 in 2024, 53 in 2023, 65 in 2022, 70 in 2021, 37 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Endocrine Account Manager - Kansas City

    Work from home Full-time role

    [Remote] Strategic Deal Desk & Pricing Analyst

    Work from home Full-time role

    [Remote] Principal Data Architect & Engineer

    Work from home Full-time role

    [Remote] Director, Security Operations

    Work from home Full-time role

    [Remote] VP, AI Engineering & Agent Platforms

    Work from home Full-time role

    Temporary HR Generalist (6 Months)

    Work from home Full-time role

    Remote - Travel Consultant – We Will Train You

    Work from home Full-time role

    Amazon Advertising Specialist

    Work from home Full-time role

    SVP Medical Director

    Work from home Full-time role

    [Remote] Part-Time Mechanical Engineer - Principal Level - Remote

    Work from home Full-time role

    Audit Manager Affordable Housing Specialist (Remote)

    Work from home Full-time role

    Senior Clinical Data Analyst (Home-based) - UK, Poland, or South Africa - FSP

    Work from home Full-time role

    PPC Speсialist

    Work from home Full-time role

    Experienced Full Stack Customer Success Architect – Cybersecurity Solutions and Attack Surface Management

    Work from home Full-time role

    Senior Salesforce Administrator (Expert Level)

    Work from home Full-time role

    Talent Acquisition Recruiter (Remote/Contract)

    Work from home Full-time role

    Senior Technical Writer

    Work from home Full-time role

    Customer Success Manager, Nurture

    Work from home Full-time role

    Crisis Hotline Professional (Part -Time) – REMOTE

    Work from home Full-time role

    Immediate Hiring: careerzynith Customer Care Representative – (Remote) $25/Hour –

    Work from home Full-time role

    CRA Officer

    Work from home Full-time role