Application Security Engineer
Palantir Technologies
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Application Security Engineer
Palantir builds the world's leading software for data-driven decisions and operations, empowering partners to develop lifesaving drugs, forecast supply chain disruptions, and locate missing children. This role focuses on protecting mission-critical information against advanced persistent threats, enabling developers to produce secure software efficiently.
The Role
As an Application Security Engineer, you will have wide-ranging impact on Palantir's security. Your responsibilities include:
- Product security reviews: Perform full-scope security reviews (whitebox, greybox, blackbox) of current and future products, collaborating with offensive security and engineering teams to harden products.
- Architecture and design: Act as a security subject matter expert for architects and engineers, threat modeling, assessing risks, and implementing security controls to ensure secure-by-default product designs.
- Strategic security initiatives: Own and implement transformative security initiatives across the company, such as software supply chain security controls, hardware-backed GPG key signing, developing new security services, and security automation.
- Vulnerability identification and analysis: Find novel ways to identify and resolve vulnerabilities through static/dynamic code analysis, security scanning, investigating reports from InfoSec, bug bounty programs, and working with incident response.
This role offers significant impact, strong autonomy, and resources to drive security improvements across Palantir. Successful candidates demonstrate curiosity, tenacity, and a drive to be world-class security engineers.
Core Responsibilities
- Perform deep architecture and security reviews on highly complex products to identify vulnerabilities.
- Lead engineering teams in feature design, threat modeling, and security-critical code and architecture.
- Develop and implement automation to eliminate entire classes of weaknesses across the organization.
- Drive decision-making by determining the tradeoffs between security and product design.
- Lead implementation of strategic security initiatives that improve security across Palantir.
What We Value
- Self-motivated, experience in solving complex problems.
- History and experience designing and shipping production-ready software.
- Strong communication and collaboration skills, comfortable working closely with engineering teams.
- Ability to learn and apply new technologies quickly and in complex deployments.
What We Require
- Development or software engineering experience with a deep passion for information security.
- Experience with a modern high-level programming language (e.g., Java, Golang, Javascript, Python, etc.).
- Demonstrated experience evaluating code for vulnerabilities and weaknesses.
- Experience with complex architectures and codebases (e.g., SOA or micro-services).
- Experience utilizing/with CodeQL or other static code analysis platforms.
- Experience performing black-box testing of web applications.
Salary & Benefits
The estimated salary range for this position is $135,000 - $200,000/year. Total compensation may also include Restricted Stock units, sign-on bonus, and other potential future incentives, determined by qualifications, experience, and skills.
Palantir offers comprehensive benefits focused on health and wellbeing, including:
- Medical, dental, and vision insurance for employees and eligible dependents.
- Basic life, AD&D, and disability insurance.
- Commuter benefits and relocation assistance.
- Take what you need paid time off, 2 weeks paid time off at year-end, and 10 paid holidays.
- Supportive leave of absence programs, including paid parental leave and subsidized back-up care.
- Fertility and family building benefits, including adoption, surrogacy, and preservation stipends.
- 401k plan enrollment.
Life at Palantir
Palantir fosters an environment where every Palantirian can achieve their best outcomes, celebrating individual strengths and interests. The company prioritizes optimizing growth opportunities and ensuring multiple pathways to success. Employees are encouraged to work from offices to foster connectivity and innovation, with hybrid options available and remote work considered on an exceptional, state-specific basis for certain roles. Palantir values excellence, is an Equal Opportunity Employer, and provides reasonable accommodation for disabilities during the application and hiring process.
Key skills/competency
- Application Security
- Product Security Reviews
- Threat Modeling
- Vulnerability Management
- Security Architecture
- Static Code Analysis
- Dynamic Code Analysis
- Security Automation
- Software Supply Chain Security
- Black-Box Testing
How to Get Hired at Palantir Technologies
- Research Palantir's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor to align your application.
- Tailor your resume: Customize your resume to highlight experience in application security, vulnerability management, and modern programming languages, matching keywords from the Application Security Engineer job description.
- Showcase technical depth: Prepare to discuss your experience with complex architectures, security automation, and tools like CodeQL during technical interviews for Palantir Technologies.
- Emphasize problem-solving: Be ready to articulate how you've solved complex security challenges, demonstrating tenacity and curiosity, which Palantir highly values.
- Network strategically: Connect with current and former Palantir employees on LinkedIn for insights into the Application Security Engineer role and company hiring process.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background