Application Security Engineering Manager

Accountabilities

• Lead, grow, and support a senior Application Security team, including hiring, onboarding, performance management, and career development.


• Enable a highly autonomous team of senior engineers by creating the right environment, structure, and operating rhythm for success.


• Define and evolve the Application Security strategy and roadmap, translating risk, engineering input, and business priorities into clear initiatives.


• Act as a hands-on technical partner in areas such as threat modelling, secure architecture design, and application risk analysis.


• Establish and maintain team planning processes, including OKRs, quarterly planning, and cross-functional coordination.


• Serve as the primary interface between AppSec and broader engineering, platform, legal, and leadership stakeholders.


• Drive integration of security into AI-assisted development workflows, including assessment of agentic coding tools and AI-generated code risks.


• Oversee AppSec alignment with broader security functions, ensuring consistent handling of incidents, risks, and cross-team initiatives.


• Represent the AppSec function in external contexts such as audits, compliance programmes (e.g., SOC2, ISO 42001), and customer engagements.


• Promote continuous improvement in AppSec tooling, automation, and security engineering practices.

Requirements

• Strong background in Application Security with hands-on experience in threat modelling, secure design reviews, vulnerability management, and security automation.


• Proven experience as a Security Engineer who has progressed into engineering leadership or management roles.


• 3+ years of people management experience, including hiring, mentoring, and performance management of senior security engineers.


• Deep technical understanding of modern software development practices, secure SDLC, and cloud-native architectures.


• Strong programming skills, particularly in Python and JavaScript.


• Experience with cloud platforms such as AWS and/or GCP, and familiarity with CI/CD tools such as GitHub Actions.


• Experience leading or significantly contributing to AppSec programmes in fast-scaling SaaS or AI-driven environments.


• Strong communication skills with the ability to engage across technical engineers, leadership, and cross-functional stakeholders.


• Practical experience embedding security as a collaborative partner within engineering teams rather than a gatekeeping function.


• Strong understanding of AI-native security challenges, including LLM-based systems, agentic tools, and AI-generated code risks.


• Familiarity with tools such as Semgrep, Wiz, CrowdStrike, HackerOne, or similar AppSec ecosystems is a plus.


• Kubernetes experience and prior Staff/Principal-level security engineering background are considered strong advantages.

Benefits

• Flexible, remote-friendly working model across Europe or selected hubs.


• 25 days of annual leave plus public holidays based on location.


• Work-from-home setup support.


• Generous referral bonus programme.


• Opportunity to work remotely from abroad for up to 60 days per year.


• High-impact leadership role in a fast-scaling AI-driven engineering organisation.


• Significant autonomy and ownership in shaping the AppSec function and strategy.


• Strong career growth potential in a market-defining AI company.


• Collaborative, high-trust engineering culture focused on outcomes and simplicity.


• Opportunity to build and scale AI-native security tooling and practices.

Diese Anzeige stammt von ats_lever. Originalanzeige ansehen ↗