RemoteLeaf Logo
Log in Sign up

Sr. Manager, Application Security

1 week, 5 days ago
United States
Full-time
Lead
Application Security Engineer
Cybersecurity
Agile CI/CD GCP Penetration Testing
Apply Now
Prosper

Prosper

Prosper is an online marketplace lending platform that connects borrowers with lenders, offering personal loans, credit cards, and home equity options. With a focus on financial education, Prosper helps individuals manage their finances and achieve pea...

Banks
251-1K
Founded 2005
$490M raised
View All Jobs 8

Description

  • Define and execute a multi-year application security roadmap aligned with business goals and industry best practices.
  • Integrate threat modeling, security testing, and secure-by-design practices into the SDLC and CI/CD pipeline.
  • Perform security architecture reviews for major product changes.
  • Oversee the end-to-end application security vulnerability lifecycle, including identification, prioritization, and remediation based on risk and threat intelligence.
  • Direct and manage incident response for application security alerts and incidents.
  • Lead the strategy for third-party penetration tests and offensive security activities.
  • Deliver executive-level dashboards and reports on application security posture and risk trends.
  • Manage, mentor, and develop a high-performing team of application security engineers.
  • Drive continuous improvement in application security processes and leadership awareness of product and application security risks.
  • Collaborate with Engineering and Product leadership to embed security into the SDLC and scale the Security Champions program.

Requirements

  • 10+ years of progressive application security experience.
  • 3+ years of people leadership experience leading and developing a technical Application Security Engineering team.
  • Prior software development experience preferred.
  • Strong interpersonal skills and the ability to foster constructive dialogue.
  • Deep technical knowledge with a track record of successful execution in secure SDLC, penetration testing, and security tooling.
  • Experience with SAST, DAST, IAST, RASP, and SCA tools.
  • Strong knowledge of CI/CD pipelines.
  • Experience with cloud-native security, specifically GCP.
  • Experience with container security.
  • Bachelor's degree in Computer Science or a related field, or equivalent work experience.
  • Strong working knowledge of at least two programming or scripting languages.

Benefits

  • Competitive salary of $226,000 - $270,000 annually, plus bonus.
  • 401(k) with a 5% company match.
  • Flexible time off.
  • Paid parental leave.
  • Annual wellness allowance.
  • Comprehensive health coverage.
  • Remote work flexibility, including fully remote options.
  • Udemy access, childcare assistance, pet insurance, and additional savings through Beneplace.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Infatica

Application Security Consultant

Infatica 1-10 Internet Software & Services

Infatica.io is seeking an Application Security Consultant to assess and improve the security of its proxy services by analyzing product components, build and distribution processes, and external detection responses.

Spain Full-time Senior Application Security Engineer
Linux Machine Learning
11 hours, 40 minutes ago
Thumbtack

Staff Application Security Engineer

Thumbtack 1K-5K Construction & Engineering

Thumbtack is hiring a Security Engineer to shape application security for its cloud-based, AI-enabled home services platform as the company scales.

Remote
Full-time Lead Application Security Engineer
$221k-$286k
AWS CI/CD GCP Secrets Management
12 hours, 38 minutes ago
Prolific

Application Security Lead

Prolific 51-250 Professional Services

Prolific is hiring an Application Security Lead to own application security strategy and embed secure development practices across its engineering organization while protecting a platform that handles sensitive data at scale.

United Kingdom Full-time Lead Application Security Engineer
Burp Suite CI/CD Django GCP Kubernetes Microservices MongoDB Python Terraform Vue.js
23 hours, 49 minutes ago
Trustly

SecOps Engineer (AppSec)

Trustly 251-1K Diversified Financial Services

Trustly is seeking a remote SecOps Engineer (AppSec) to help secure its global open banking payments platform by strengthening application, cloud, and infrastructure security controls.

Brazil Full-time Mid Level Application Security Engineer
Cybersecurity GitHub Java Kubernetes Node.js OWASP Penetration Testing Python Shell Scripting
1 day ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers