Sr. Manager, Application Security

Everything we do at Sunrun is driven by a determination to transform the way we power our lives. We know that starts at the individual employee level. We strive to foster an environment you can thrive in through our commitment to diversity, inclusion and belonging.

We are seeking a highly skilled and experienced Senior Manager of Application Security to lead our organization's efforts in ensuring the security of our applications and software systems. This role will be responsible for developing and implementing comprehensive strategies to protect our applications from potential security threats and vulnerabilities. You and your team will work closely with cross-functional teams to integrate security best practices into the development lifecycle, ensuring that security is prioritized from design to deployment.

Responsibilities:

• Develop and lead the application security strategy and program across the organization.
• Work closely with development teams to integrate security practices into the SDLC, including threat modeling, secure coding practices, security testing and validation and vulnerability management.
• Lead security assessments, code reviews, and penetration testing efforts to identify and mitigate security vulnerabilities in applications.
• Collaborate with IT, compliance, security and risk management teams to ensure alignment with overall security and business strategies.
• Develop and maintain security policies, standards, and guidelines related to application security.
• Drive the selection and implementation of application security tools and technologies.
• Direct the implementation and maintenance of security controls to safeguard sensitive information and company assets
• Communicate security risks and strategies to stakeholders, including executive leadership, in a clear and effective manner.
• Responsible for hiring and developing skilled individuals who align with the company values and effectively managing them to ensure high performance and collaboration

Requirements:

• Bachelor's degree in computer science, Information Security is a plus.
• Professional security certifications (e.g., CISSP, CISM, GWAPT, OSCP) are highly desirable.
• Minimum of 10 years of experience in information security, with at least 5 years focused on application security.
• Proven leadership and team management experience, with the ability to inspire and mentor security professionals.
• Strong knowledge of security principles, techniques, and technologies as they relate to application development and deployment.
• Experience with secure coding practices, automated security testing tools, and vulnerability management.
• Familiarity with compliance frameworks and regulations related to information security (e.g., SOC 2, ISO 27001, CIS, NIST CSF).
• Excellent communication and interpersonal skills, with the ability to engage and work closely with stakeholders across different departments.

Recruiter:
Kristina Sedjo ([email protected])

Please note that the compensation information that follows is a good faith estimate for this position only and is provided pursuant to acts, such as The Equal Pay Transparency Act. It assumes that the successful candidate will be located in markets within the United States that warrant the compensation listed. Candidates in locations outside this local area may have a different starting salary range for this opportunity which may be higher or lower. Please speak with your recruiter to learn more.

Starting salary/wage for this opportunity:
181,269.70 to 217,523.65

Other rewards may include annual bonus eligibility, which is based on company and individual performance, short and long term incentives, and program-specific awards. Sunrun provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and paid time off (PTO). A candidate's salary history will not be used in compensation decisions.

This description sets forth the general nature and level of the qualifications and duties required of employees in this job classification, as well as some of the essential functions of this role. It is not designed to be a comprehensive inventory of all essential duties and qualifications. If you have a disability or special need that may require reasonable accommodation in order to participate in the hiring process or to perform this role if you are offered employment, please let us know by contacting us at [email protected].

Sunrun is proud to be an equal opportunity employer that does not tolerate discrimination or harassment of any kind. Our commitment to Diversity, Inclusion & Belonging drives our ability to build diverse teams and develop inclusive work environments. At Sunrun, we believe that empowering people and valuing their differences are essential for our mission of connecting people to the cleanest energy on earth. We are committed to equal employment opportunities without consideration of race, color, religion, ethnicity, citizenship, political activity or affiliation, marital status, age, national origin, ancestry, disability, veteran status, sexual orientation, gender identity, gender expression, sex or gender, pregnancy or any other basis protected by law. We also consider qualified applicants with criminal convictions, consistent with applicable federal, state and local law.