Application Security Engineering Manager

New

Based in GermanyFull-TimeManager

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

Strong background in Application Security with hands-on experience in threat modelling, secure design reviews, vulnerability management, and security automation.
Proven experience as a Security Engineer who has progressed into engineering leadership or management roles.
3+ years of people management experience, including hiring, mentoring, and performance management of senior security engineers.
Deep technical understanding of modern software development practices, secure SDLC, and cloud-native architectures.
Strong programming skills, particularly in Python and JavaScript.
Experience with cloud platforms such as AWS and/or GCP, and familiarity with CI/CD tools such as GitHub Actions.
Experience leading or significantly contributing to AppSec programmes in fast-scaling SaaS or AI-driven environments.
Strong communication skills with the ability to engage across technical engineers, leadership, and cross-functional stakeholders.
Practical experience embedding security as a collaborative partner within engineering teams rather than a gatekeeping function.
Strong understanding of AI-native security challenges, including LLM-based systems, agentic tools, and AI-generated code risks.

Lead, grow, and support a senior Application Security team, including hiring, onboarding, performance management, and career development.
Enable a highly autonomous team of senior engineers by creating the right environment, structure, and operating rhythm for success.
Define and evolve the Application Security strategy and roadmap, translating risk, engineering input, and business priorities into clear initiatives.
Act as a hands-on technical partner in areas such as threat modelling, secure architecture design, and application risk analysis.
Establish and maintain team planning processes, including OKRs, quarterly planning, and cross-functional coordination.
Serve as the primary interface between AppSec and broader engineering, platform, legal, and leadership stakeholders.
Drive integration of security into AI-assisted development workflows, including assessment of agentic coding tools and AI-generated code risks.
Oversee AppSec alignment with broader security functions, ensuring consistent handling of incidents, risks, and cross-team initiatives.
Represent the AppSec function in external contexts such as audits, compliance programmes (e.g., SOC2, ISO 42001), and customer engagements.
Promote continuous improvement in AppSec tooling, automation, and security engineering practices.

View Full Description & ApplyYou'll be redirected to the employer's site