Application Engineer

This is a fully remote position, open to applicants in New York.

📋 Description

• Tooling and automation for internal processes: Design, develop, and maintain internal applications and automations that reduce manual IT/Security tasks, such as provisioning, access reviews, compliance evidence gathering, audit preparation, and ticket triage.

• Tooling and automation for internal processes: Create and sustain integrations across the security and IT ecosystem, including Okta, Zscaler, Splunk/Wazuh, Lacework, Drata, Datadog, AWS, GCP, GitHub, and n8n.

• Tooling and automation for internal processes: Package, deploy, and manage IT/Security tools utilizing Parachute's standard deployment methodologies and observability frameworks.

• AI & agentic workflows: Design agentic AI workflows for IT and Security operations, which include automated alert triage, log correlation, root-cause analysis, guided remediation, access-review automation, and audit evidence collection.

• AI & agentic workflows: Construct the context layer (MCP servers, retrieval pipelines, and embeddings) that anchors AI agents to Parachute-specific systems, policies, and runbooks.

• AI & agentic workflows: Promote AI utilization within the IT/Security team through collaboration, architecture reviews, and reusable skills/plugins/workflows.

• AI & agentic workflows: Develop an MCP-based agent that automates the collection of audit evidence from various sources.

• AI & agentic workflows: Replace manual access-review processes with an agentic pipeline.

• Security: Create, refine, and maintain SOAR/SIEM detections, dashboards, and correlation rules in Splunk/Wazuh.

• Security: Assist with threat hunting, incident investigation, penetration testing, and red teaming, along with forensic analysis using custom tools and queries (Redshift, BigQuery, log platforms).

• Security: Utilize MITRE ATT&CK, NIST CSF, and HITRUST CSF to inform detection engineering and control implementation.

• Security: Contribute to the development of SOC runbooks, SOPs, and automation playbooks (SOAR).

• Security audits & reliability: Automate the collection of compliance evidence and control validation across SOC 2, HITRUST CSF, HITRUST AI, and HIPAA.

• Security audits & reliability: Participate in an on-call rotation for IT/Security incidents; engage in post-incident reviews and continuous improvement efforts.

• Security audits & reliability: Ensure stable, high-performing, and auditable internal application stacks.

⛳️ Requirements

• Minimum of 2 years of experience writing production code in a web-based environment.

• Professional proficiency in Ruby on Rails, and/or Python, and/or JavaScript/TypeScript (React, Node.js).

• Practical experience with AWS (IAM, EC2, ECS/EKS, S3, RDS, Lambda) and infrastructure-as-code.

• Proven experience in integrating with REST/GraphQL APIs and developing automations across SaaS platforms.

• Familiarity with at least one compliance framework - SOC 2, HITRUST, HIPAA, ISO 27001, or NIST.

• Security-focused mindset: you naturally consider least privilege, secrets management, PHI exposure, and audit trails.

• Strong foundational knowledge in data structures, design patterns, and Test-Driven Development (TDD).

• Must be a resident of the U.S.

🏝️ Benefits

• Medical, Dental, and Vision Coverage: Comprehensive plans with options for minimal to no-cost premiums.

• Employer HSA Contribution: Company-funded contributions to your Health Savings Account.

• 401(k) Retirement Plan

• Equity Incentive Plan

• Annual Company-Wide Bonus: Potential for up to 15% bonus based on company performance.

• Remote-First Culture: We embrace a remote-first approach with a dedicated NYC office and reimbursement options for co-working spaces.

• Flexible Vacation Policy

• Summer Fridays: Enjoy 5 additional Fridays off during the summer (separate from PTO).

• Home Office and Wellness Stipend

• Monthly Internet Stipend

• Annual Learning and Development Stipend