Manager: Application Security Engineering Lead

• Bachelor’s degree in Computer Science, Software Engineering, Information Security, or related field (mandatory).
• Postgraduate qualification (MSc in Cybersecurity, MBA) – advantageous.
• Professional Certifications (preferred/required):
• Security: CISSP, CISM, or CISA.
• Application Security: CSSLP (Certified Secure Software Lifecycle Professional), GWAPT, or OSWE.
• Cloud/DevSecOps: AWS/Azure/GCP Security certifications, Kubernetes Security Specialist.
• DevOps/Agile: SAFe Practitioner, Scrum Master (advantageous).

• 8–12 years’ experience in software or security engineering, with at least 3–5 years in an application security leadership role.
• Proven track record in embedding security into large-scale enterprise software delivery.
• Hands-on experience with secure coding, API security, cryptography, and OWASP Top 10.
• Experience implementing SAST, DAST, IAST, and SCA tools into CI/CD pipelines.
• Strong exposure to cloud-native architectures, microservices, and containerized environments.
• Experience managing security audits, regulatory compliance, and third-party risk assessments.

• Deep expertise in application security frameworks, secure SDLC, and DevSecOps.
• Strong knowledge of threat modelling, risk assessment, and security design reviews.
• Leadership ability to build and mentor security-focused engineering teams.
• Excellent stakeholder engagement skills, with the ability to influence engineering and executive leadership.
• Strong analytical and problem-solving abilities with a proactive, prevention-first mindset.

A1L Realizations