Security Engineer, Application Security
Company: Glean
Location: San Francisco
Posted on: April 2, 2026
|
|
|
Job Description:
About Glean: Glean is the Work AI platform that helps everyone
work smarter with AI. What began as the industry’s most advanced
enterprise search has evolved into a full-scale Work AI ecosystem,
powering intelligent Search, an AI Assistant, and scalable AI
agents on one secure, open platform. With over 100 enterprise SaaS
connectors, flexible LLM choice, and robust APIs, Glean gives
organizations the infrastructure to govern, scale, and customize AI
across their entire business - without vendor lock-in or costly
implementation cycles. At its core, Glean is redefining how
enterprises find, use, and act on knowledge. Its Enterprise Graph
and Personal Knowledge Graph map the relationships between people,
content, and activity, delivering deeply personalized,
context-aware responses for every employee. This foundation powers
Glean’s agentic capabilities - AI agents that automate real work
across teams by accessing the industry’s broadest range of data:
enterprise and world, structured and unstructured, historical and
real-time. The result: measurable business impact through faster
onboarding, hours of productivity gained each week, and smarter,
safer decisions at every level. Recognized by Fast Company as one
of the World’s Most Innovative Companies (Top 10, 2025), by CNBC’s
Disruptor 50, Bloomberg’s AI Startups to Watch (2026), Forbes AI
50, and Gartner’s Tech Innovators in Agentic AI, Glean continues to
accelerate its global impact. With customers across 50 industries
and 1,000 employees in more than 25 countries, we’re helping the
world’s largest organizations make every employee AI-fluent, and
turning the superintelligent enterprise from concept into reality.
If you’re excited to shape how the world works, you’ll help build
systems used daily across Microsoft Teams, Zoom, ServiceNow,
Zendesk, GitHub, and many more - deeply embedded where people get
things done. You’ll ship agentic capabilities on an open,
extensible stack, with the craft and care required for enterprise
trust, as we bring Work AI to every employee, in every company.
About the Role: Glean is looking for an experienced Application
Security Engineer with a primary focus on ensuring that our entire
technology stack is free of software vulnerabilities (CVEs). This
role is responsible for securing our base OS images, ensuring all
open-source software (OSS) dependencies are scanned and patched,
and integrating cutting-edge security tools into our CI/CD
pipeline. The ideal candidate will drive the adoption of solutions
like Google’s Assured Open Source Software (OSS) and explore
alternative approaches to enhance software security. This role will
lead the vulnerability management charter at Glean, identifying,
evaluating, and implementing new security technologies and
processes to proactively protect our infrastructure. You will: Own
and lead the vulnerability management lifecycle , ensuring our
entire tech stack is free from known CVEs. Implement and manage
secure base OS images , ensuring all underlying systems remain
hardened against security threats. Continuously scan, monitor, and
patch OSS dependencies to mitigate supply chain risks and enforce
best practices for dependency management. Research and evaluate
trusted open-source security solutions like Google’s Assured Open
Source Software and recommend their adoption where applicable. Work
closely with engineering teams to integrate state-of-the-art SAST,
DAST, and dependency scanning tools into the CI/CD pipeline to
detect and remediate vulnerabilities early. Define and maintain
best practices for secure coding to ensure all code developed by
Glean engineers is free from vulnerabilities. Develop automated
security validation tests to enforce vulnerability-free deployments
across the stack. Lead the adoption and, if necessary, develop
custom security solutions to manage and mitigate security risks at
scale. Provide security guidance, training, and mentorship to
engineering teams to foster a security-first culture at Glean.
About you: BA/BS in Computer Science, Cybersecurity, or a related
field (or equivalent industry experience). 5 years of experience in
application security and vulnerability management. Deep
understanding of software security vulnerabilities , including
CVEs, OWASP Top 10, and supply chain risks. Experience with SAST,
DAST, dependency scanning, and vulnerability management tools
(e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP
ZAP). Strong familiarity with package managers (npm, pip, Maven, Go
modules) and securing open-source dependencies. Coding experience
in languages such as Go, Python, Java, or C++ to develop security
test cases and tooling. Hands-on experience with cloud-native
security best practices across AWS, GCP, or Azure. Knowledge of
container security, Kubernetes security, and securing microservices
architectures. Ability to lead cross-functional initiatives and
drive security adoption within engineering teams. Key Knowledge &
Skills: A strong proactive approach to security, identifying risks
before they become problems. Excellent problem-solving skills and
the ability to balance security with performance and usability.
Experience working in fast-paced, highly collaborative environments
where security is a shared responsibility. Passion for open-source
security and keeping up with the latest trends in software
vulnerability management. Why Join Us? At Glean, we believe in
empowering individuals to do their best work in an inclusive and
diverse environment. We do not discriminate based on gender,
ethnicity, sexual orientation, religion, civil or family status,
age, disability, or race. We’re building a culture that values
curiosity, collaboration, and impact. If you’re excited about
leading the charge in securing a cutting-edge AI-powered search
platform, we’d love to hear from you! Benefits Competitive
compensation Medical, Vision and Dental coverage Flexible work
environment and time-off policy 401k Company events A home office
improvement stipend when you first join Annual education stipend
Wellness stipend Healthy lunches and dinners provided daily
Location: This role is hybrid (3-4 days a week in one of our SF Bay
Area offices) For California based applicants: The standard base
salary range for this position is $185,000 - $280,000 annually.
Compensation offered will be determined by factors such as
location, level, job-related knowledge, skills, and experience.
Certain roles may be eligible for variable compensation, equity,
and benefits. We are a diverse bunch of people and we want to
continue to attract and retain a diverse range of people into our
organization. We're committed to an inclusive and diverse company.
We do not discriminate based on gender, ethnicity, sexual
orientation, religion, civil or family status, age, disability, or
race. LI-HYBRID AI-First Mindset at Glean: At Glean, AI fluency is
core to how we work and we're committed to ensuring every new hire
feels confident integrating AI into their everyday work. As part of
the interview process, you'll complete a brief AI-focused exercise
or discussion so we can understand how you think about, design, and
use AI to drive impact in your role. Feel free to reference any
tools, platforms, or workflows you use today — prior Glean
experience isn't required.
Keywords: Glean, Brentwood , Security Engineer, Application Security, IT / Software / Systems , San Francisco, California
