Application Security Engineer, AI Security
Company: Notion
Location: San Francisco
Posted on: April 2, 2026
|
|
|
Job Description:
About Us: Notion helps you build beautiful tools for your life’s
work. In today's world of endless apps and tabs, Notion provides
one place for teams to get everything done, seamlessly connecting
docs, notes, projects, calendar, and email—with AI built in to find
answers and automate work. Millions of users, from individuals to
large organizations like Toyota, Figma, and OpenAI, love Notion for
its flexibility and choose it because it helps them save time and
money. In-person collaboration is essential to Notion's culture. We
require all team members to work from our offices on Mondays,
Tuesdays, and Thursdays, our designated Anchor Days. Certain teams
or positions may require additional in-office workdays. About the
role: Millions of people use Notion — and this number is increasing
every day. Our users depend on us to deliver a secure and
trustworthy experience, and we value this more than anything. We
want to keep building on that trust, while also continuing to amaze
our users with the tools they can build in Notion. This is where
you come in — to help us forge a strong, reliable path forward to
the future. The Notion application is flexible, powerful and always
evolving. With a product that needs to scale to meet the needs of
many thousands of businesses globally. They rely on us to protect
their data and that of their customers. Notion is looking for
security engineers that have a passion for securing complex
products. As an Application Security Engineer working on AI
Security you will be a consultant, advocate and builder that is
hyper focused on preventing and eliminating security risk for
Notion’s AI products. What You'll Achieve: Help define the security
models for Notion’s products as they ship, giving guidance to
engineering and product teams to ensure new features meet strict
enterprise security requirements. Perform hands on testing and
develop automated red teaming for AI and agentic features,
especially focused on AI specific risks like prompt injection. Make
the secure path the easy path for product teams by providing design
guidance and finding architectural solutions that eliminate classes
of vulnerabilities. Provide developers guidance and education on
security and privacy best practices that prevent the authoring of
vulnerabilities; leverage skills, MCP enabled tools, and hooks to
help prevent vulnerabilities for developers using agentic coding
tools. Participate in and drive mitigation strategies during AppSec
related incident responses. Skills You'll Need to Bring: Security
Architecture expertise: You have at least 6 years of experience
working with product teams to design and/or build secure software.
Thoughtful problem-solving: For you, problem-solving starts with a
clear and accurate understanding of the context. You can decompose
tricky problems and work towards a clean solution, by yourself or
with teammates. You're comfortable asking for help when you get
stuck. Impact-driven approach to technology: You use technology to
drive measurable user and business outcomes, not as an end in
itself. You stay current with tools like Cursor, Claude Code, and
other AI-assisted development environments, and you’re pragmatic
about choosing what delivers the most value. Pragmatic and
business-oriented: You care about business impact and prioritize
projects accordingly. As a product security expert you communicate
and facilitate understand of the threat model and risks with the
goal to balance the right security investments with the right
bottom line outcomes. Empathetic communication: You communicate
nuanced ideas clearly, whether you're explaining technical
decisions in writing or brainstorming in real time. In
disagreements, you engage thoughtfully with other perspectives and
compromise when needed. Startup mentality: You are comfortable
navigating the fast moving, unstructured nature of a hyper-growth
startup. You are self-motivated to add value and bias towards
action. You don’t need to be an AI expert, but you’re curious and
willing to adopt AI tools to work smarter and deliver better
results Nice to Haves: Experience building AI-enabled applications
in production (LLMs and/or classical ML), including prompt tool
orchestration, retrieval, evaluation, and iteration based on
real-world feedback. Published reports of vulnerabilities you have
found or AppSec related blog posts, especially anything AI related
Participation in bug bounty programs or capture the flag exercises
Involvement in local or regional security user groups or
conferences We hire talented and passionate people from a variety
of backgrounds because we want our global employee base to
represent the wide diversity of our customers. If you’re excited
about a role but your past experience doesn’t align perfectly with
every bullet point listed in the job description, we still
encourage you to apply. If you’re a builder at heart, share our
company values, and enthusiastic about making software toolmaking
ubiquitous, we want to hear from you. Notion is proud to be an
equal opportunity employer. We do not discriminate in hiring or any
employment decision based on race, color, religion, national
origin, age, sex (including pregnancy, childbirth, or related
medical conditions), marital status, ancestry, physical or mental
disability, genetic information, veteran status, gender identity or
expression, sexual orientation, or other applicable legally
protected characteristic. Notion considers qualified applicants
with criminal histories, consistent with applicable federal, state
and local law. Notion is also committed to providing reasonable
accommodations for qualified individuals with disabilities and
disabled veterans in our job application procedures. If you need
assistance or an accommodation due to a disability, please let your
recruiter know. Notion is committed to providing highly competitive
cash compensation, equity, and benefits. The compensation offered
for this role will be based on multiple factors such as location,
the role’s scope and complexity, and the candidate’s experience and
expertise, and may vary from the range provided below. For roles
based in San Francisco and New York, the estimated base salary
range for this role is $230,000 - $280,000 per year. For qualified
candidates, Notion may consider a full-time remote candidate. By
clicking “Submit Application”, I understand and agree that Notion
and its affiliates and subsidiaries will collect and process my
information in accordance with Notion’s Global Recruiting Privacy
Policy . LI-Onsite
Keywords: Notion, Lodi , Application Security Engineer, AI Security, IT / Software / Systems , San Francisco, California
