Vp For Application Security

Overview

Vp For Application Security jobs in Taguig
Posted today

Job Description

Job brief

Seeking for an experienced Application Security Head to drive our secure development initiatives and lead a team of security professionals. The ideal candidate will have a strong technical background in application security, hands-on expertise with security testing tools, and proven leadership experience in building and managing security programs for modern application environments.

Responsibilities

• Lead the application security function, providing guidance and mentorship to the team.
• Design, implement, and oversee the application security program, including policies, standards, and best practices
• Manage and conduct application security testing (SAST, DAST, IAST, RASP) across multiple projects.
• Partner with engineering, DevOps, and product teams to embed secure coding practices throughout the software development lifecycle (SDLC).
• Evaluate, implement, and maintain application security tools such as Veracode, Checkmarx, Burp Suite, Fortify, and others.
• Collaborate with developers and architects to secure modern application architectures, including microservices, containers, and APIs.
• Provide expert guidance on the OWASP Top 10 and other common vulnerabilities.
• Monitor emerging threats, vulnerabilities, and security trends to continuously enhance the security posture.
• Drive remediation and risk mitigation efforts, ensuring compliance with internal and external standards.
• Report on application security metrics and program effectiveness to senior leadership.

Requirements

• 10+ years of experience in application security, with at least 3+ years in a leadership role.
• Strong knowledge of application security testing methodologies and tools (SAST, DAST, IAST, RASP).
• Deep understanding of OWASP Top 10, secure coding practices, and software security standards.
• Proven experience with application security tools (e.g., Veracode, Checkmarx, Burp Suite, Fortify).
• Familiarity with modern architectures such as microservices, containers, APIs.
• Experience collaborating across engineering, DevOps, and product teams to drive secure development practices.
• Excellent communication, leadership, and stakeholder management skills.

For FILIPINO CITIZEN WHO IS CURRENTLY in the PHILIPPINES ONLY

VP for Application Security

Posted today

Job Description

Position: Vice President Application Security

Location: BGC, Taguig

Work Setup: Hybrid

Schedule: Night Shift

About The Role We are seeking an experienced Vice President for Application Security to lead the development and execution of enterprise-wide application security strategies. This role will be based in BGC on a hybrid setup and will operate during the night shift to align with global teams.

Key Responsibilities

• Lead the overall application security program, ensuring alignment with business and technology goals.
• Oversee secure software development lifecycle (SDLC) practices across the organization.
• Develop and manage strategies for threat modeling, vulnerability management, and incident response.
• Ensure compliance with relevant security standards and frameworks (ISO 27001, NIST, OWASP, PCI-DSS, SOC 2, etc.).
• Build, mentor, and lead a high-performing security team.
• Collaborate with executives, product, and engineering teams to embed security best practices into organizational processes.
• Provide regular reporting on risk posture and security initiatives to senior leadership.

Qualifications

• Extensive professional experience in application security leadership roles.
• Strong technical expertise in secure SDLC, application testing, and vulnerability management.
• Demonstrated knowledge of compliance frameworks such as ISO 27001, NIST, PCI-DSS, and SOC 2.
• Proven ability to lead and scale security programs in enterprise environments.
• Excellent communication and stakeholder management skills.
• Ability to work effectively in a global, fast-paced environment.

Why Join Us

• Opportunity to shape and lead a global application security strategy.
• Collaborative and innovative work culture.
• Competitive executive-level compensation and benefits.

How To Apply

Interested candidates are encouraged to submit their updated CV for consideration.

Data Privacy and Information Security Management System Manager

Posted 1 day ago

Job Description

Position Description

This role is responsible for the development, implementation, and management of the company's data privacy and information security programs. This individual will ensure the company's compliance with global and local data protection regulations and industry security standards.

The role involves an understanding of both regulatory requirements and technical security controls. The manager will be a strategic partner, fostering a culture of privacy and security throughout the organization, and will serve as the primary point of contact for all related matters.

Key Results Areas

• Develop, implement, and maintain comprehensive data privacy and information security policies, standards, and procedures. Stay abreast of changes in relevant laws and technologies to update the strategy accordingly.
• Lead the company's compliance efforts with the Data Privacy Act of 2012. Conduct regular privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new projects and systems.
• Identify, assess, and manage information security and privacy risks. Oversee the implementation of risk mitigation strategies, including security controls, data minimization practices, and incident response plans.
• Lead the security incident and data breach response process. Coordinate with legal, IT, and other departments to investigate, contain, and remediate incidents, ensuring timely and compliant notification to regulators and affected individuals when necessary.
• Develop and deliver mandatory training and awareness programs to educate employees on their roles and responsibilities regarding data privacy and information security. Promote a security-conscious culture across the organization.
• Work closely with the IT to ensure security controls are correctly implemented and maintained. This includes managing vulnerability scanning, penetration testing, and overseeing the security of network, cloud, and application infrastructure.
• Conduct security and privacy assessments of third-party vendors and partners. Ensure that data processing agreements (DPAs) and security clauses are robust and that vendors adhere to the company's standards.
• Establish and maintain metrics to monitor the effectiveness of the security and privacy programs. Provide regular reports to senior management on the state of privacy and security risks, compliance, and program performance.

Qualifications

• Graduate of a four (4) year course (Business, Finance, or related field)
• At least five (5) years' experience in Data Privacy, Information Security and other related fields.
• Familiarity with the Philippine Data Privacy Act is a must
• Certifications such as CIPM, CISSP, CISM, CISSP, or equivalent are highly desirable.

#J-18808-Ljbffr

---