Senior Manager - Application Security
Jobgether, New Bremen, OH, United States
We are currently looking for a Senior Manager – Application Security in Germany.
In this strategic and highly technical leadership role, you will shape how security is embedded across the entire software development lifecycle in a fast-moving, product-led environment. You will lead a global team responsible for ensuring that applications are secure by design, from early architecture discussions through to production monitoring and vulnerability remediation. Working closely with engineering, product, and platform teams, you will help enable secure‑by‑default development while maintaining developer velocity. The role sits at the intersection of innovation and risk management, including emerging AI-driven development and agentic workflows. You will play a key part in defining how security evolves alongside modern software engineering practices. This is a high‑impact opportunity to influence global security strategy while building scalable, developer-friendly security systems.
Accountabilities
Lead and mentor a globally distributed application security team focused on secure architecture, offensive security, and vulnerability management
Define and operationalize the application security strategy across the software development lifecycle
Embed security into product development processes, including threat modeling, design reviews, and secure SDLC practices
Drive integration of security into CI/CD pipelines, infrastructure‑as‑code, and developer tooling
Oversee vulnerability management programs, including bug bounty, penetration testing, and remediation tracking
Build and scale Security Champions programs to embed security ownership within engineering teams
Guide secure adoption of AI‑powered development tools and emerging agentic AI workflows
Collaborate with engineering, product, privacy, and compliance teams to ensure alignment with security and regulatory standards
Define and track security KPIs to measure adoption, effectiveness, and continuous improvement
Requirements
10+ years of experience in application security, product security, or software security engineering
3+ years of leadership experience managing security or engineering teams
Strong expertise in Secure SDLC design and integration within agile development environments
Hands‑on experience with threat modeling methodologies (e.g., STRIDE, PASTA) and risk assessment frameworks
Proven experience running offensive security programs such as penetration testing, red teaming, or bug bounty initiatives
Familiarity with compliance and security frameworks such as ISO 27001, SOC 2, and OWASP SAMM
Experience working with cloud environments (especially AWS) and microservices architectures
Knowledge of AI/LLM-based development tools and associated security considerations
Strong communication skills with the ability to influence both technical and executive stakeholders
Experience managing distributed, cross‑functional teams in global environments
Benefits
Competitive compensation package including base salary, bonuses, and equity
Flexible remote work options with global collaboration opportunities
Annual learning and development budget for professional growth
Wellbeing support and employee assistance programs
Home office setup allowance and remote work equipment support
Inclusive, diverse, and collaborative international work culture
Exposure to cutting‑edge AI‑driven and security innovation initiatives
#J-18808-Ljbffr
In this strategic and highly technical leadership role, you will shape how security is embedded across the entire software development lifecycle in a fast-moving, product-led environment. You will lead a global team responsible for ensuring that applications are secure by design, from early architecture discussions through to production monitoring and vulnerability remediation. Working closely with engineering, product, and platform teams, you will help enable secure‑by‑default development while maintaining developer velocity. The role sits at the intersection of innovation and risk management, including emerging AI-driven development and agentic workflows. You will play a key part in defining how security evolves alongside modern software engineering practices. This is a high‑impact opportunity to influence global security strategy while building scalable, developer-friendly security systems.
Accountabilities
Lead and mentor a globally distributed application security team focused on secure architecture, offensive security, and vulnerability management
Define and operationalize the application security strategy across the software development lifecycle
Embed security into product development processes, including threat modeling, design reviews, and secure SDLC practices
Drive integration of security into CI/CD pipelines, infrastructure‑as‑code, and developer tooling
Oversee vulnerability management programs, including bug bounty, penetration testing, and remediation tracking
Build and scale Security Champions programs to embed security ownership within engineering teams
Guide secure adoption of AI‑powered development tools and emerging agentic AI workflows
Collaborate with engineering, product, privacy, and compliance teams to ensure alignment with security and regulatory standards
Define and track security KPIs to measure adoption, effectiveness, and continuous improvement
Requirements
10+ years of experience in application security, product security, or software security engineering
3+ years of leadership experience managing security or engineering teams
Strong expertise in Secure SDLC design and integration within agile development environments
Hands‑on experience with threat modeling methodologies (e.g., STRIDE, PASTA) and risk assessment frameworks
Proven experience running offensive security programs such as penetration testing, red teaming, or bug bounty initiatives
Familiarity with compliance and security frameworks such as ISO 27001, SOC 2, and OWASP SAMM
Experience working with cloud environments (especially AWS) and microservices architectures
Knowledge of AI/LLM-based development tools and associated security considerations
Strong communication skills with the ability to influence both technical and executive stakeholders
Experience managing distributed, cross‑functional teams in global environments
Benefits
Competitive compensation package including base salary, bonuses, and equity
Flexible remote work options with global collaboration opportunities
Annual learning and development budget for professional growth
Wellbeing support and employee assistance programs
Home office setup allowance and remote work equipment support
Inclusive, diverse, and collaborative international work culture
Exposure to cutting‑edge AI‑driven and security innovation initiatives
#J-18808-Ljbffr