Manager, Application Security Engineering

2 weeks ago

Charlotte, NC, United States Vanguard Group, Inc. Full time
Responsibilities:
  • The Application Security Engineering Manager must set high-level strategy and direction for scanning orchestration and operational practices, while establishing clear expectations, goals, and success metrics.
  • Lead and mentor a global team of application security engineers to build and efficiently manage scanning orchestration platform to efficiently identify security vulnerabilities.
  • Collaborate with Vanguard development teams and stakeholders to integrate security tools, standards, and processes into the Secure Software Development Lifecycle (SSDLC).
  • Implement and manage security tools within CI/CD pipelines to automate vulnerability detection and remediation.
  • Works closely with Application security teams and leadership to bring application security scanning close to developers to enhance developer experience and reduce risk for the organization.
  • Continuously evaluates the Vanguard's application security scanning requirements, propose solutions, and work with leadership to bridge those gaps to protect Vanguard applications.
  • Define an implement strategy to achieve 100% application code scanning to detect security vulnerabilities.
  • Acts as an industry expert in application security engineering practices and standards and guide the team to mature the Application Security program.
  • Identify the opportunities to automate the Application Security Scanning processes and guide the team to improve efficiency and achieve scalability.
  • Deploy application security tools, processes, and documentation to support alignment with OWASP Top 10, Industry Standards, Current Events, and Best-Practices.
  • Create and maintain documentation for integrated security processes, controls, and incident response playbooks.
  • Develop and maintain a technical roadmap for security tooling and controls to stay ahead of evolving threats.
  • Translate technical security strategies into business-aligned objectives for product and executive leadership.
  • Establish a governance framework to benchmark program maturity and team performance.
  • Stay current on emerging threats, including adversarial ML risks, and lead knowledge-sharing sessions across the organization.
  • Help and guides the AppSec Engineering team towards the technology initiatives such as AI/ML scanning, software-supply-chain, Unified Vulnerability Management platform, etc.
Qualifications
  • Bachelor's degree in Computer Science, Engineering, or related field;
  • 7+ years of professional experience in Security Management, Application Security,
  • Proven people leadership experience in Application Security Engineering.
  • Hands-on experience with application development (Java, Python, etc.)
  • Deep expertise in application security methodologies such as SAST, DAST, SCA, etc.
Desired Skills
  • Strong understanding of Secure SDLC, application security engineering, and AWS cloud.
  • Strong experience with application development (Java, Python, etc.)
  • Familiarity with industry frameworks: OWASP, NIST SSDF.
  • Ability to work independently and define strategic direction.
  • Excellent communication, leadership, and stakeholder management skills.
  • Certifications such as CISSP, CISM, CSSLP, or equivalent are preferred.

Special Factors

Sponsorship
Vanguard is offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission-we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

  • Manager, Application Security Engineering

    6 days ago

    Charlotte, NC, United States Vanguard Full time

    Responsibilities: The Application Security Engineering Manager must set high-level strategy and direction for scanning orchestration and operational practices, while establishing clear expectations, goals, and success metrics. Lead and mentor a global team of application security engineers to build and efficiently manage scanning orchestration platform...

  • Manager, Application Security Engineering

    2 weeks ago

    Charlotte, NC, United States Vanguard Full time

    Responsibilities: The Application Security Engineering Manager must set high-level strategy and direction for scanning orchestration and operational practices, while establishing clear expectations, goals, and success metrics. Lead and mentor a global team of application security engineers to build and efficiently manage scanning orchestration platform...

  • Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Collabera Full time

    Description Home Search Jobs Job Description Application Security Engineer Contract: Charlotte, North Carolina, US Salary Range: 60.00 - 70.00 | Per Hour Job Code: 366997 End Date: 2026-02-15 Days Left: 21 days, 2 hours left Apply Job Title: Senior Application Security / DevSecOps EngineerLocation: Iselin, NJ / Charlotte, NC / Irving, TX/Minneapolis,...

  • Application Security Engineer

    6 days ago

    Charlotte, NC, United States Collabera Full time

    Description Home Search Jobs Job Description Application Security Engineer Contract: Charlotte, North Carolina, US Salary Range: 60.00 - 70.00 | Per Hour Job Code: 366997 End Date: 2026-02-15 Days Left: 16 days, 2 hours left Apply Job Title: Senior Application Security / DevSecOps EngineerLocation: Iselin, NJ / Charlotte, NC / Irving, TX/Minneapolis,...

  • Sr. Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Southern Talent Specialists Full time

    Sr. Application Security Engineer Job Summary: This role focuses on comprehensive application security testing and vulnerability management across the software development lifecycle. It involves conducting automated and manual scans using tools like Invicti, Veracode, and Burp Suite to identify and remediate security flaws in application code and open-source...

  • Application Security Engineer

    7 days ago

    Charlotte, NC, United States LanceSoft Full time

    We are looking for a talented and trustworthy application security engineer. Primary responsibilities include acting as a subject matter expert, performing AppSec testing activities, coordinating vendor pen testing with development teams, and coaching developers. The ideal candidate in this role must be able to bridge the gap to work with both development...

  • Principal Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Veracity Full time

    Job Title: Principal Application Security Engineer Duration: 12+ Months Location: Charlotte, NC / Dallas, TX / Minneapolis, MN / Phoenix, AZ - Hybrid Role (3 days/week onsite) In this role, you will: • Drive strategic efforts and lead transformative projects in the application security program. The ideal candidate will lead the charge in...

  • Principal Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Veracity Full time

    Job Title: Principal Application Security Engineer Duration: 12+ Months Location: Charlotte, NC / Dallas, TX / Minneapolis, MN / Phoenix, AZ - Hybrid Role (3 days/week onsite) In this role, you will: • Drive strategic efforts and lead transformative projects in the application security program. The ideal candidate will lead the charge in...

  • Principal Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Veracity Full time

    Job Title: Principal Application Security Engineer Duration: 12+ Months Location: Charlotte, NC / Dallas, TX / Minneapolis, MN / Phoenix, AZ - Hybrid Role (3 days/week onsite) In this role, you will: • Drive strategic efforts and lead transformative projects in the application security program. The ideal candidate will lead the charge in...

  • Application Security Engineer

    2 weeks ago

    Charlotte, NC, United States Sumitomo Mitsui Financial Group, Inc. Full time

    SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group,...