Senior Application Security Engineer

We’re looking for problem solvers, innovators, and dreamers who are searching for anything but business as usual. Like us, you’re a high performer who’s an expert at your craft, constantly challenging the status quo. You value inclusivity and want to join a culture that empowers you to show up as your authentic self. You know that success hinges on commitment, that our differences make us stronger, and that the finish line is always sweeter when the whole team crosses together.

Senior Application Security Engineer

Overview:

We are looking for a Senior Application Security Engineer to join our growing team and play a hands-on role in strengthening security across our development lifecycle. In this role, you’ll work side-by-side with engineering teams to integrate security tooling into CI/CD pipelines, automate workflows, and reduce vulnerability management overhead. You’ll have the opportunity to own core pillars of our AppSec program (e.g., SAST, DAST, SCA, Container, IaC) while helping shape the future of security at scale in a fast-paced environment.

This is a high-impact, hands-on role where you will solve technical challenges directly while enabling developers to ship secure software with speed and confidence.

Primary Responsibilities:

• Build & integrate security tooling into CI/CD pipelines (SAST, SCA, DAST, container, IaC), ensuring scans are reliable, fast, and frictionless for developers.
• Automate vulnerability management workflows (ticketing, reporting, dashboards) to reduce manual effort and improve visibility.
• Partner with engineering teams to troubleshoot findings, refine pipelines, and provide actionable guidance.
• Take ownership of one or more AppSec program pillars and drive continuous improvement in that domain.
• Support penetration testing engagements (internal and external) by contributing to scoping, coordinating, and validating findings.
• Contribute to developer enablement, helping teams adopt and get the most out of security tooling.

What We're Looking For:

• Strong foundation in software engineering or DevSecOps with proven success integrating security into development pipelines.
• Hands-on expertise with application security tooling and domains (SAST, SCA, DAST, container, IaC).
• Deep understanding of CI/CD platforms and SCM systems, and prior experience automating security controls in them.
• Strong knowledge of web application vulnerabilities (e.g., OWASP Top 10) and modern remediation practices.
• Ability to work independently, own projects end-to-end, and solve technical problems across diverse environments.
• Strong communication skills for working with engineers and security peers, though not a heavy stakeholder management role.

Why Join Us

• Own your domain: You’ll have the chance to lead one or more major areas of our AppSec program and make it your own.
• Hands-on impact: You’ll be in the code, pipelines, and tooling — not just setting policies from the sidelines.
• Modern stack & scale: Work across diverse technologies and cloud environments, solving real-world challenges in securing CI/CD at scale.
• Growth opportunity: As our program matures, you’ll have room to expand into architecture reviews, pentesting support, and broader InfoSec initiatives.

Nice to Have

• Familiarity with GitLab CI/CD or similar platforms.
• Experience coding in Python, Go, or similar languages for automation.
• Exposure to cloud environments (AWS, GCP, Azure).

Compensation

Alteryx is committed to fair, equitable, and transparent compensation. Final compensation will be determined by various factors such as your relevant work experience, education, certifications, skills, and geographic location.

The salary range for this role is $145,000 - $161,000.

In addition, you may be eligible for other compensation, such as a bonus. Employees may also be eligible for a wide range of other benefits, including medical, retirement, financial, wellness, time off, employee discounts, and others.

Find yourself checking a lot of these boxes but doubting whether you should apply? At Alteryx, we support a growth mindset for our associates through all stages of their careers. If you meet some of the requirements and you share our values, we encourage you to apply. As part of our ongoing commitment to a diverse, equitable, and inclusive workplace, we’re invested in building teams with a wide variety of backgrounds, identities, and experiences.

Find yourself checking a lot of these boxes but doubting whether you should apply? At Alteryx, we support a growth mindset for our associates through all stages of their careers. If you meet some of the requirements and you share our values, we encourage you to apply. As part of our ongoing commitment to a diverse, equitable, and inclusive workplace, we’re invested in building teams with a wide variety of backgrounds, identities, and experiences.

Benefits & Perks:

Alteryx has amazing benefits for all Associates which can be viewed here.

This position involves access to software/technology that is subject to U.S. export controls. Any job offer made will be contingent upon the applicant’s capacity to serve in compliance with U.S. export controls.