Application Security Engineer

Opendoor

Hybrid

Quick summary

Work type
Hybrid
Location
Miami, FL
Posted
3 days ago
Nearby
99+ roles within 25 mi

Market check

Salary context

How this pay compares to similar roles

Similar $180k
$120k most similar roles pay here $231k

This listing doesn't post a salary. Most similar roles pay $145,075–$214,850.

Based on 240 similar postings.

Employer

About Opendoor

Opendoor is a digital real estate marketplace that buys and sells homes directly to consumers, simplifying the home selling and buying experience through instant offers and transparent pricing. Industry: Real Estate Technology & iBuying

Opendoor currently has 50 open roles on FindRole.

Listed pay typically runs $156,800–$335,000 across 8 roles with salary data.

Most-posted roles

View all roles at Opendoor

At a glance

TL;DR · Application Security Engineer

Apply Now Log in to save

As an Application Security Engineer at Opendoor, you will be responsible for defining and operating the company’s application vulnerability identification capability across consumer products, internal tools, and GraphQL APIs. You’ll assess and rationalize AppSec tooling, integrate findings into developer workflows, and own the HackerOne program to improve triage and remediation processes. Additionally, you will lead threat modeling and security design reviews for new services, build AI agents for automated vulnerability triaging, and harden authentication and authorization across production services. The role requires hands-on expertise in application security tools like GitHub Advanced Security, Semgrep, and Burp Suite, as well as experience with cloud and container security on AWS and Kubernetes. You will work closely with engineering teams to drive a shift-left strategy that catches vulnerabilities early, ensuring secure development practices for AI-maximalist projects.

Skills

Go Python TypeScript Ruby Terraform AWS Kubernetes Apollo GraphQL GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF CI/CD GraphQL REST gRPC OAuth JWT Docker Linux JSON Web Tokens OAuth2 OAuth 2.0

What you'll do

  • Define and operate tools for identifying application vulnerabilities across consumer products and APIs.
  • Assess and integrate AppSec tooling into developer workflows on platforms like GitHub and Slack.
  • Own and improve the HackerOne program, enhancing triage workflow and researcher relationships.
  • Lead threat modeling and security design reviews for new services and APIs to prevent common mistakes.
  • Build AI agents and automated workflows to triage vulnerability reports and draft remediation pull requests.

What we're looking for

  • 5+ years of application security or software engineering experience with a focus on security.
  • Proficiency in at least one language from Python, Go, TypeScript, Ruby and ability to work across others.
  • Hands-on expertise with GitHub Advanced Security, Semgrep, or equivalent AppSec tools.
  • Strong understanding of common application vulnerabilities including GraphQL, REST, gRPC security issues.
  • Experience with cloud (AWS) and container (Kubernetes) security, IAM, secrets management, CI/CD pipeline security.
  • Practical threat modeling skills to identify critical risks from architecture diagrams.

Related searches

More Application Security Engineer jobs Application Security Engineer jobs in Miami All jobs at Opendoor

More like this

Similar roles

Application Security Engineer

Opendoor

Miami, FL 3 days ago
Go Python TypeScript Ruby Terraform AWS Kubernetes Apollo GraphQL GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF CI/CD GraphQL REST gRPC OAuth JWT Docker Linux SQL PostgreSQL Redis MongoDB JSON Web Tokens OAuth 2.0 OpenID Connect Kerberos SAML LDAP ZAP OWASP Top Ten Threat Modeling Cloud Security Secrets Management Mobile Application Security AI Security
Hybrid
Save

Application Security Engineer

Opendoor

Toronto, Canada 3 days ago
Go Python TypeScript Ruby Terraform AWS Kubernetes Apollo GraphQL GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF Claude OpenAI MCP CI/CD GraphQL REST gRPC
Hybrid
Save

Open Positions at Opendoor | Join Our Team

Opendoor

Seattle, WA 11 days ago
Go Python TypeScript Ruby Terraform AWS Kubernetes GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF GraphQL REST gRPC CI/CD IAM secrets management threat modeling OWASP Top 10 OWASP API Security Top 10
Save

Open Positions at Opendoor | Join Our Team

Opendoor

Tempe, AZ +1 11 days ago
Go Python TypeScript Ruby Terraform AWS Kubernetes GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF GraphQL REST gRPC CI/CD IAM secrets management threat modeling OWASP Top 10 OWASP API Security Top 10
Save

Open Positions at Opendoor | Join Our Team

Opendoor

Tempe, AZ +1 11 days ago
Go Python TypeScript Ruby Terraform AWS Kubernetes GitHub Advanced Security Semgrep HackerOne Burp Suite Cloudflare WAF CI/CD GraphQL REST gRPC OAuth IAM Secrets Management Threat Modeling OWASP Top 10 OWASP API Security Top 10
Save

Application Security Engineer

US Bank

Irving, TX +2 4 days ago $105,400$124,000
Jenkins SAST SCA DAST ServiceNow Java Docker CI/CD Linux Fortify Black_Duck FOSSA
Hybrid
Save