Job Summary

Sr. Manager - Application Security

  • Location:
    Marina Del Rey, California
  • Job reference:
    US_EN_6_17404_59513846
  • Category:
    IT Management
  • Contract Type:
    Direct Hire

Our client located in Marina del Rey, CA has an opportunity for a Sr. Manager - Application Security to join their team.
 
In this role, you will work in a small team operational environment on a variety of security projects in a technically diverse environment. In this role, you will be responsible for 1) understanding business processes 2) building and implementing key security solutions; and 3) conducting and overseeing risk assessments, operational activities and technical security tasks.
 
An ideal candidate will have hands-on application security experience, and experience building and managing a team of developers, security engineers and outside service providers.
 
Key Responsibilities:
 


  • Close interaction with project managers and product managers to implement goals of the enterprise application security program
  • Designing security features and security solutions for a wide range of services
  • Collaborating with business unit managers to conduct application security risk assessments
  • Managing penetration tests and security reviews for core applications and APIs
  • Managing and refining manual and automated application security testing processes
  • Developing custom tools to test, monitor and enforce security across our applications
  • Researching security vulnerability disclosures and designing appropriate mitigations
  • Working with the Ops Team to identify server side vulnerabilities to facilitate patch management
  • Overseeing deployment of App Sec training for development and Q/A teams
  • Work within Agile Dev Teams to create application specific Evil User Stories
  • Developing and documenting corporate application security policies
  • Developing and managing application framework and library roadmaps
  • Developing and overseeing vendor contract requirements /SLA’s / POC’s
  • Coordination with Ops and Dev Teams on DB and application hardening, standardization of server images / containerization

 
Requirements:
 

  • Experience with providing project management for application security projects.  
  • Experience in coding applications and secure coding practices
  • Excellent ability to build relationships with developers, business managers and IT engineers
  • Ability to build and manage a team of technical application security architects and engineers
  • Passionate about security and protecting data and services provided to our community
  • Knowledge of all aspects of secure development lifecycle, threat modeling, and web application security assessments
  • Knowledge and experience with both automated tools and manual techniques used to identify web application and web service vulnerabilities and attack methods including the OWASP top 10.
  • Strong multi-tasking abilities with attention to detail and the ability to dive deeply into issues
  • Bachelor's degree in Computer Science, Information Technology, or related field, with 12 years or related experience or a Master’s degree with 10 years of related experience.   
  • Have excellent verbal and written communication skills and strong command of the English language
  • Capable of carrying out complex tasks and projects to completion, with minimal supervision
  • Capable of interpreting project and task requirements and selecting appropriate methodologies to fulfill them
  • Experience implementing application security frameworks such as SAMM or BSIMM
  • Knowledge of common web app and web services vulnerabilities (OWASP Top 10)
  • Experience with vulnerability scanning, penetration testing and risk assessments
  • Relevant professional certifications from industry organizations such as GIAC, ISC2, ISACA desired
  • Flexibility and interpersonal skills coupled with IT security background strongly preferred
  • Experience implementing and working with defect trackers such as ThreadFix, Defect Dojo desired

 


Apply Below

OR

Note: Required fields marked with an asterisk (*).

*
Greeting



*
*
*
*
*
*
Primary Number
*
*
Preferences
[Ctrl (Cmd Mac) + Click] to select multiple industries
Upload your resume
*
Terms of Use
*

Or

Upload your resume using

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Equal employment opportunity information:
EEO is the Law (poster) | EEO is the Law (poster supplement) | Reaffirmation of Affirmative Action Policy Statement