Application Security Engineer
🧠About Konvu: Make Security Invisible
At Konvu, we're on a mission to redefine vulnerability management for the agentic world, making security invisible. As AI begins to generate, test, and deploy code autonomously, legacy security approaches break down. That's where we come in.
Konvu's AI agents reason like security engineers: automatically triaging noise, verifying exploitability with evidence, and helping teams focus on what truly matters. Our agents plug directly into existing scanners and workflows – no rip-and-replace, no new dashboards. We deliver evidence-backed decisions where teams already work, cutting false positives and surfacing exploitable issues with confidence.
Founded by early members of Sqreen (YC W18, acquired by Datadog), we know what it takes to turn deep technical insight into tools developers and security teams actually use. We’ve raised $5M in Seed funding and are backed by top European and US VCs, as well as leaders from companies like Datadog, GitHub, Docker, Cloudflare, Sumo Logic, and Vanta.
🛠️ Your Mission: Fuel Our AI-Powered Security Engine
As an Application Security Engineer, you’ll own the research and data that powers our automated triage and remediation engine. Get ready to dive deep and make a real impact:
Define Exploitability: Analyze CVEs, patches, and PoCs to determine what’s actually exploitable in real-world applications. Separate the signal from the noise.
Enrich Vulnerability Intelligence: Leverage LLMs, automation, and your own expertise to build a high-quality, continuously improving vulnerability knowledge base.
Integrate Human Insight: Develop processes and tooling for human-in-the-loop validation to ensure high accuracy and trust in our AI.
Collaborate with Engineers: Work closely with our engineering teams to embed security expertise directly into our AI-driven workflows. Be the security expert in the room.
Stay Ahead of Threats: Track evolving vulnerability classes, attack techniques, and mitigation patterns to guide product accuracy and roadmap priorities.
👤 Are You the Right Konvu Hacker?
You’re someone with a passion for security, embodying ownership, curiosity, and intensity, with the analytical mind to turn raw intelligence into structured insights.
We think you'll have:
1+ year of experience in application security, vulnerability research, or exploit analysis.
Strong grasp of CVE databases, patching processes, and exploit development fundamentals.
A burning interest in how vulnerabilities map to real application impact: not just theoretical risk.
Solid programming/scripting skills (Python, SQL, or similar) to automate research, validation, or data enrichment.
An analytical mindset: you notice subtle patterns, inconsistencies, and edge cases others miss.
Excellent written and verbal communication skills in English; you can explain complex vulnerabilities clearly.
Eagerness to work onsite from our Paris office, collaborating closely with our founding team.
Bonus Points:
Experience with static/dynamic analysis tools, vulnerability scanners, or security automation.
Built or contributed to open-source security research or datasets.
🧪 Our Interview Process
We value your time and want to ensure a great fit for both of us. Here's what to expect:
30-minute call with our CEO
Technical exercise (vulnerability research or analysis task)
1-hour video call with our CTO
Onsite interview with the team in Paris (2 hours total)
Reference checks
đź’Ž Why Join Konvu?
We're building AI agents that redefine how security and engineering teams work. We’re assembling a world-class team of builders who want to push what’s possible in security and AI.
Here's a taste of life at Konvu:
Startup Principles in Action: We’re shaped by YC principles, which means fast iteration, ownership from day one, and solving problems that matter. You’ll actually see your impact every week.
Globally Minded from Day One: Konvu was built from both sides of the Atlantic, combining European engineering excellence with American ambition. Our goal is simple: build a product loved by security and engineering teams, wherever they are.
A Culture of Sharing and Learning: Our engineers don’t just build, they also teach and grow. From technical posts to speaking at events like our Konvupéro meetups, you’ll have space to grow and contribute beyond code.
Hard, Meaningful Problems: You’ll work on deep AI agents that reason about exploitability and risk and run reliably inside complex enterprise environments. It’s the kind of engineering that pushes your limits and makes you proud of what you’ve built.
Strong Upside: We offer a competitive salary, meaningful equity, and comprehensive benefits so you can grow with the company you’re helping build.
đź’ś Our Commitment to Diversity
At Konvu, we deeply value diversity and are dedicated to fostering an environment where everyone feels supported and can thrive. To build a product that’s loved by everyone, we need a team with all kinds of different perspectives, experiences, and backgrounds. This is why we are committed to hiring people from all walks of life.