VP, Application Security
Remote United States
Applications have closed
BeyondTrust
BeyondTrust is the worldwide leader in intelligent identity and access security. We protect identities, stop threats, and deliver dynamic access.About BeyondTrust
BeyondTrust is the worldwide leader in intelligent identity and access security, empowering organizations to protect identities, stop threats, and deliver dynamic access to empower and secure a work-from-anywhere world. Our integrated products and platform offer the industry's most advanced privileged access management (PAM) solution, enabling organizations to quickly shrink their attack surface across traditional, cloud and hybrid environments.
Learn more at www.beyondtrust.com.
Job Summary
The VP of Application Security is a high visibility position responsible for leading and maturing all product security practices across the BeyondTrust portfolio. We are seeking a seasoned practitioner with proven success in leading and scaling application security functions within high growth SaaS environments. The ideal candidate has deep domain knowledge across modern security frameworks, tools and best practices, broad experience interfacing with enterprise-level customers, and demonstrated success building and leading world-class teams. The VP will lead a team of application security engineers and will report to the SVP of Technology Operations. Open to remote, must be US-based.
Essential Duties and Responsibilities
- Partner with Engineering and Ops leadership to evolve security maturity of the development lifecycle including the integration of modern security controls, standards, and processes into all phases of software design and development
- Identify and facilitate remediation of all vulnerabilities including the establishment of dynamic internal visibility into vulnerability tracking and remediation SLA’s
- Take a customer-centric approach by establishing relationships with key customers, ensuring remediation gaps are promptly closed across the installed base and maturing all internal and external communication and documentation practices
- Establish a close working relationship with Senior PM, Sales and TAM leadership to mature AppSec involvement in the customer engagement lifecycle including security documentation and supporting tool modernization.
- Be a senior-level resource for Product, Engineering and Sales leadership. Train the broader team in the development of these skills.
- Manage all internal and third-party application penetration testing projects and bug bounty programs
- Research new application security tools and technologies as needed, and evaluate options that enhance security capabilities
- Conduct internal security strategy, readiness and discovery assessments in partnership with InfoSec, Engineering and Legal departments
- Manage, lead and grow the application security engineering teams
Key Qualities
- Data-driven mindset with strong attention to detail
- Ability to thrive in an ambiguous and fast paced environment
- Intellectual curiosity & willingness to take ownership of deliverables
- Enjoy orchestrating people and managing complicated cross-functional challenges
Requirements
- Relevant certifications, i.e. OWASP, OSCP, CASE, CASS, CSSLP, CEH CISSP, GSEC, CISM etc.
- Experience with AWS security (IAM, EC2, VPC, S3, etc.) and cloud best practices.
- 15+ years of progressive experience in Enterprise Software Application Security
- BA/BS or Master's degree in a relevant engineering field or equivalent practical experience
- Proven experience building high performing teams
- Must be a strong self-starter ready to join a world class team looking to do big things
- Strong understanding of supply chain attacks and how to successfully mitigate them.
BeyondTrust is an EEO/AA/Disability/Vets Employer and an equal opportunity employer, offering a competitive salary with excellent benefits. We welcome all candidate applications who meet the minimum qualifications listed above.
What truly makes BeyondTrust special are the people – people who keep the culture strong and make working here exciting, rewarding, and ultimately fun!
Search @beyondtrust and #beyondtrustlife on Twitter and LinkedIn to find out more.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS CEH CISM CISSP Cloud EC2 GSEC IAM OSCP OWASP Pentesting Product security S3 SaaS Security strategy Strategy Vulnerabilities
Perks/benefits: Competitive pay
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs