Application Security Lead

Summary

Andersen is hiring an Application Security Lead to build and lead an AppSec practice, define security services, drive delivery, and shape scalable application security solutions.

Andersen is a European pre-IPO IT company uniting over 3,500 top-class professionals. For over 19 years, we have been helping enterprises and middle-sized firms worldwide transform their businesses by creating effective digital solutions using innovative technologies.

Today, we are working with businesses from various parts of the world, including Western Europe, the USA, and Asia. Our expertise includes FinTech, Healthcare, Retail, Telecom, Media & Entertainment, Logistics, Travel & Hospitality, eCommerce, and other industries.

Responsibilities

• Owning and developing the Application Security service line end-to-end (from definition to scaling).
• Defining service offerings, packaging, and delivery models (pentesting, SSDLC, advisory, etc.).
• Designing and standardizing AppSec delivery methodologies, frameworks, and best practices.
• Ensuring consistent, high-quality delivery across engagements.
• Supporting presales activities.
• Building, growing, and managing AppSec team.
• Defining hiring needs, roles, and skill requirements.
• Mentoring team members and plan team scaling.
• Identifying and resolving delivery bottlenecks.
• Collaborating with GRC, SOC, and Cloud Security teams for integrated delivery.
• Performing hands-on AppSec work during the initial phase (as needed).

Requirements

• Hands-on experience in Application Security for 6+ years.
• Proven experience owning or leading an AppSec function, service, or practice.
• Experience managing a team, including hiring and mentoring.
• Strong client-facing experience (leading discussions, presenting results, advising clients).
• Ability to translate client needs into structured AppSec solutions.
• Experience working in consulting, MSSP, or security service delivery environments.
• Experience supporting presales activities.
• Strong understanding of SSDLC and secure development practices.
• Experience integrating security into CI/CD pipelines.
• Level of English – Upper-Intermediate or higher.

Desired skills

• Certifications such as OSWE, GWAPT, CSSLP, or similar.

Reasons to join us

• Andersen cooperates with such companies as Siemens, Johnson & Johnson, AstraZeneca, BNP Paribas, Allianz, Ryanair, TUI, Verivox, Media Markt, etc..
• For the past four years, our company has been growing annually by 60–100%, and we constantly involve top-notch specialists in our team.
• Andersen has mentoring and adaptation systems for new employees, and transparent performance review and assessment systems will allow you to determine your development path and plan your growth.
• The most important thing that we value in our employees is a commitment to continuous learning. The company supports them in this and gives them access to the best educational platforms, seminars, and practices. In addition, for over 19 years, Andersen has assembled a huge knowledge base and established a robust resource management institution.
• We have been strengthening our expertise since 2007. During this time, we have formed excellent teams with streamlined processes, where you can learn something new from your colleagues every day and enjoy your work.
• We are a cool young team of like-minded people communicating informally.
• You'll have a stable and competitive salary and an extensive benefits package.
• At Andersen, we have many different ways to grow. You can improve as a specialist or a manager, and all your activities will be decently rewarded.

Join us!

Локации

Worldwide