Director Of Application Security

Location: Remote within USA

About the Role

As the Director of Application Security, you will lead and scale AlphaSense's Application Security function, reporting to the VP of Product Security. You will build and manage a high-performing team responsible for securing our cloud-based SaaS products across the entire software development lifecycle. In this role, you'll establish strategic security initiatives, drive organizational change, and partner closely with engineering, product, and compliance teams to embed security as an enabler of innovation rather than a blocker.

You'll balance hands-on technical leadership with people management, mentoring engineers while shaping the vision and roadmap for application security in a fast-growing, AI-driven technology company. This role requires someone who can translate complex security challenges into business outcomes and foster a culture of security excellence across distributed global teams.

Key Responsibilities

• Build, mentor, and manage a globally distributed team of application security engineers, establishing career development paths and fostering a collaborative security culture
• Develop and execute the application security strategy, defining metrics and KPIs while partnering with leadership to communicate security posture to executives
• Oversee application security initiatives across all products, including secure SDLC practices, vulnerability management, threat modeling, architecture reviews, and bug bounty programs
• Define tooling strategy for Application Security, driving automation to achieve high remediation coverage while maintaining development velocity
• Partner with engineering, product, compliance, and other security teams to embed security throughout the organization, delivering training and acting as a trusted advisor on security architecture

Required Qualifications

• 10+ years of experience in Application or Product Security, with at least 3+ years in a management or leadership role
• Proven track record of building and scaling security teams in SaaS or cloud-native environments
• Deep expertise in web application security, API security, microservices, and containerized architectures
• Strong understanding of modern development practices, including CI/CD, DevSecOps, and agile methodologies
• Experience implementing and managing security tooling across the SDLC (SAST, DAST, SCA, container scanning)
• Demonstrated ability to work effectively with distributed global teams across multiple time zones
• Excellent communication and stakeholder management skills, with the ability to present to executive audiences
• Strong technical background with hands-on experience in at least one major programming language (Python, Java, Go, JavaScript)
• Knowledge of cloud security best practices, particularly AWS, Kubernetes, and container orchestration

Nice to Have

• Experience in data analytics, AI/ML, or LLM product security
• Background implementing runtime application security or supply chain security controls
• Track record of driving security automation initiatives that improve both security posture and developer experience
• Experience with security frameworks (OWASP SAMM, BSIMM, NIST CSF)
• Certifications such as CISSP, OSCP, OSWE, CSSLP, AWS Security Specialty, or CCSP
• Prior experience managing security in highly regulated industries or with enterprise customers

Why Join Us?

• Work on cutting-edge security challenges in a fast-growing company.
• Opportunity to shape and drive product security strategy.
• Collaborative and security-minded engineering culture.
• Competitive compensation, benefits, and career growth opportunities.

If you're a hands-on security leader passionate about building secure products, we'd love to hear from you!