Security Engineer, AppSec (Tapestry)

Software EngineeringMountain View, CA (HQ)

About Tapestry

Tapestry is Alphabet’s moonshot for the electric grid, working at the frontier where energy’s complexity meets AI’s potential. We were born at X, the innovation lab responsible for breakthrough technologies like Waymo, Verily and Google Brain.

To keep pace with humanity’s growing energy needs, the world needs a grid that is visible and understandable. We provide that clarity by building advanced, AI-enabled analytical and planning tools that allow the entire energy ecosystem to plan smarter, move faster, and operate more efficiently—ensuring electricity remains reliable and affordable for everyone.

This is a global effort. Tapestry is proud to support partners in the U.S., U.K., Chile, New Zealand, Australia and Brazil as they build a cleaner, more resilient energy future.

Joining Tapestry allows you to do the best work of your life as part of a multidisciplinary team of experts in AI, energy systems, software engineering and product design—all collaborating to reshape energy on a global scale. If you want to tackle problems that matter and build tools with real impact, we would love to meet you. Learn more about our team and our mission here.

About the role:

As an Application Security Engineer, you will integrate security design principles directly into the product development lifecycle. You will work across the entire Tapestry platform, helping the team design and implement secure-by-default software architectures. You will sit with engineering teams to perform deep architectural reviews and build security automation that protects our source code integrity and system availability.

This is an opportunity to design and scale security engineering foundations that empower teams to move quickly without compromising safety or system integrity.

How you will make 10X Impact:

  • Design and implement robust security automation and tooling to secure the "code-to-cloud" stack, including GitHub and CI/CD pipelines.
  • Partner with Product, Legal, and Engineering to lead deep architectural reviews and launch assessments for all product features.
  • Drive the implementation of secure code practices and developer-centric security guardrails across the energy domain.
  • Interface with external partners to refine technical security requirements for Energy Sector infrastructure integrations.
  • Navigate ambiguity to solve complex security problems at scale, ensuring safety is a core component of our engineering DNA.

What you should have:

  • Bachelor’s degree in Computer Science, Software Engineering, or related field.
  • 5+ years of experience building enterprise-grade complex software systems with a focus on Application Security.
  • Proficiency in at least one major language (Go, Java, or Python) to develop and deploy security tooling.
  • Experience with secure SDLC, including automated code analysis (SAST/DAST), secret scanning, and vulnerability management.
  • Ability to work effectively with cross-functional teams of engineers, scientists, and PMs to implement technical security controls.

It’d be great if you also had one or more of these:

  • Experience securing high-scale applications on Google Cloud Platform (GCP).
  • Knowledge of software-defined network defense and zero-trust security models.
  • Experience working in a startup/early-stage company with rapidly changing requirements.

Our values

  • Take charge: We take initiative and own outcomes that move the mission forward.
  • Transform with purpose: We build solutions that solve real problems and create meaningful impact.
  • Be a Tapestry, not a thread: We collaborate across diverse skills and perspectives to achieve more than we can individually.
  • Always fine-tune: We stay curious, seek feedback, and refine our understanding as we learn.
  • Stay grounded: We listen openly, value different perspectives, and stay focused on what matters most.

What we offer

A culture that supports growth, ownership, and meaningful impact, along with:

  • Competitive salary and equity
  • Medical, dental, and vision coverage
  • Generous PTO and flexible hybrid work model
  • 401(k) with employer contribution
  • Professional development
  • The ability to work on important real-world problems within an Alphabet-backed environment

The US base salary range for this full-time position is $147,000 - $255,000 + bonus + equity + benefits. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits.

An Equal Opportunity Workplace

At X, we don't just accept difference - we celebrate it, we support it, and we thrive on it for the benefit of our employees, our products and our community. We are proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

If you have a disability or special need that requires accommodation, please contact us at x-accommodation-request@x.team.

Apply Now

Fields marked with * are required

This position is located in Mountain View, CA. Are you able to commute to the office and/or are you willing to relocate?*
Are you currently or were you previously an Alphabet employee, contractor, or intern?*
Application consent for X

By clicking the “I Accept” button you expressly give your consent for the collection and use of your information as described at https://www.google.com/about/careers/privacy/.  I consent to the processing of my information as described in that policy including that, in limited circumstances, my information may be shared with trusted third parties to assist in certain phases of the hiring process (such as conducting background checks).

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
DisabilityStatus

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans' Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

VeteranStatus

Voluntary Self-Identification


For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in X, the moonshot factory’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race
Gender