Director Of Application Security- Remote
REMOTE, NC, US, REMOTE
Salary: $180,000-$195,000 + bonus eligible
Who We Are
Compass Technology is a dedicated internal team for Compass Group delivering enterprise-wide initiatives that support our diverse customer base and enhance our business operations.
Our domain encompasses a vast spectrum of opportunities, from hands-on desk support to Cybersecurity, Cloud Engineering, AI, and Modern Application development. We are committed to building robust IT infrastructures, driving digital transformation, and much more.
Compass Group is the leading foodservice management and support services company, with $26 billion in revenue in 2023.
In 2023, Compass Group was named one of Forbes’ America’s Best Large Employers along Springbuk’s Healthiest 100 Workplaces in America (since 2019).
Job Summary
This hands-on management role will serve as part of the Compass Group North America Cybersecurity team, working closely with application development and IT teams to implement the Application Security program. This role will engage with internal and external stakeholders to drive prompt remediation of vulnerabilities, and ensure applications developed are secure by design.
Key Responsibilities
- Lead and support the Application Security team, establishing team and individual goals that support program objectives and department goals.
- Recruit, train, and mentor staff. Conduct regular performance appraisals.
- Evaluate and secure applications by driving adoption of secure coding frameworks and industry best practices; develop standards and training materials to assist development teams in building security into new and existing applications.
- Drive the adoption of the Application Security technology stack, standards, policies, and frameworks across all Compass Group North America business sectors. Ensure consistent engagement and compliance.
- Maintain and develop documentation, including technical manuals, best practices, and standard operating procedures.
- Lead meetings and deliver presentations for different audiences, including development teams and senior leadership.
- Provide continuous feedback and education on security best practices and methodologies to resolve vulnerabilities and mitigate risk.
- Contribute to the review of internal processes and activities, and assist in identifying potential opportunities for improvement and automation.
Job Qualifications
- 1+ years of management experience, with a successful track record of building teams and driving program improvement
- 5+ years of software development or IT architecture/engineering experience
- 3+ years of technical project or portfolio management experience
- Experience with the integration of tools into development pipelines
- Understanding of a broad range of Application Security issues as well as their mitigation strategies
- Experience with scripting or object-oriented programming languages such as JavaScript, Python, Java, or C#
- Comfort with performing code review and working with developers to remediate vulnerabilities and apply secure coding best practices
- Strong communication skills that include the ability to clearly articulate thoughts and distill complex problems into digestible pieces of information
- Bachelor's degree in Computer Science, Information Security or related field. Additional, relevant experience may be considered in lieu of a degree.
Preferred:
- Knowledge of manual testing tools such as Burp Suite Pro
- 2+ years’ experience working with SAST/DAST/SCA application security tools such as: Rapid7 InsightAppSec, SonarQube, Dynatrace, Veracode, Checkmarx, WhiteSource, etc.
- Standard industry certifications desired
Apply to Compass Group today!
Click here to Learn More about the Compass Story
Compass Group is an equal opportunity employer. At Compass, we are committed to treating all Applicants and Associates fairly based on their abilities, achievements, and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or any other classification protected by law.
Qualified candidates must be able to perform the essential functions of this position satisfactorily with or without a reasonable accommodation. Disclaimer: this job post is not necessarily an exhaustive list of all essential responsibilities, skills, tasks, or requirements associated with this position. While this is intended to be an accurate reflection of the position posted, the Company reserves the right to modify or change the essential functions of the job based on business necessity. We will consider for employment all qualified applicants, including those with a criminal history (including relevant driving history), in a manner consistent with all applicable federal, state, and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, and the New York Fair Chance Act.
Compass Technology maintains a drug-free workplace.
Applications are accepted on an ongoing basis.
Associates at Corporate are offered many fantastic benefits.
- Medical
- Dental
- Vision
- Life Insurance/ AD
- Disability Insurance
- Retirement Plan
- Paid Time Off
- Holiday Time Off (varies by site/state)
- Associate Shopping Program
- Health and Wellness Programs
- Discount Marketplace
- Identity Theft Protection
- Pet Insurance
- Commuter Benefits
- Employee Assistance Program
- Flexible Spending Accounts (FSAs)
Associates may also be eligible for paid and/or unpaid time off benefits in accordance with applicable federal, state, and local laws. For positions in Washington State, Maryland, or to be p formed Remotely, click here for paid time off benefits information.
Req ID: 1373110
Compass Technology
MARY DICKSON
ApplyJob Profile
NC
Benefits/PerksBonus Bonus eligible Commuter benefits Dental Disability Insurance Discount Marketplace Employee Assistance Program Equal opportunity employer Flexible Spending Accounts Health and wellness programs Holiday Time Off Identity theft protection Life Insurance Medical Paid Time Off Pet Insurance Retirement plan Vision Wellness programs
Tasks- Coding
- Design
- Development
- Develop standards and training materials
- Drive adoption of security technology stack
- Evaluate and secure applications
- Lead application security team
- Lead meetings and presentations
- Maintain documentation
- Provide feedback on security best practices
- Recruit and mentor staff
- Testing
Application Security Automation Burp Suite C Checkmarx Cloud Engineering Communication Compliance Computer DAST Design Documentation Driving Dynatrace Foodservice Foodservice management IT Architecture Java Javascript Leadership Object-oriented Programming Python Rapid7 SAST SCA Scripting Secure coding Security Software Development SonarQube Technical project management Training Veracode Wellness WhiteSource
Experience5 years
EducationBachelor's Bachelor's degree Bachelor's degree in Computer Science Business Computer Science Degree Information Security Related Field
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9