Application Security Team Lead

Description

Who are we?

Checkmarx is the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services address the needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. At Checkmarx, we believe it’s not just about finding risk, but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders.  

We are honored to serve more than 1,800 customers, which includes 40 percent of all Fortune 100 companies including Siemens, Airbus, SalesForce, Stellantis, Adidas, Wal-Mart and Sanofi.   

How will you make an impact?

• Client Engagement and Advisory:

1. Act as the primary point of contact for clients in application security program development and implementation matters.
2. Work closely with client stakeholders to understand their security objectives, evaluate their current security posture, and offer practical recommendations.
3. Conduct regular meetings with clients to ensure ongoing alignment on project goals, milestones, and outcomes.

• Program Implementation and Strategy:

1. Lead the planning, design, and execution of comprehensive application security programs tailored to client needs.

• Engineering Collaboration:

1. Work closely with the engineering team to ensure that technical findings are effectively communicated to client teams.
2. Provide structured client feedback to the engineering team to refine and improve security assessment and vulnerability remediation processes.
3. Facilitate knowledge sharing between engineering and client teams to improve understanding and capabilities in application security.

• Training and Enablement:

1. Develop training sessions and workshops for client development and AppSec teams to improve security awareness and best practices.
2. Help clients’ teams become self-sufficient in conducting security assessments and managing vulnerabilities through continuous enablement.

• Continuous Improvement and Reporting:

1. Track and report on program progress, KPIs, and outcomes to both internal and client stakeholders.
2. Identify areas for improvement in both the client’s security posture and our internal processes.
3. Stay updated on the latest trends and technologies in application security, compliance frameworks, and threat landscapes to improve client programs continuously.

Requirements

What is needed to succeed?

• Bachelor's degree in computer science or another highly technical scientific discipline.
• Experience in programming languages like Java, .Net, Go, Python, etc.
• Firm understanding of large enterprise-grade systems and architectures, as also as modern development paradigms.
• Experience in security-testing applications covering some market standards AppSec Frameworks like OWASP Web/API/Mobile Top 10, PCI-SSD, etc.
• A proactive approach to spotting problems, areas for improvement, and performance bottlenecks.
• Strong technical aptitude
• Highly motivated self-starter.
• Fluent in English (++ for other languages).
• Some international travel required (less than 10%)

What we have to offer

Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great work-life balance, as well as great benefits and perks throughout the year.

Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, gender, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.