Application Security Manager - Remote - Referral Board None Bookmark Share Print 77 0 0

Listing Description

What this job can offer you



  • You'll be joining 250 engineers across Frontend, Backend, SRE and QA. We're organised into cross-functional development teams assigned to specific product areas. Regardless of the specific team you will be joining, you will be working on building features, tools, APIs and integrations for one of our products.

  • Our backend is built with Elixir and Phoenix, with a Postgres database. We use React and Nextjs for our frontend. Gitlab is used as a version control tool and a CI/CD solution. Our applications are hosted on AWS. We fully rely on our CI for deployments and deploy multiple times per day.


What you bring



  • Significant experience managing application security teams (preferably in SaaS environments)

  • Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.

  • Strong analytical and managing skills

  • Strong understanding of common application security vulnerabilities (e.g., OWASP Top 10) and secure coding practices.

  • Experience with penetration testing tools and methodologies.

  • Knowledge and experience in Security Incident management and/or SOC (including SIEM) are a plus

  • Relevant certifications are a plus (such as CISSP, CISM, SANS GIAC, OSCP).

  • Writes and speaks fluent English

  • It's not required to have experience working remotely, but considered a plus


Key Responsibilities 



  • Lead and manage the application security program, closely align with the overall Security program.

  • Support the application security team on their BAU, projects and individual growth (through guidance and mentorship).

  • Oversight of the vulnerabilities management process, working closely with the Engineering teams and providing relevant metrics to the Security Director.

  • Promote Secure Development Life Cycle on the Engineering team.

  • Ensure proper security architecture within SRE, Development and Product teams.

  • Integrate threat modeling practices into product and development.

  • Support the improvement and maintenance of security tooling used in CI/CD pipeline.

  • Coordinate and support penetration testing engagements, including scoping, planning, and reviewing findings.

  • Depending on profile, additional responsibilities may also be assigned:

    • Support Incident management team

    • Support improvement on SIEM tools and processes




Practicals



  • You'll report to: Security Director

  • Direct reports: 2 appsec members

  • Team: Security - Engineering

  • Location: We can hire anywhere in the world, with candidates from EMEA being prioritized due to business needs

  • Start date: As soon as possible


Remote Compensation Philosophy


Remote's Total Rewards philosophy is to ensure fair, unbiased compensation and fair equity pay along with competitive benefits in all locations in which we operate. We do not agree to or encourage cheap-labor practices and therefore we ensure to pay above in-location rates. We hope to inspire other companies to support global talent-hiring and bring local wealth to developing countries.


At first glance our salary bands seem quite wide - here is some context. At Remote we have international operations and a globally distributed workforce.  We use geo ranges to consider geographic pay differentials as part of our global compensation strategy to remain competitive in various markets while we hiring globally.


The base salary range for this full-time position is $54,250 USD to $122,050 USD. Our salary ranges are determined by role, level and location, and our job titles may span more than one career level. The actual base pay for the successful candidate in this role is dependent upon many factors such as location, transferable or job-related skills, work experience, relevant training, business needs, and market demands. The base salary range may be subject to change.


Application process



  1. Interview with recruiter

  2. Interview with future manager

  3. Interview with team members (no managers present)

  4. Prior employment verification check 


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided


About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765