Security Engineer, Application Security
Grammarly is excited to offer a remote-first hybrid working model. Team members work primarily remotely in the United States, Canada, Ukraine, Germany, Poland, or Portugal. Certain roles have specific location requirements to facilitate collaboration at a particular Grammarly hub.
All roles have an in-person component: Conditions permitting, teams meet 2–4 weeks every quarter at one of Grammarly’s hubs in San Francisco, Kyiv, New York, Vancouver, and Berlin, or in a workspace in Kraków. This flexible approach gives team members the best of both worlds: plenty of focus time along with in-person collaboration that fosters trust and unlocks creativity.
Grammarly team members in this role must be based in the United States or Canada, and they must be able to collaborate in person 2 weeks per quarter, traveling if necessary to the hub(s) where the team is based.
Every day, tens of millions of people and 50,000 professional teams rely on Grammarly’s AI-enabled communication assistance to help them communicate confidently and achieve their goals. Our team members have the autonomy to take on exciting challenges in pursuit of our mission to improve lives by improving communication. Together, we’re building on more than a decade of steady growth and profitability. We’re defining the communication assistance category for individuals, enterprises, and developers with tailored service offerings: Grammarly Premium, Grammarly Business, Grammarly for Education, and Grammarly for Developers. All of this begins with our team collaborating in an inclusive, values-driven, and learning-oriented environment.
User Trust is at the heart of everything that we do. To achieve our ambitious goals, we’re looking for a Security Engineer, Application Security to join Grammarly Security. In this role, your decisions and actions will have a substantial impact on maintaining the trust of the millions of users who rely on Grammarly product offerings on a daily basis. You will have the opportunity to drive security improvements across the entire stack, from the UI through the back-end and down to the underlying server infrastructure.
Grammarly’s security engineers have the freedom to develop practical solutions that, in turn, influence our security culture. The engineering landscape at Grammarly is complex, as we create innovative product offerings, expand to new platforms, and scale underlying cloud systems—all while strengthening and expanding our global team. Read more about our approach to security and privacy, learn more about our stack or hear from our team on our technical blog.
As Security Engineer, Application Security, you will:
- Deep dive into our services and product offerings to review the security of the design and implementation of our applications.
- Perform black-box and white-box penetration testing of different product offerings and web services.
- Research and deploy the latest security assurance tools to identify and prevent security risks within CI/CD pipelines.
- Work with the product development teams, raising security awareness and offering expertise to keep our product offerings protected against known and unknown vulnerabilities.
- Root cause findings from the external security community through our bug bounty program.
- Represent Grammarly’s security engineering within and outside of the company.
We’re looking for someone who
- Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
- Is able to collaborate in person 2 weeks per quarter, traveling if necessary to the hub where the team is based.
- Is a security practitioner with a proven record of security-focused technical contributions in application security, secure development, and penetration testing.
- Builds strong relationships with peers across the company to evangelize a security culture.
- Nurtures the talent in the team and raises the technical talent bar when recruiting for their team.
- Identifies impactful and practical solutions for security, from low-hanging fruit to long-term investments.
Support for you, professionally and personally
- Professional growth: We believe that autonomy and trust are key to empowering our team members to do their best, most innovative work in a way that aligns with their interests, talents, and well-being. We support professional development and advancement with training, coaching, and regular feedback.
- A connected team: Grammarly builds a product that helps people connect, and we apply this mindset to our own team. Our remote-first hybrid model enables a highly collaborative culture supported by our EAGER (ethical, adaptable, gritty, empathetic, and remarkable) values. We work to foster belonging among team members in a variety of ways. This includes our employee resource groups, Grammarly Circles, which promote connection among those with shared identities, such as BIPOC and LGBTQIA+ team members, women, and parents. We also celebrate our colleagues and accomplishments with global, local, and team-specific programs.
Compensation and benefits
Grammarly offers all team members competitive pay along with a benefits package encompassing the following and more:
- Excellent health care (including a wide range of medical, dental, vision, mental health, and fertility benefits)
- Disability and life insurance options
- 401(k) and RRSP matching
- Paid parental leave
- Twenty days of paid time off per year, eleven days of paid holidays per year, and unlimited sick days
- Home office stipends
- Caregiver and pet care stipends
- Wellness stipends
- Admission discounts
- Learning and development opportunities
Grammarly takes a market-based approach to compensation, which means base pay may vary depending on your location. Our US and Canada locations are categorized into compensation zones based on each geographic region’s cost of labor index. For more information about our compensation zones and locations where we currently support employment, please refer to this page. If a location of interest is not listed, please speak with a recruiter for additional information.
Base pay may vary considerably depending on job-related knowledge, skills, and experience. The expected salary ranges for this position are outlined below by compensation zone and may be modified in the future.
We encourage you to apply
At Grammarly, we value our differences, and we encourage all—especially those whose identities are traditionally underrepresented in tech organizations—to apply. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, ancestry, national origin, citizenship, age, marital status, veteran status, disability status, political belief, or any other characteristic protected by law. Grammarly is an equal opportunity employer and a participant in the US federal E-Verify program (US). We also abide by the Employment Equity Act (Canada).
Please note that EEOC is optional and specific to US-based candidates.
Please note that Grammarly’s COVID-19 vaccination policy requires that all team members in North America be vaccinated against COVID-19 to meet in person for Grammarly business or to work from a North America hub location. Qualified candidates in North America who cannot be vaccinated for medical reasons or because of a sincerely held religious belief may request a reasonable accommodation to this policy. In Europe, all team members meeting in person for official Grammarly business or working from a hub location are strongly encouraged to be vaccinated and provide proof of COVID-19 vaccination.