Application Security Manager (People Leader) - Hybrid

Company: Charles Schwab
Location: Paradise Valley
Posted on: May 4, 2025

Job Description:

Application Security Manager (People Leader) - Hybrid at Charles Schwab summary: As an Application Security Manager, you oversee the application security program, integrating security measures into the software development lifecycle (SDLC). You lead security assessments to identify and mitigate vulnerabilities while developing security policies and training programs. With a focus on secure coding practices and team mentorship, you act as the primary guardian of application security within the organization. Position Type: Regular
Your opportunity
As the Application Security Manager (PL) in Schwab Cybersecurity Services you will be responsible for developing and overseeing an organization's application security program, ensuring security measures are integrated throughout the software development lifecycle (SDLC), by leading security assessments, identifying vulnerabilities, and working with development teams to mitigate risks and implement security best practices across all applications within the company; -essentially acting as the primary guardian of application security within the organization. - - Key Responsibilities: -

• Strategy and Policy Development:
  • Establish and maintain application security policies, standards, and guidelines aligned with industry best practices. -
    • Develop a comprehensive application security strategy to identify and prioritize security risks. -
      • Create and implement application security awareness training programs for developers and other stakeholders. -
        • Security Assessment and Vulnerability Management:
          • Conduct regular security assessments of applications, including SAST scanning, code reviews, and threat modeling. -
            • Identify and prioritize vulnerabilities discovered during security assessments. -
              • Work with development teams to remediate vulnerabilities and track remediation progress. -
                • SDLC Integration:
                  • Collaborate with development teams to integrate security practices into the entire software development lifecycle (SDLC). -
                    • Champion secure coding practices and promote the use of security tools within the development process. -
                      • Team Leadership and Mentorship:
                        • Manage and mentor a team of application security engineers. -
                          • Develop and maintain the technical expertise of the application security team. - What you have
                            Required Skills and Qualifications:
                            • Deep understanding of application security principles, vulnerabilities, and mitigation strategies -
                            • Expertise in secure coding practices and common web application security threats -
                            • Experience with security assessment tools and methodologies (e.g., penetration testing, static code analysis) -
                            • Knowledge of software development lifecycle (SDLC) and Agile methodologies -
                            • Strong communication and collaboration skills to work effectively with development teams -
                            • Leadership and ability to influence stakeholders at all levels -
                            • Relevant security certifications (e.g., CISSP, CISM, CISA, OSCP, OWASP) - - Education: Bachelor's degree in computer science preferred - What's in it for you At Schwab, we're committed to empowering our employees' personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you'll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis. We offer a competitive benefits package that takes care of the whole you - both today and in the future:
                              • 401(k) with company match and Employee stock purchase plan
                              • Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
                              • Paid parental leave and family building benefits
                              • Tuition reimbursement
                              • Health, dental, and vision insurance Keywords: Application Security, Software Development Lifecycle, Vulnerability Management, Secure Coding, Cybersecurity, Security Assessment, Penetration Testing, Agile Methodologies, Security Policies, Team Leadership

Keywords: Charles Schwab, Casa Adobes , Application Security Manager (People Leader) - Hybrid, Executive , Paradise Valley, Arizona