Sr. Engineering Manager, Application Security
Senior Engineering Manager leading Application Security squad to build secure software by default through threat modeling, design reviews, vulnerability management, and developer tooling. Requires hands-on team leadership and expertise across the AppSec stack.
Responsibilities
- Oversee the development of paved roads, libraries, and guardrails that make it easier for developers to commit, test, build, deploy, and operate code securely by default.
- Build and maintain the threat modeling, design review, and vulnerability management programs that protect customers, employees, and the business.
- Drive the adoption of AI across AppSec operations to achieve scaled security workflows, creating leverage for senior engineers.
- Lead and mentor engineers on Betterment’s senior-leaning AppSec squad.
- Establish strong lines of communication with stakeholders across engineering, product, legal, compliance, and risk to understand and deeply support the needs of teams building products across all business lines.
- Inspire and maintain a strong, equitable engineering culture founded on transparency, inclusivity, mentorship, and collaboration.
- Continuously innovate and seek out ways to meet the near- and long-term strategic security needs of the organization.
Requirements
- Expertise across the application security stack: secure SDLC, threat modeling, secure design review, code review, vulnerability management, and the cloud-native ecosystem (AWS, containers, Kubernetes, CI/CD).
- Experience with hands-on managing, mentoring, and inspiring a team of talented security engineers, including senior engineers. Demonstrated success as a true player-coach is a must.
- Experience establishing or scaling a Security Champions or distributed threat modeling program, with a focus on empowering engineering squads to own security outcomes and integrating these practices into the existing software development lifecycle.
- Experience leading execution of large team initiatives and execution of smaller concurrent projects in partnership with senior engineers.
- Familiarity with AI-assisted security tools and a curiosity for exploring how AI can enhance both security workflows and the security posture of the AI-powered features engineers are building.
- A real passion for application security and for empowering developers to do the right thing easily.
- Experience collaborating with other engineering teams, product managers, subject matter experts, and non-technical stakeholders such as legal, compliance, and risk.
Nice-to-Haves
- Experience with AI-assisted security tools and workflows.
Senior Application Security Engineer
Senior Application Security Engineer focused on finding vulnerabilities, performing penetration testing, and building security tooling across Brex's platform. Requires 5+ years in application security with strong Python and AI workflow knowledge.
Senior Application Security Engineer
Senior individual contributor responsible for strengthening Apollo's secure software development lifecycle, performing application security reviews, threat modeling, vulnerability management, and AI security for product, platform, and AI-powered features.
Manager, Security Operations
Lead and manage a security operations team responsible for detection, incident response, and security automation while coaching engineers and managing vendor relationships. Requires 5+ years in security operations and 2+ years of people management experience.