Team Lead, Application Security
Description
We are seeking an experienced and driven Application Security Team Lead to oversee and strengthen the security of our enterprise software products. This role is responsible for leading continuous application security assessments, guiding a team of security professionals, and partnering closely with development and product leaders to reduce risk across the organization.
As a key security leader, you will help integrate secure practices into the software development lifecycle (SDLC), improve vulnerability management processes, and drive initiatives that enhance overall security posture. This position is ideal for someone who combines strong technical expertise with leadership, communication, and organizational skills.
Responsibilities:
- Lead and manage the application security team’s schedules, priorities, and resource allocation
- Delegate assignments and oversee team deliverables
- Conduct informal coaching and formal performance evaluations
- Manage application security toolsets, platforms, and supporting infrastructure
- Oversee vulnerability tracking and remediation progress across all products
- Monitor and report security metrics and assessment progress to leadership
- Build strong working relationships with development leaders and product owners
- Support newly acquired products and new development initiatives with security onboarding
- Partner with divisions to integrate security testing into their software development lifecycle
- Lead projects that improve overall application security posture and reduce enterprise risk
- Contribute to enterprise-wide security initiatives as assigned by leadership
- Identify and implement process improvements to enhance team efficiency and productivity
Qualifications:
- Bachelor’s degree in Information Technology, Computer Science, Information Assurance, or a related field; or equivalent practical experience
- 3–5 years of experience in software development or application security
- 5+ years of experience working with enterprise software products (experience with Tyler products or similar platforms preferred)
- Strong understanding of application security concepts, vulnerability management, and secure development practices
- Proven ability to manage multiple priorities in a fast-paced technical environment
- Demonstrated leadership experience, including delegation and performance management
- Excellent communication, interpersonal, and stakeholder management skills
- Strong negotiation, conflict resolution, and problem-solving abilities
- Professional, positive, and collaborative approach
The ideal candidate will have:
- Advanced understanding of the following security concepts:
- Application vulnerability assessments
- Common application and operating system weaknesses
- Penetration testing methodologies
- Perimeter security (firewalls, intrusion detection, etc.)
- Regulatory compliance standards: PCI-DSS, SOX, HIPAA
- Secure development concepts
- Experience with manual testing of OWASP Top Ten Vulnerabilities
- Currently hold offensive security certification(s) (e.g., GWAPT, OSCP, CBBH, CPTS)
- Experience with security testing tools (e.g., BurpSuite, Kali Linux, SQLMap, Metasploit, Nmap)
- Experience with public-sector software products and cloud environments