Application Security Analyst
Alignerr · Mumbai, Maharashtra, India
- Hybrid
- Contract
- $75,000 / year
- Mumbai, Maharashtra, India
Job highlights
- Analyze application security scenarios and vulnerabilities.
- Evaluate secure coding and remediation strategies.
- Build security datasets for AI training.
- Distinguish real risks from theoretical noise.
- Requires 2+ years in application security.
About the role
About The Role
We're partnering with leading AI research labs to build AI systems that truly understand software security — not just textbook definitions, but how vulnerabilities actually emerge, get exploited, and get fixed in production environments. If you know what it takes to break and secure real applications, this is your chance to put that knowledge to work on some of the most advanced AI models being built today.
Organization:
Alignerr
Type:
Hourly Contract
Location:
Remote
Commitment:
10–40 hours/week
What You'll Do
- Analyze realistic application security scenarios spanning code, APIs, and live system behavior
- Classify and evaluate vulnerabilities including authentication flaws, injection risks, business logic issues, and more
- Assess secure coding practices and remediation strategies for accuracy and real-world applicability
- Help build and validate security-focused reasoning datasets that teach AI how to think like a seasoned AppSec professional
- Distinguish genuinely exploitable risks from theoretical noise — and explain your reasoning clearly
Who You Are
- 2+ years of hands-on experience in application, product, or software security
- Solid familiarity with the OWASP Top 10 and common production vulnerability patterns
- Ability to think like an attacker and a defender — and articulate the difference
- Strong written communication skills with a structured, analytical approach
- Comfortable working independently and asynchronously on task-based assignments
Nice to Have
- Experience with penetration testing, secure code review, or bug bounty programs
- Familiarity with threat modeling frameworks
- Background in DevSecOps or security engineering
Why Join Us
- Work directly on frontier AI systems alongside top research teams
- Fully remote and flexible — work on your schedule, your terms
- Freelance autonomy with meaningful, intellectually stimulating work
- Your expertise shapes how the next generation of AI understands cybersecurity
- Potential for ongoing work and contract extension
Key skills/competency
- Application Security Analyst
- AI Training
- Vulnerability Analysis
- OWASP Top 10
- Secure Coding Practices
- Threat Modeling
- Penetration Testing
- Bug Bounty Programs
- DevSecOps
- Security Engineering
Skills & topics
- Application Security
- Security Analyst
- Vulnerability Analysis
- OWASP Top 10
- Secure Coding
- AI Training
- Remote
- Contract
- Cybersecurity
- Software Security
How to get hired
- Tailor your resume: Highlight your application security, vulnerability analysis, and OWASP Top 10 experience.
- Showcase your skills: Detail your experience in secure coding, penetration testing, or bug bounty programs.
- Demonstrate attacker mindset: Provide examples of how you think like an attacker and defender.
- Emphasize remote work readiness: Highlight your ability to work independently and asynchronously.
Technical preparation
Review OWASP Top 10 vulnerabilities in detail.,Practice identifying common production security flaws.,Familiarize yourself with secure coding principles.,Understand attacker methodologies and defensive strategies.
Behavioral questions
Describe a complex vulnerability you identified.,How do you distinguish theoretical from real risks?,How do you work independently on tasks?,Explain a security flaw and its remediation.
Frequently asked questions
- What is the primary focus of the Application Security Analyst role at Alignerr?
- The primary focus of the Application Security Analyst role at Alignerr is to partner with AI research labs to build AI systems that understand software security. This involves analyzing real-world application security scenarios, evaluating vulnerabilities, and assessing secure coding practices to create security-focused datasets for AI training.
- Is this Application Security Analyst position remote?
- Yes, this Application Security Analyst position is fully remote, offering flexibility in work schedule and location.
- What are the key technical skills required for the Application Security Analyst role?
- Key technical skills include at least 2 years of hands-on experience in application, product, or software security, strong familiarity with the OWASP Top 10, and understanding common production vulnerability patterns. Experience with penetration testing, secure code review, or bug bounty programs is also highly valued.
- How does the Application Security Analyst contribute to AI development at Alignerr?
- The Application Security Analyst contributes to AI development by analyzing security scenarios and vulnerabilities to build and validate security-focused reasoning datasets. This data teaches AI models to understand and identify software security issues like a seasoned AppSec professional.
- What is the expected commitment for the Application Security Analyst role?
- The commitment for this Application Security Analyst role is hourly contract-based, with an expected commitment of 10–40 hours per week, offering flexibility.
- What kind of vulnerabilities will I be analyzing as an Application Security Analyst at Alignerr?
- As an Application Security Analyst at Alignerr, you will analyze a range of vulnerabilities including authentication flaws, injection risks, business logic issues, and other common production vulnerability patterns, with a focus on real-world exploitability.
- What does it mean to 'think like an attacker and a defender' in this role?
- Thinking like an attacker and a defender means understanding how systems can be exploited (attacker mindset) and how to build resilient and secure systems (defender mindset). For this Application Security Analyst role, it involves identifying potential weaknesses and then evaluating the effectiveness of proposed security measures.