Conduct regular security assessments, secure code reviews, threat modeling, and penetration testing (web, API, and cloud-native services) to identify vulnerabilities and provide clear remediation guidance.
Partner with engineering teams to embed security best practices across the SDLC, establish secure coding guidelines, and deliver pragmatic security enablement.

AI / LLM Security Testing:

Plan and execute security testing for LLM-enabled applications (chat, copilots, RAG, and agentic workflows), including prompt injection/jailbreak testing and indirect prompt injection via untrusted content.
Assess sensitive data exposure risks (system prompt leakage, retrieval leakage, secrets exposure, PII disclosure) and validate compensating controls such as redaction, access controls, and logging.

Vulnerability Management:

Track, analyze, and manage vulnerabilities end-to-end (triage, prioritization, remediation support, and validation) and drive root-cause fixes to reduce recurrence.
Assist with investigation and response for application security incidents, ensuring timely resolution, documentation, and lessons learned.

Granicus

Granicus provides technology that transforms the Govtech industry by connecting governments and constituents. They are a remote-first company with a globally distributed workforce across the United States, Canada, United Kingdom, India, Armenia, Australia, and New Zealand.

Apply for This Position

Senior Application Security Engineer

Similar Jobs

Lead Security Engineer

Senior Information Security Engineer (AppSec)

Security Engineer - Application & AI Security

Senior Software Engineer, Trust & Safety

DevSecOps Engineer

Granicus