Application Security Engineer

About the role

PackageX is building AI‑powered logistics solutions and needs a dedicated security professional to protect its applications and infrastructure. As an Application Security Engineer you will own the security lifecycle, from design to deployment, and help shape security practices for AI‑driven products.

Key responsibilities

• Conduct threat modeling during design and perform security reviews throughout development.
• Run vulnerability assessments and penetration tests on web applications, APIs, and cloud infrastructure.
• Integrate modern security tooling, including AI‑enhanced scanners, into CI/CD pipelines.
• Write, maintain, and enforce practical security policies and standards.
• Identify and mitigate AI‑specific risks such as prompt injection and data leakage from large language models.
• Report security posture to engineering leadership, tracking gaps and trends.
• Collaborate with developers to remediate findings and embed security feedback into the development workflow.

Required profile

• Strong curiosity about emerging security challenges, especially in AI‑enabled products.
• Hands‑on experience with cloud security hardening and vulnerability management.
• Ability to communicate security concepts clearly to engineering teams.
• Proactive mindset with a focus on building reusable, developer‑friendly processes.

Required skills

• Cloud infrastructure hardening
• Vulnerability scanning and penetration testing
• Threat modeling
• CI/CD pipeline security
• Security policy authoring
• Large language model (LLM) security considerations