Principal Application Security Engineer
UpstartCalifornia, United States • Columbus, Ohio, United States • Austin, Texas, United States • United States
Posted January 12, 2026
182300 - 252500 USD year
Full Time
About the Company
Upstart is the leading AI lending marketplace partnering with banks and credit unions to expand access to affordable credit.
Job Description
Upstart is seeking a Principal Application Security Engineer to join our growing Information Security team. The role will involve working with engineering and product management teams to ensure the product platform is secure, safe, and reliable.
Requirements
- 3+ years of experience in an application security or security engineering-focused role
- IT/CS degree or equivalent knowledge
- Experience in Java, Python or Ruby development
- Knowledge of industry standard authentication and authorization protocols (TLS, SAML, etc)
- Previous usage or knowledge of SAST/DAST and vulnerability scanners
- Understanding of Full Stack Development, SDLC, and CI/CD pipelines
- Understanding of network stack and common protocols
- Ability to collaborate cross-functionally and communicate effectively with highly technical teams
Benefits
- Comprehensive medical, dental, and vision coverage
- Generous 401(k) plan with Upstart matching $2 for every $1 contributed, up to $15,000 per year
- Employee Stock Purchase Plan (ESPP)
- Life and disability insurance
- Generous holiday, vacation, sick and safety leave
- Supportive parental, family care, and military leave programs
- Annual wellness, technology & ergonomic reimbursement programs
- Social activities including team events and onsites, all-company updates, employee resource groups (ERGs), and other interest groups
