Application Pentest Operations Manager

Who We Are

At Corebridge Financial, we believe action is everything. That’s why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.

We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life:

     • We are stronger as one: We collaborate across the enterprise, scale what works and act   decisively for our customers and partners
     • We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders
     • We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future
     • We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work

About the role

The Application Pentest Operations Manager will drive application vulnerability assessment program as services to the global business.

We want to hear from you today if you can:

• Lead the planning, execution, and operational delivery of internal and external application penetration tests.
• Manage a team of application security testers, ensuring timely and high-quality assessments.
• Develop and enforce standardized methodologies, playbooks, and reporting templates.
• Interface with development, DevOps, and product teams to communicate findings and drive remediation.
• Build and maintain metrics, KPIs, and dashboards to monitor the effectiveness of pentesting operations.
• Act as a subject matter expert (SME) for complex application pentesting engagements.
• Collaborate with vulnerability remediation and risk management teams to align findings with broader enterprise risk models.
• Manage third-party pentest vendors, including SOW creation, scoping, and quality review.
• Integrate AI-powered tools and automation platforms (e.g., anomaly detection models) into pentesting workflows.
• Continuously evaluate new application offensive security and AI-based technologies to improve testing coverage and depth.
• Assist in responding to application security incidents and bug-bounty submitted reports.

Please note: The job can only be performed in the State location listed: Houston, TX, Jersey City, NC, and Durham, NC.

What we are looking for

• 5+ years of experience in application security or offensive security, including 2+ years in a leadership or management capacity.
• Deep understanding of web, mobile, thick client, LLM and API security vulnerabilities (e.g., OWASP Top 10, SANS CWE 25).
• Experience with manual and automated pentesting tools (e.g., Burp Suite, ZAP, Metasploit, Nmap, DAST scanners).
• Hands-on using AI pentesting tools.
• Bonus: Experience in AI security (e.g., adversarial ML, model poisoning, AI system threat modeling).

Certifications:

• OSCP – Offensive Security Certified Professional (Required or strong preference)
• GWAPT - GIAC Web Application Penetration Tester
• OSWE – Offensive Security Web Expert (Preferred)
• CISSP – Certified Information Systems Security Professional (Preferred)
• GPEN – GIAC Penetration Tester (Preferred)
• AI/ML Certifications – e.g., Microsoft AI-102, Google Cloud ML Engineer, or similar (Bonus)

For positions based in Jersey City, NJ the base salary range is $125,000 to $145,000 and the position is eligible for a bonus in accordance with the terms of the applicable incentive plan. In addition, we're proud to offer a range of competitive benefits.

#LI-SAFG  #LI-CW1 #LI-Hybrid

This role is deemed a “covered associate” under SEC Rule 206(4)-5, 17 CFR § 275.206(4)-5, Political contributions by certain investment advisers, and other federal and state pay-to-play rules. Candidates for the role must not have made any political contributions that, under 17 CFR § 275.206(4)-5 or other federal or state pay-to-play regulations, would disqualify the candidate or Corebridge Financial from conducting Corebridge Financial’s business, or that would otherwise create a conflict of interest for Corebridge Financial. Applicants who are selected to move forward with the application process will be required to disclose all U.S. political contributions they and their household family members have made over the past two years.

Applications will be accepted for this position until a satisfactory candidate pool has been identified.

Why Corebridge?

At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive.

Benefit Offerings Include:

  • Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being
  • Retirement Savings: We offer retirement benefits options, which vary by location.  In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately.
  • Employee Assistance Program: Confidential counseling services and resources are available to all employees
  • Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000
  • Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work
  • Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it.

Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy.

We are an Equal Opportunity Employer

Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives.

Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs.  If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to TalentandInclusion@corebridgefinancial.com.  Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law.

We will consider for employment qualified applicants with criminal histories, consistent with applicable law.

To learn more please visit: www.corebridgefinancial.com

Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees with physical or mental disabilities.  If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to TalentandInclusion@corebridgefinancial.com.   Reasonable accommodations will be determined on a case-by-case basis.

Applications will be accepted for this position until a satisfactory candidate pool has been identified 

Functional Area:

IT - Information Technology

Estimated Travel Percentage (%): No Travel

Relocation Provided: No

American General Life Insurance Company