Sr Manager, Application Security

Company Summary

As the recognized global standard for project-based businesses, Deltek delivers software and information solutions to help organizations achieve their purpose. Our market leadership stems from the work of our diverse employees who are united by a passion for learning, growing and making a difference.

At Deltek, we take immense pride in creating a balanced, values-driven environment, where every employee feels included and empowered to do their best work. Our employees put our core values into action daily, creating a one-of-a-kind culture that has been recognized globally. Thanks to our incredible team, Deltek has been named one of America's Best Midsize Employers by Forbes, a Best Place to Work by Glassdoor, a Top Workplace by The Washington Post and a Best Place to Work in Asia by World HRD Congress.

www.deltek.com

Business Summary

The Deltek Global Cloud team focuses on the delivery of first-class services and solutions for our customers. We are an innovative and dynamic team that is passionate about transforming the Deltek cloud services that power our customers' project success. Our diverse, global team works cross-functionally to make an impact on the business. If you want to work in a transformational environment, where education and training are encouraged, consider Deltek as the next step in your career!

Position Responsibilities

Security is a core value at Deltek and safeguarding sensitive customer information is critical to our continued success. This position is responsible to manage a world-class application security program that embeds security into the software development lifecycle. This person will need to train security engineers, improve team performance, implement best security practices, and improve security assessment and accuracy while reducing the workload on development teams.

Responsibilities: 

• Manage a team of Application Security (AppSec) engineers
• Product and tool assignments
• Career development
• Performance Reviews and Individual Development Plans
• Improve feedback loops to product teams
• Ensure risk analysis and triaging are performed by AppSec
• Develop and train the AppSec team
• Team processes and policies
• Security tools
• Effective risk analysis
• Technical training and emerging technologies
• Develop long-term strategic goals and objectives for the Application Security team
• Manage the time and priorities for AppSec engineers across multiple time zones and countries
• Ensure Secure SDLC is maintained, and steps are completed and improved across product teams
• Manage and refine manual and automated application security testing processes such as threat modeling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), penetration testing, or other security tools
• Develop, maintain, manage, and report on Key Performance Indicators (KPI) for AppSec
• Close interaction with Deltek project managers and product managers to implement goals of the enterprise secure program 
• Develop processes, tools, and scripts to test, monitor, and report on application security posture across Deltek 
  
  

Qualifications

• Master’s degree with 6 years or related experience, or
• Bachelor’s degree with 8 years of related experience, or
• 10 years of equivalent experience in Computer Science, Information Technology, or related field
• Experience and knowledge of application development processes including source code repositories, programming, issue tracking, and build pipelines (CI/CD, DevSecOps)
• Knowledge of cloud and application security including design, building, testing, and operation
• Experience with application security processes and tools such as threat modeling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), and penetration testing
• Knowledge of common web app, mobile, and API services vulnerabilities (OWASP Top 10) 
• Ability to work with a diverse team that is global and culturally
• Capacity to manage security enhancement projects and resource management
• Excellent ability to build peer relationships across functional teams
• Strong multi-tasking abilities with attention to detail and the ability to dive deeply into issues
• Have excellent verbal and written communication skills and a strong command of the English language 
• Comfortable carrying out complex tasks and projects to completion with minimal supervision 
• Relevant professional certifications from industry organizations such as CompTIA, GIAC, ISC2, and ISACA are desired 
  
  
  

Travel Requirements

20%

Applicant Privacy Notice

Deltek is committed to the protection and promotion of your privacy. In connection with your application for employment with us at Deltek, it is necessary for us to collect, store and use information about you (“Personal Data”) to administer and evaluate your application. We are the “controller” of the Personal Data you provide us and will process any such Personal Data in accordance with applicable law and the statements contained in this Employment Candidate Privacy Notice . Additionally, we have not sold and do not sell Personal Data you provide to us through the job application process.