Application Security Engineer
The Community You Will Join:
Airbnb’s Application Security team is focused on making the Airbnb platform safer for millions of users around the world. We are a team covering a broad range of responsibilities from tool development to architectural consulting. We collaborate closely with our product teams, integrate security into every stage of development, and empower them to build secure features without unnecessary friction. Airbnb is a community built on trust, and we are integral to that foundation.
The Difference You Will Make:
The Application Security (Appsec) team at Airbnb works with our product teams to ensure we have secure systems and applications. The Appsec team builds close partnerships with key areas in our engineering organization to identify security leverage opportunities and drive high impact security initiatives. Our partner team, the Security Development Engineering team focuses on building paved roads, automation for security self-service, and vulnerability management to reduce security risk.
A Typical Day:
Identify and address areas for security improvement by developing scalable and innovative solutions that enhance Airbnb’s defense in-depth strategy and eliminate classes of security vulnerabilities.
Collaborate with product and development teams to embed security in every stage of the software lifecycle, via methods such as threat modeling, design reviews, and code reviews.
Educate and empower software engineers to strengthen their security expertise and foster a culture of security awareness throughout Airbnb.
Investigate, prioritize, and drive the resolution of application security vulnerabilities, ensuring timely remediation across Airbnb products.
Your Expertise:
Deep understanding of web and mobile application security, including common vulnerabilities, attack vectors, and secure development practices
Hands-on software development experience, ideally with Java, JavaScript, Python, and Swift.
Knowledge of modern frameworks like ReactJS, Dropwizard and GraphQL, with the ability to assess their security implications.
Ability to collaborate with product and development teams to embed security throughout the the SDL
Strong communication and leadership skills, with a track record of educating and empowering engineers to adopt security practices.
3+ years of experience in application security or a similar field, with a strong focus on threat modeling, architecture reviews, and developing scalable solutions to address security vulnerabilities.
Your Location:
This position is US - Remote Eligible. The role may include occasional work at an Airbnb office or attendance at offsites, as agreed to with your manager. While the position is Remote Eligible, you must live in a state where Airbnb, Inc. has a registered entity. Click here for the up-to-date list of excluded states. This list is continuously evolving, so please check back with us if the state you live in is on the exclusion list. If your position is employed by another Airbnb entity, your recruiter will inform you what states you are eligible to work from.
Our Commitment To Inclusion & Belonging:
Airbnb is committed to working with the broadest talent pool possible. We believe diverse ideas foster innovation and engagement, and allow us to attract creatively-led people, and to develop the best products, services and solutions. All qualified individuals are encouraged to apply.
We strive to also provide a disability inclusive application and interview process. If you are a candidate with a disability and require reasonable accommodation in order to submit an application, please contact us at: reasonableaccommodations@airbnb.com. Please include your full name, the role you’re applying for and the accommodation necessary to assist you with the recruiting process.
We ask that you only reach out to us if you are a candidate whose disability prevents you from being able to complete our online application.
Application Security Engineer
The Community You Will Join:
Airbnb’s Application Security team is focused on making the Airbnb platform safer for millions of users around the world. We are a team covering a broad range of responsibilities from tool development to architectural consulting. We collaborate closely with our product teams, integrate security into every stage of development, and empower them to build secure features without unnecessary friction. Airbnb is a community built on trust, and we are integral to that foundation.
The Difference You Will Make:
The Application Security (Appsec) team at Airbnb works with our product teams to ensure we have secure systems and applications. The Appsec team builds close partnerships with key areas in our engineering organization to identify security leverage opportunities and drive high impact security initiatives. Our partner team, the Security Development Engineering team focuses on building paved roads, automation for security self-service, and vulnerability management to reduce security risk.
A Typical Day:
Identify and address areas for security improvement by developing scalable and innovative solutions that enhance Airbnb’s defense in-depth strategy and eliminate classes of security vulnerabilities.
Collaborate with product and development teams to embed security in every stage of the software lifecycle, via methods such as threat modeling, design reviews, and code reviews.
Educate and empower software engineers to strengthen their security expertise and foster a culture of security awareness throughout Airbnb.
Investigate, prioritize, and drive the resolution of application security vulnerabilities, ensuring timely remediation across Airbnb products.
Your Expertise:
Deep understanding of web and mobile application security, including common vulnerabilities, attack vectors, and secure development practices
Hands-on software development experience, ideally with Java, JavaScript, Python, and Swift.
Knowledge of modern frameworks like ReactJS, Dropwizard and GraphQL, with the ability to assess their security implications.
Ability to collaborate with product and development teams to embed security throughout the the SDL
Strong communication and leadership skills, with a track record of educating and empowering engineers to adopt security practices.
3+ years of experience in application security or a similar field, with a strong focus on threat modeling, architecture reviews, and developing scalable solutions to address security vulnerabilities.
Your Location:
This position is US - Remote Eligible. The role may include occasional work at an Airbnb office or attendance at offsites, as agreed to with your manager. While the position is Remote Eligible, you must live in a state where Airbnb, Inc. has a registered entity. Click here for the up-to-date list of excluded states. This list is continuously evolving, so please check back with us if the state you live in is on the exclusion list. If your position is employed by another Airbnb entity, your recruiter will inform you what states you are eligible to work from.
Our Commitment To Inclusion & Belonging:
Airbnb is committed to working with the broadest talent pool possible. We believe diverse ideas foster innovation and engagement, and allow us to attract creatively-led people, and to develop the best products, services and solutions. All qualified individuals are encouraged to apply.
We strive to also provide a disability inclusive application and interview process. If you are a candidate with a disability and require reasonable accommodation in order to submit an application, please contact us at: reasonableaccommodations@airbnb.com. Please include your full name, the role you’re applying for and the accommodation necessary to assist you with the recruiting process.
We ask that you only reach out to us if you are a candidate whose disability prevents you from being able to complete our online application.