Our ideal candidate has a passion for automation, is a deep innovator, wants to solve complex problems and is looking to be part of a company consistently recognized as a Top Place to Work!

 As the leader in the Employer of Record industry, our focus at G-P is on GROWTH – growth of our customers, our business, and our people. We are committed to providing our employees with opportunities for success at every stage in their career.

 People are the heartbeat of the company and the key to making G-P an inclusive and fun place to work – a collaborative environment where you can make a real impact and love the work you’re doing!

Did we mention you can experience all of this while working remotely? As a remote-first employer, we value your experience and skills more than where you are located. Join our collaborative work environment where you can make a real impact and love the work you’re doing!

 

About the position:

As a Senior Manager of Information Security - Application Security, you will help drive and implement the company’s application security program. This position reports to the Sr Director of Information Security but works closely with Engineering, DevOps, Product, and other team leads across the organization to build security into the product lifecycle from design through deployment.

On any given day, you might be performing a security review, educating the business on secure SDLC, collaborating with development teams on threat modeling, working with engineers to remediate identified risks, or managing application security tools. Through your efforts, you will be securing a large spectrum of sensitive and highly regulated data, ensuring compliance toward regulations, internal policies, and customer requirements.

 

What you will do:

  • Manage a team of engineers/analysts and build resiliency into the team.
  • Evangelize application security fundamentals and act as a consultative partner to development teams.
  • Implement and leverage SAST/DAST/SCA security tools like Veracode and Snyk. Make recommendations on application security tools.
  • Guide and perform security activities including threat modeling and vulnerability analysis, code review, and security testing, ensuring teams are validating for OWASP Top 10 and CWE/SANS Top 25.
  • Triage application risks daily as identified by AppSec scanning tools to eliminate false positives and provide a well-vetted set of vulnerabilities to engineering.
  • Collaborate with engineering to drive the timely remediation of vetted risk and to implement creative solutions that increase operational effectiveness.
  • Generate, collect, and report on AppSec metrics on a regular basis.
  • Make recommendations on development processes and provide production application security support as needed.
  • Create and maintain technical documentation for the AppSec program.
  • Contribute to the development and delivery of security awareness and secure development training programs.

 

What we are looking for:

  • 10+ years of related work experience in the Application Security field.
  • Strong communication and relationship building skills with a high degree of comfort speaking with developers, IT executives, and business partners.
  • Strong experience managing & developing a high-performance team.
  • Strong experience performing security focused application design reviews, threat modeling, manual code reviews, container security, and ethical hacking.
  • Strong experience implementing and working with SAST/DAST/SCA security tools.
  • Deep knowledge of security vulnerabilities, being able to identify issues, assess risk, and provide remediation guidance.
  • Deep knowledge of authentication and authorization options and standards.
  • Strong experience using common security testing tools and techniques to perform security assessments with significant expertise in either web or mobile penetration testing.
  • Strong experience working with developers and knowledgeable about modern web, mobile, and API development practices.
  • Ability to read and write code in at least one programming language.
  • Knowledge of CI/CD practices and experience incorporating security requirements into a SDLC.

 

 

The annual gross base salary range for this position is $176,000-$196,000 plus an annual bonus opportunity.  

G-P values its employees and offers excellent benefits and perks including generous paid parental leave, flexible time off, flexible spending accounts, medical Insurance, dental Insurance, vision Insurance, 401k, and sabbatical after 5 years of service.

We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, and the New York City Fair Chance Act.

Are you ready to work for a company that has continuously being recognized as a Top Place to work. People are the heartbeat of the company and the key to making G- P an inclusive and fun place to work – a collaborative environment where you can make a real impact and love the work you’re doing!

#LI-JT

 

About Us

G-P helps growing companies unlock their full potential by making it possible to build highly skilled global teams in days instead of months. Through our SaaS-based platform, we help find, hire, onboard, pay, and manage team members, quickly and compliantly, to expand growth opportunities for everyone, everywhere – without the hassle of setting up local subsidiaries or branch offices.

G-P. Global Made Possible.

G-P is a proud Equal Opportunity Employer, and we are committed to building and maintaining a diverse, equitable and inclusive culture that celebrates authenticity. We prohibit discrimination and harassment against employees or applicants on the basis of race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth, and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, genetic information, or any other legally protected status.

G-P also is committed to providing reasonable accommodations to individuals with disabilities. If you need an accommodation due to a disability during the interview process, please contact us at careers@g-p.com.

Apply for this Job

* Required
resume chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel
cover_letter chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel
Demographic Questions

We monitor the ethnicity and gender of our job applicants and employees to demonstrate our commitment to a policy of equal employment opportunity by recruiting, hiring, training, compensating, disciplining, and promoting employees without regard to race, color, age, religion, sex, national origin, disability, sexual orientation, gender expression, or any other basis protected by law. Completing this survey is completely voluntary and refusal to provide it will not subject you to any adverse employment treatment. If you choose to complete this survey, your responses may be used in aggregate to identify areas of improvement in our hiring process or thereafter. The information obtained will be kept confidential.

I identify my gender as: (Select one) *




I identify my ethnicity as (mark all that apply) (Select one) *














Enter the verification code sent to to confirm you are not a robot, then submit your application.

This application was flagged as potential bot traffic. To resubmit your application, turn off any VPNs, clear the browser's cache and cookies, or try another browser. If you still can't submit it, contact our support team through the help center.