Application Security Engineer

About Dashlane Dashlane’s mission is to deliver the credential security every business and employee needs to thrive. Millions of consumers, and over 25,000 brands worldwide, such as Michelin, Air France, and Forrester, trust Dashlane for industry-leading innovations, patented zero-knowledge security, and an unmatched user experience. Founded in Paris, Dashlane has since established offices in New York and Lisbon, and has grown to more than 300 Dashlaners globally. We're looking for people who actively use AI tools to drive efficiency, creativity, and impact in their work. At Dashlane, we drive innovation and value learning, strive for excellence in everything we do, and thrive as one team. Learn more about life at Dashlane , including how we work , how we hire , and the benefits of being a Dashlaner . About the role As an Application Security Engineer, you will play a crucial role in safeguarding Dashlane’s systems and ensuring that our secure development lifecycle remains cutting-edge. Collaborating across all departments, you will advocate for and implement best-in-class security practices, helping millions of Dashlane users enjoy a safer digital life. Location: You will be based in Paris, with English as your working language. At Dashlane, we embrace a hybrid culture that combines the best of both worlds: the creativity and energy of in-person collaboration with the flexibility of remote work. Our model is designed to strengthen team connections while supporting individual productivity and work-life balance. To maximize collaboration, we come together in the office on Mondays, Tuesdays, and Thursdays, while Wednesdays and Fridays offer more flexibility for focused work. At Dashlane you will: Drive the continuous improvement of Dashlane’s security program across the product and company Conduct architecture design reviews, threat modeling, and technical security assessments of Dashlane’s product (application and infrastructure) to identify security risks and provide mitigation guidance Ensure security best practices are integrated throughout the software development lifecycle (SDLC) Build upon and scale Vulnerability Management to ensure the team can track, analyze, and manage vulnerabilities and their remediation Perform risk assessments of Dashlane’s internal systems, environments, assets, and data, and implement security best practices accordingly Evaluate and implement security tooling and/or build customized tooling in-house where necessary Participate in Compliance and Incident Response Innovate and propose new forward-looking security features that protect Dashlane and our users Requirements: Good understanding of application security best practices, including experience with threat modeling and risk assessments. Demonstrated experience building or improving an SDLC program Familiarity with CI/CD pipelines and their security implications Familiarity with cloud infrastructure (e.g., AWS, Azure, Kubernetes), and Infrastructure-as-Code (e.g., Terraform) Interest in enabling secure use of AI tools to drive efficiency, creativity, and impact internally Bonus points if you have: An interest in cryptography and its application in modern systems Experience in Identity and Access Management (IAM) frameworks and protocols (Passkeys, SAML, OAuth, SCIM, etc) The critical competencies you’ll bring with you: Communication Collaboration: You engage and listen empathetically to others, adjusting your communication style to fit the audience and message. You are experienced in communicating with technical and non-technical audiences. Motivated Learner : You learn new technologies and processes quickly, and understand where to look for knowledge when you need it. Adaptability: you’re comfortable digging into non-technical parts of the business to provide security support and guidance. What Dashlane offers you: Equal Parental leave - regardless of gender, up to 20 weeks fully paid leave to take care ... (truncated, view full listing at source)