Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
About the role
- Manager of Application Security Operations leading AppSec program for financial services. Driving strategy and collaboration to enhance security across the organization.
Responsibilities
- Own the vision, strategy, and roadmap for the Application Security program enterprise-wide.
- Build, mentor, and lead a team of AppSec engineers and specialists.
- Define program objectives, performance metrics, and KPIs to measure and report success.
- Advocate for application security at all levels of the organization, from developers to executives.
- Collaborate with software engineering teams to integrate security controls, best practices, and policies throughout the SDLC.
- Promote a "security by design" culture by coaching and mentoring developers on secure coding practices.
- Support threat modeling, secure code reviews, and security architecture discussions.
- Implement, configure, and maintain application security tooling (SAST, DAST, SCA, IaC scanning, API security, container security).
- Integrate security checks into CI/CD pipelines using GitHub and other platforms.
- Evaluate emerging technologies and recommend tools that enhance automation and scalability.
- Partner with SOC analysts to investigate application-layer alerts, incidents, and vulnerabilities.
- Track and report key security metrics, including vulnerability remediation timelines, pipeline coverage, and compliance with policies.
- Provide executive reporting and actionable insights on AppSec maturity and risk reduction progress.
Requirements
- Proven ability to design, lead, and scale an enterprise application security program.
- Strong understanding of secure software development, OWASP Top 10, threat modeling, and vulnerability management.
- Experience partnering with development organizations to secure agile/DevOps pipelines.
- Hands-on familiarity with security tooling (SAST, DAST, SCA, IaC, container security) and integrating with source code management (GitHub/GitLab, etc.).
- Excellent communication, leadership, and stakeholder management skills.
- Ability to lead through influence and establish a strong security culture across multiple technology teams.
- 5+ years of professional experience in information security with a focus on application security, 2+ years in a leadership role desired.
- Previous experience as a developer or working closely with software development teams is strongly preferred.
- Certifications such as CSSLP, GWAPT, GWEB, CSSLP, OSWE, or other relevant industry credentials are a plus.
- Proven experience leading security initiatives at scale in enterprise environments, ideally within financial services or other highly regulated industries.
- Candidates should be comfortable with an on-site presence to support collaboration, team leadership, and cross-functional partnership.
Benefits
- Competitive compensation
- Generous vacation policy, paid holidays, and paid sick time
- Medical Insurance, Dental Insurance, and Vision Insurance (employee-paid)
- Company-paid Short-Term and Long-Term Disability Insurance
- Company-paid Group Life insurance
- Company-paid Employee Assistance Program (EAP) and Calm App subscription
- Employee-paid Pet Insurance and optional supplemental insurance coverage
- Vested 401(k) with company match and financial wellness programs
- Flexible Spending Account (FSA), Health Savings Account (HSA) and commuter benefits options
- Paid maternity leave, paid paternity leave, and fertility benefits
- Career growth and learning opportunities
- …and so much more!
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.