Senior Manager, Application Security
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Manager leading Application Security initiatives in innovative technology for real estate at First American. Embedding security into product delivery and mentoring a high-performing AppSec team.
Responsibilities:
- Define, build, and evolve the enterprise Application Security (AppSec) strategy and roadmap aligned to business priorities and risk posture
- Own and scale the AppSec program, including secure SDLC standards, policies, and governance across all applications and platforms
- Partner with engineering and platform teams to integrate security into CI/CD pipelines, tooling, and developer workflows
- Drive threat modeling, security architecture reviews, and vulnerability management to identify and mitigate application-layer risks
- Evaluate, implement, and optimize AppSec tooling (SAST, DAST, SCA, API security, container security) and automate security processes at scale
- Build, mentor, and lead a high-performing team of application security engineers and specialists
- Collaborate with Engineering, Product, Cloud, Infrastructure, and GRC teams to embed security into product design and delivery
- Establish and track key security metrics to measure program effectiveness and communicate risk posture to leadership
- Ensure applications meet security, regulatory, and audit requirements while supporting internal and external assessments
- Promote a developer-centric security culture through education, training, and security best practice adoption
Requirements:
- 8+ years of experience in application security, security engineering, or related cybersecurity roles
- 3+ years of experience leading or managing teams in a security or engineering organization
- Strong expertise in secure application development, including secure coding, threat modeling, and SDLC integration
- Deep understanding of modern application architectures (microservices, APIs, cloud-native, distributed systems)
- Experience implementing DevSecOps practices and integrating security into CI/CD pipelines
- Hands-on experience with application security tools (SAST, DAST, SCA, container security, API security)
- Demonstrated ability to assess and prioritize risk, and drive remediation across engineering teams
- Strong cross-functional communication and stakeholder management skills
- Proven ability to influence engineering teams and drive adoption of security practices
- Bachelor's degree in computer science, Information Security, or related field (or equivalent experience)
Benefits:
- medical
- dental
- vision
- 401k
- PTO/paid sick leave
- employee stock purchase plan
Similar Jobs
Security Technik Administrator
Security Technik Administrator responsible for security processes and technical support in ICT operations at Deutsche Telekom. Involves administrative tasks, testing, and procurement.
Director – Offensive Security, Red Team
Director of Offensive Security at FICO. Leading the proactive security strategy across Red Teaming, Threat Intelligence, and Threat Hunting with an AI-first mindset.
Security Director
Security Director responsible for consulting on risk management and security solutions for clients in the Northeastern US. Driving revenue growth and enhancing partnership relationships with stakeholders.
IAM Security Consultant
IAM Security Consultant responsible for managing user identities and access rights across IAM platforms. Collaborating with international teams in a large IT environment from Brazil with remote work.
Network Security Engineer, III
Network Security Engineer III executing advanced security protocols within multicloud environments. Collaborating with infrastructure teams to ensure robust security measures across various platforms.
Principal Cybersecurity Engineer
Principal Cybersecurity Engineer focusing on Governance, Risk, and Compliance at DIRECTV. Leading enterprise-level GRC programs and mentoring cybersecurity professionals.
Director, Physical Security
Director of Physical Security responsible for managing security across GAF's eastern US sites. Leading physical security efforts and developing programs to mitigate risks at multiple locations.
Contract Security, Compliance, Access Analyst
Program Analyst Senior managing compliance and security operations for IHS Electronic Health Records Modernization program. Collaborating with security teams and ensuring personnel access policies are met.
AWS Cloud Security, ICAM Specialist
AWS Cloud Security and ICAM Specialist supporting Case Management Modernization for the U.S. Courts. Designing and managing authentication frameworks within cloud environments.
Infrastructure Security Team Lead
Lead the Infrastructure Security Team at SOFTSWISS, an international iGaming company. Responsible for defining security strategies, priorities, and team development in a remote setting.
Identity Security Engineer – ITDR, CSPM
CrowdStrike Identity Security Engineer managing ITDR and CSPM capabilities for a federal agency. Leading threat detection and response efforts with extensive CrowdStrike platform experience.
Senior Analyst, Information Security Compliance
Senior Analyst for managing information security compliance initiatives at Kontoor Brands. Collaborating with various teams to support regulatory compliance across iconic denim brands.
Corporate Security Engineer – IAC & Automation
Corporate Security Engineer leading design and optimization of security infrastructure at OnePay. Focusing on automation, data protection, and collaboration across IT and security teams.
Senior Manager – Offensive Security
Senior Manager leading offensive security services at Cyber Advisors, focusing on threat-driven risk assessments and remediation activities. Mentoring teams and enhancing security methodologies.
Senior Software Developer, Application Security
Senior Software Developer focusing on Application Security for healthcare technology projects. Responsible for implementing secure development practices and identifying security risks.
Ingeniero de Seguridad
Security Engineer at Stefanini with focus on security controls, incident responses, and compliance. Requires 4-6 years of experience in similar roles with strong technical skills.
Senior Application Security Architect – AppSec
Senior Security Architect at Stone Tech focusing on integrating security into application development lifecycle. Collaborating with development teams to prevent vulnerabilities and enhance security measures.
Senior Security & Compliance Analyst
Senior Security & Compliance Analyst at Headspace ensuring security capabilities and adherence to compliance frameworks. Collaborating with cross-functional teams to mitigate risks in technology stack.
IT and Information Security Coordinator
IT and Information Security Coordinator at Tenchi managing security and IT support roles. Focused on Third-Party Cyber Risk Management with a dedicated team across multiple countries.
Senior Enterprise Architect, Security
Senior or Principal Enterprise Architect at Workday leading security-focused strategic conversations with customers. Using deep technology expertise to translate complex concepts into clear business outcomes.