Secure the Future of Productivity at Notion
Millions trust Notion as their central workspace, and our dedication to security is paramount. As an Application Security Engineer, you'll play a vital role in safeguarding our users' data and ensuring the continued trust they place in us. Join us in building a robust and secure platform that empowers users worldwide. We require all team members to work from our offices on Mondays and Thursdays, our designated Anchor Days. Certain teams or positions may require additional in-office workdays.
The Mission: Become a Security Champion
We're seeking passionate security engineers to champion secure coding practices and proactively eliminate vulnerabilities across Notion's dynamic product suite. You'll be a trusted consultant, advocate, and builder, shaping the future of application security at a company that values innovation and user trust above all else.
What You'll Be Doing:
Shape the Future: As an early member of our Application Security team, you'll have a significant influence on the direction and goals of our security program.
Empower Developers: Make the secure path the easy path by providing clear design guidance and solutions that prevent entire classes of vulnerabilities.
Build Automated Defenses: Develop static and dynamic analysis rules to detect weaknesses in our codebase and automate remediation.
Educate and Advocate: Guide developers on security and privacy best practices, preventing vulnerabilities before they even arise.
Incident Response: Participate in and drive mitigation strategies during AppSec-related incidents.
Develop Security Tools: Build and maintain tools that proactively prevent vulnerabilities or automate remediation efforts.
What You'll Need:
Security Architecture Expertise: 3+ years of experience collaborating with product teams to design and build secure software.
Problem-Solving Prowess: A knack for dissecting complex problems, understanding context, and working towards elegant solutions, both independently and collaboratively.
Leadership & Advocacy: Demonstrated ability to champion security hardening projects, partner with product engineering teams, and drive impactful security improvements.
Business Acumen: A pragmatic approach to security, understanding business impact and prioritizing projects to balance security investments with business outcomes.
Communication Skills: Exceptional ability to communicate nuanced technical concepts clearly, whether in writing or during real-time discussions.
Startup DNA: Thrive in a fast-paced, dynamic environment and possess a self-motivated, action-oriented mindset.
Bonus Points:
Experience with bug bounty programs or capture the flag exercises.
Published reports on vulnerabilities discovered or AppSec-related blog posts.
Active involvement in local or regional security user groups or conferences.
We believe in building a diverse and inclusive team. If you're passionate about security and excited about the opportunity to make a significant impact, we encourage you to apply, even if your experience doesn't perfectly align with every bullet point. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Notion offers competitive cash compensation, equity, and benefits. For San Francisco and New York-based roles, the estimated base salary range is $230,000 - $255,000 per year. Remote candidates may be considered.
By submitting your application, you agree to Notion's Global Recruiting Privacy Policy.
#LI-Onsite