©2026. IT Job Stuff - All right reserved.

Assistant Vice President - Application Security

Full Time 1 month ago
Employment Information
Job Level
Job Level Experienced Professional
Experience
Experience Less Than 1 Year
Job Type
Job Type Full Time
Location
Location Bangalore, Karnataka

Position Purpose:
The purpose of this position is to lead a high-performing, multidisciplinary security team and shape the future of secure software delivery across the organization. Drive tangible impact through measurable security outcomes, automation, and innovation.

Responsibilities

Direct Responsibilities

  • Lead and manage the Application Security team, ensuring smooth delivery of security assessments (DAST/ASCR/SAST/DevSecOps projects), reviews and daily operations
  • Direct and mentor a team of Application Security Engineers, Analysts, and Automation Specialists, fostering a culture of continuous learning and excellence
  • Provide expert guidance on cybersecurity principles, secure SDLC practices and emerging application security threats and remediation techniques
  • Support and coordinate with internal team and stakeholders related to Application security audits
  • Develop and present management reports, dashboards and security metrics to leadership
  • Drive automation initiatives to improve efficiency of AppSec processes and reduce manual efforts
  • Define and enforce clear KPIs (e.g., mean-time-to-remediate, test coverage, false-positive rate) and OKRs aligned with business objectives
  • Own the application security governance framework continuously align security policies, standards, and controls with PCI-DSS, GDPR, ISO 27001, NIST CSF, and industry-specific regulations
  • Lead periodic compliance audits and risk assessments, delivering evidence-based remediation plans and tracking closure
  • Act as the primary liaison between the AppSec team, application development/production teams, risk officers, and external auditors
  • Monitor and evaluate team deliverables, providing regular feedback, coaching, and career-development plans
  • Conduct resource planning, ensuring appropriate skill-mix and capacity to meet evolving security demands


Technical & Behavioral Competencies
  • Strong knowledge of application security framework and standards (OWASP TOP 10, NIST, SANS, ISO and relevant regulatory requirements)
  • Strong understanding of OWASP top 10, SAST/DAST/SCA, API security, secure coding practices, threat modeling, vulnerability management, cryptography techniques, authentication techniques (SSO, SAML, MFA/2FA, etc.), secure SDLC
  • Serve as the subject-matter expert on secure SDLC, threat modeling, secure coding standards, and emerging attack vectors (e.g., supply-chain, container, serverless)
  • Experience supporting AppSec audits and implementing corrective actions
  • Develop custom scripts, APIs, and machine-learning models to reduce manual triage, improve detection accuracy, and accelerate remediation cycles
  • Experience scripting in Python, PowerShell, or Bash and building RESTful integrations with security platforms
  • Familiarity with risk assessment methodologies, policy governance and security controls monitoring
  • Exposure to tools such as Burp suite, AppSpider, Qualys, Fortify, Dependency scanning tools
  • Accountable for the delivery of AppSec security controls and producing relevant KPI dashboards per the defined standards.
  • Ability to lead, mentor and motivate a team, foster a high-performance culture
  • Strong judgement to prioritize risks, solve problems and make timely decisions
  • Strong communication skills, team management and leadership abilities
  • Excellent interpersonal and influencing skills able to drive security adoption across diverse technical and business audiences
  • Ability to translate complex technical findings into clear, actionable recommendations for senior leadership
  • Experience building metrics-driven security programs that show measurable improvement over time

Specific Qualifications:

Any technical certification (CEH/ISO27001/CISM/CISA/CISSP) will be a value addition

Skills Referential (Required knowledge, skills and abilities)

Technical Skills:

    • AppSec assessments (SAST/DAST/ASCR/DevSecOps/API Security)
    • Vulnerability management and Remediation techniques
    • Governance framework and Reporting
    • KPI and automation

Behavioral Skills:

    • Ability to collaborate / Teamwork
    • Ability to deliver / Results driven
    • Communication skills Oral & Written

Education Level: Bachelor degree or equivalent

Location: Bangalore

IT Job Stuff
IT Job Stuff 1149 Open Jobs
Similar jobs