Pearson VUE

Team Manager, Application Security

Pearson VUE

full-time

Posted on:

Location Type: Hybrid

Location: BangaloreIndia

Visit company website

Explore more

AI Apply
Apply

Job Level

SeniorLead

Tech Stack

CloudMicroservicesSDLC

About the role

  • Design and implement a comprehensive Application Security Program from strategy through execution, including policies, standards, processes, metrics, and tools
  • Establish and mature security practices across all phases of the SDLC, including threat modeling, secure design reviews, code analysis (SAST/DAST/SCA), penetration testing, and security acceptance criteria
  • Drive security awareness initiatives that elevate secure development practices across engineering teams, fostering a security-first culture
  • Develop and deliver training programs for developers, architects, and product teams on secure coding, threat modeling, and emerging security risks
  • Create enablement frameworks that reduce security friction while improving adherence to security standards and best practices
  • Build security champions programs to embed security advocates within development teams
  • Define and track program metrics and KPIs to measure security posture improvements, vulnerability reduction, and program maturity
  • Architect and implement AppSec tooling strategies, integrating security into CI/CD pipelines and developer workflows
  • Evaluate and adopt emerging security technologies and methodologies, including AI-powered security tools and secure AI development practices
  • Partner with engineering leadership to balance security requirements with development velocity and business objectives
  • Stay current with application security trends, vulnerabilities, and attack vectors, adapting the program to accommodate the changes from these threats/risks.
  • Lead, mentor, and develop a team of 5-10 Application Security Engineers and Architects
  • Build team capabilities through hiring, skills development, career planning, and performance management
  • Foster a collaborative culture that emphasizes continuous learning, innovation, and operational excellence
  • Allocate resources effectively across program initiatives, security assessments, and incident response activities, ensuring the team meets Service Level Agreements (SLAs) and Service Level Objectives (SLOs)
  • Act as the primary point of contact for office-based employees seeking security leadership, career guidance, or organizational support
  • Build and maintain strong relationships with engineering, product, DevOps, and business stakeholders
  • Communicate program strategy, progress, and risk to executive leadership and the CISO
  • Collaborate with peer security leaders to ensure consistency and knowledge sharing across the enterprise security program.

Requirements

  • 10+ years of application security experience with progression into leadership roles
  • 5+ years leading application security programs, including program design, implementation, and maturation
  • 3+ years managing and developing security teams, with demonstrated success in team building and talent development
  • Proven track record establishing security awareness, training, and enablement programs that drive measurable improvements in security posture
  • Deep expertise across the full SDLC, including secure design, code review, security testing, and deployment practices
  • Hands-on experience with AppSec tools and technologies (SAST, DAST, SCA, WAF, API security, secrets management, etc.)
  • Strong understanding of modern application architectures (cloud-native, microservices, APIs, containerization)
  • Proficiency with common programming languages and frameworks
  • Knowledge of security frameworks and standards (OWASP, NIST, BSIMM, ISO 27001)
  • Experience integrating security into CI/CD and DevSecOps environments
  • Bachelor's degree in computer science, Information Security, or related field (or equivalent experience)
  • Desired security certifications (CISSP, CSSLP, CEH, OSCP, or similar)
  • Experience with AI/ML security, including secure development practices for AI systems, model security, prompt injection prevention, and AI-powered security tools
  • Knowledge of AI security frameworks and emerging standards (OWASP LLM Top 10, NIST AI Risk Management Framework)
  • Experience in highly regulated industries (financial services, healthcare, government) with compliance requirements
  • Master's degree in relevant field
  • Experience with security metrics and reporting to board-level audiences
  • Previous experience in multi-site or distributed team leadership.
Benefits
  • Health insurance
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
application securitysecure designcode reviewsecurity testingCI/CD integrationDevSecOpsprogram designprogram implementationvulnerability reductionsecurity metrics
Soft Skills
leadershipteam buildingmentoringcollaborationcommunicationresource allocationcontinuous learninginnovationoperational excellencesecurity awareness
Certifications
CISSPCSSLPCEHOSCPNISTISO 27001OWASPBSIMMAI Risk Management FrameworkOWASP LLM Top 10