Application Security Analyst
Alignerr · New York, NY
- Hybrid
- Contract
- $45,000 / year
- New York, NY
Job highlights
- Analyze security scenarios for AI training.
- Identify and prioritize software vulnerabilities.
- Evaluate secure coding and remediation.
- Build datasets for AI risk assessment.
- Assess real-world exploitability and impact.
About the role
About The Role
We're partnering with leading AI research labs to build the next generation of security-aware AI systems — and we need people who truly understand how software breaks in the real world.
As an Application Security Analyst, you'll work with realistic security scenarios to help AI models learn how to think like a seasoned security professional: identifying vulnerabilities, weighing exploitability, and recommending sound remediation strategies. Your expertise directly shapes how frontier AI understands and reasons about application risk.
Organization
Alignerr
Type
Hourly Contract
Location
Remote
Commitment
10–40 hours/week
What You'll Do
- Analyze realistic application security scenarios spanning code, APIs, and system behavior
- Classify and prioritize vulnerabilities including authentication flaws, injection risks, and business logic weaknesses
- Evaluate secure coding practices and assess the quality of proposed remediation strategies
- Create and validate security-focused reasoning datasets that teach AI to accurately assess and communicate application risk
- Distinguish genuine exploitability from theoretical or low-impact findings — the kind of judgment that separates senior practitioners from the rest
Who You Are
- 2+ years of hands-on experience in application security, product security, or software security roles
- Solid familiarity with the OWASP Top 10 and common vulnerabilities encountered in production environments
- Able to think critically about real-world exploitability — not just flag issues, but reason through their actual impact
- Strong written communication skills with the ability to explain security concepts clearly and systematically
- Self-directed and comfortable working asynchronously on task-based assignments
Nice to Have
- Experience with threat modeling, secure code review, or penetration testing
- Background in bug bounty programs or red team/blue team exercises
- Familiarity with AI systems or data labeling workflows
Why Join Us
- Work directly on frontier AI systems alongside top research labs
- Fully remote and flexible — set your own schedule and work at your own pace
- Freelance perks: autonomy, variety, and collaboration with a global community of experts
- Put your security knowledge to use in a genuinely novel and meaningful way
- Potential for ongoing work and contract extension as new projects launch
Key skills/competency
- Application Security
- AI Training
- Vulnerability Analysis
- OWASP Top 10
- Exploitability Assessment
- Remediation Strategies
- Secure Coding Practices
- Threat Modeling
- Penetration Testing
- Data Labeling
Skills & topics
- Application Security Analyst
- Application Security
- AI Training
- Vulnerability Analysis
- OWASP Top 10
- Exploitability
- Secure Coding
- Remediation
- Remote
- Contract
How to get hired
- Tailor your resume: Highlight your application security, product security, or software security experience, emphasizing your understanding of OWASP Top 10 and real-world exploitability.
- Showcase critical thinking: In your application and interviews, demonstrate your ability to analyze complex security scenarios and provide reasoned remediation strategies.
- Emphasize asynchronous work: Mention your experience with self-directed, task-based assignments and strong written communication skills.
- Leverage AI/Data experience: If you have experience with AI systems, data labeling, threat modeling, or penetration testing, be sure to include it prominently.
Technical preparation
Review OWASP Top 10 vulnerabilities.,Practice analyzing code for security flaws.,Study common exploitation techniques.,Familiarize with AI data labeling workflows.
Behavioral questions
How do you assess real-world exploitability?,Describe a complex security scenario you analyzed.,How do you communicate technical security concepts?,How do you manage asynchronous task-based work?
Frequently asked questions
- What is the Application Security Analyst role at Alignerr focused on?
- The Application Security Analyst role at Alignerr focuses on training AI models to understand and reason about application security risks by analyzing real-world security scenarios, identifying vulnerabilities, and evaluating remediation strategies.
- What kind of experience is required for the Application Security Analyst position at Alignerr?
- A minimum of 2 years of hands-on experience in application security, product security, or software security is required. Familiarity with the OWASP Top 10 and critical thinking about exploitability are essential.
- Is the Application Security Analyst role at Alignerr remote?
- Yes, the Application Security Analyst role at Alignerr is fully remote, offering flexibility in terms of schedule and work pace.
- What are the key responsibilities of an Application Security Analyst at Alignerr?
- Key responsibilities include analyzing security scenarios, classifying vulnerabilities, evaluating remediation strategies, and creating security-focused datasets to train AI models on application risk.
- What skills differentiate senior practitioners in this Application Security Analyst role?
- The ability to distinguish genuine exploitability from theoretical findings and to reason through the actual impact of vulnerabilities is what separates senior practitioners in this Application Security Analyst role.
- How does Alignerr use the work of Application Security Analysts?
- Alignerr uses the analysis and datasets created by Application Security Analysts to help frontier AI models learn to think like seasoned security professionals, enhancing their understanding of application risk.
- Are there opportunities for ongoing work as an Application Security Analyst with Alignerr?
- Yes, there is potential for ongoing work and contract extensions as new projects launch, making this an opportunity for continuous engagement.