ApplicationSecurityEngineeringManager

## Accountabilities Lead, grow, and support a senior Application Security team, including hiring, onboarding, performance management, and career development. Enable a highly autonomous team of senior engineers by creating the right environment, structure, and operating rhythm for success. Define and evolve the Application Security strategy and roadmap, translating risk, engineering input, and business priorities into clear initiatives. Act as a hands-on technical partner in areas such as threat modelling, secure architecture design, and application risk analysis. Establish and maintain team planning processes, including OKRs, quarterly planning, and cross-functional coordination. Serve as the primary interface between AppSec and broader engineering, platform, legal, and leadership stakeholders. Drive integration of security into AI-assisted development workflows, including assessment of agentic coding tools and AI-generated code risks. Oversee AppSec alignment with broader security functions, ensuring consistent handling of incidents, risks, and cross-team initiatives. Represent the AppSec function in external contexts such as audits, compliance programmes (e.g., SOC2, ISO 42001), and customer engagements. Promote continuous improvement in AppSec tooling, automation, and security engineering practices. Requirements Strong background in Application Security with hands-on experience in threat modelling, secure design reviews, vulnerability management, and security automation. Proven experience as a Security Engineer who has progressed into engineering leadership or management roles. 3+ years of people management experience, including hiring, mentoring, and performance management of senior security engineers. Deep technical understanding of modern software development practices, secure SDLC, and cloud-native architectures. Strong programming skills, particularly in Python and JavaScript. Experience with cloud platforms such as AWS and/or GCP, and familiarity with CI/CD