Senior Application Security Engineer

Job Description #TeamNextdoor

Nextdoor (NYSE: KIND) is the essential neighborhood network. Neighbors, public agencies, and businesses use Nextdoor to connect around local information that matters in more than 340,000 neighborhoods across 11 countries. Nextdoor builds innovative technology to foster local community, share important news, and create neighborhood connections at scale. Download the app and join the neighborhood at nextdoor.com.

As an Application Security Engineer (focusing on DevSecOps), you will be responsible for monitoring Nextdoor's enterprise and product core platforms/systems and managing security tools and capabilities. This role requires an understanding of security threats, vulnerabilities, and organizational best practices to mitigate them. The ideal candidate will have a proactive mindset, staying ahead of potential security issues, and solving security challenges with practical solutions.

At Nextdoor, we offer an inclusive work environment. We embrace a hybrid experience, enabling connectedness while providing flexibility for our valued employees.

In this role, you will enable developers to build secure applications and infrastructure at Nextdoor. You will collaborate with engineers to establish secure-by-default practices and application security monitoring, balancing 'shift left' and 'shift right' security approaches, and embedding security into fast-moving development processes.

Your responsibilities include providing critical application security services such as security reviews, developer security education, incident response, and leading security initiatives across the platform through new tools and processes.

1. Continuously monitor security infrastructure and identify suspicious activities.
2. Utilize data and security tools to analyze and respond to security alerts.
3. Lead incident response efforts, executing remediation and closure strategies.
4. Maintain vulnerability reporting and bug bounty programs.
5. Triage vulnerability and threat notifications for prioritization and remediation.
6. Conduct security audits and vulnerability assessments to identify threats and reduce risks.
7. Implement and maintain security controls across devices and cloud environments.
8. Collaborate with IT, DevOps, and Cloud Infrastructure teams to integrate security practices and tools.
9. Build integrations and implement technologies to support security operations.
10. Automate security detections, reporting, and integrations through scripting.
11. Provide security awareness training for new hires and staff.
12. Stay informed on emerging threats and update security measures accordingly.
13. Maintain detailed documentation of security procedures and policies.
14. Ensure compliance with regulations such as GDPR, HIPAA, ISO 27001.
15. Assist with security audits and participate in team-building activities.

• Experience with scripting (Python, Bash), APIs, and automation.
• 5+ years in security operations or vulnerability management roles.
• Deep understanding of Nextdoor's platform, CI/CD, and security mechanisms.
• Leadership in developing secure solutions and threat modeling.
• Experience in developer security training and automated testing tools (SCA, SAST, DAST, CNAPP).
• Ability to identify top threats and prioritize remediation.
• Empathy for customers and engineers, advocating scalable solutions.
• Security championing across teams and incident response participation.
• Bachelor's degree in Computer Science, Information Security, or related field.
• Excellent communication and teamwork skills.
• Experience with macOS MDM, cloud environments (AWS, GCP).

• Experience with cloud microservices, IaaC, IdPs, SSO, and Access Management.
• Threat-driven or offensive security mindset with practical defense experience.
• Building security dashboards and data analytics experience.
• Certifications such as OSCP, CEH, GIAC, AWS Security, or relevant code projects (share GitHub links).

The starting salary ranges from $135,000 to $170,000 USD annually, potentially higher based on proficiency. Equity grants are awarded with quarterly vesting, starting within the first 3 months. Benefits include comprehensive health coverage, dental, vision, and a OneMedical membership. Total compensation varies based on skills and experience.

We foster an inclusive environment that reflects our neighbors. We encourage all qualified applicants and do not discriminate based on any protected traits. We consider applicants with arrest and conviction records per the San Francisco Fair Chance Ordinance.

For more info on our data practices, see Nextdoor's Personnel Privacy Notice.