VP, Application Security

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cyber security SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role:

BeyondTrust is a leader in Privileged Access Management, our solutions protect global companies from the growing cyber threat.

We are seeking a VP of Application Security which is a high-visibility position responsible for leading and maturing all product security practices across the BeyondTrust portfolio. We are seeking a seasoned practitioner with proven success in leading and scaling application security functions within high-growth SaaS environments. The ideal candidate has deep domain knowledge across modern security frameworks, tools, and best practices, broad experience interfacing with enterprise-level customers, and demonstrated success building and leading world-class teams. The VP will lead a team of application security engineers and will report to the SVP of Technology Operations. Open to remote, must be US-based.  

What You’ll Do:

• Partner with Engineering and Ops leadership to evolve the security maturity of the development lifecycle including the integration of modern security controls, standards, and processes into all phases of software design and development
• Identify and facilitate remediation of all vulnerabilities including the establishment of dynamic internal visibility into vulnerability tracking and remediation SLAs
• Take a customer-centric approach by establishing relationships with key customers, ensuring remediation gaps are promptly closed across the installed base, and maturing all internal and external communication and documentation practices
• Establish a close working relationship with Senior PM, Sales, and TAM leadership to mature AppSec involvement in the customer engagement lifecycle including security documentation and supporting tool modernization. 
• Be a senior-level resource for Product, Engineering, and Sales leadership. Train the broader team in the development of these skills. 
• Manage all internal and third-party application penetration testing projects and bug bounty programs
• Research new application security tools and technologies as needed, and evaluate options that enhance security capabilities
• Conduct internal security strategy, readiness, and discovery assessments in partnership with InfoSec, Engineering, and Legal departments 
• Manage, lead, and grow the application security engineering teams

What You’ll Bring:

• Data-driven mindset with strong attention to detail 
• Ability to thrive in an ambiguous and fast-paced environment 
• Intellectual curiosity & willingness to take ownership of deliverables
• Enjoy orchestrating people and managing complicated cross-functional challenges  

Must Have:

• Relevant certifications, i.e. OWASP, OSCP, CASE, CASS, CSSLP, CEH CISSP, GSEC, CISM, etc.
• Experience with AWS security (IAM, EC2, VPC, S3, etc.) and cloud best practices.
• 15+ years of progressive experience in Enterprise Software Application Security 
• BA/BS or Master's degree in a relevant engineering field or equivalent practical experience
• Proven experience building high-performing teams 
• Must be a strong self-starter ready to join a world-class team looking to do big things
• Strong understanding of supply chain attacks and how to successfully mitigate them.

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the worldwide leader in intelligent identity and access security, empowering organizations to protect identities, stop threats, and deliver dynamic access to empower and secure a work-from-anywhere world. Our integrated products and platform offer the industry's most advanced privileged access management (PAM) solution, enabling organizations to quickly shrink their attack surface across traditional, cloud, and hybrid environments.

Learn more: www.beyondtrust.com