Practice Lead - Application Security Engineering
GuidePoint Security is looking for a skilled Practice Lead for Application Security Engineering (Southeast region) to oversee the operations of our Application Security services. The ideal candidate will combine technical expertise, leadership abilities, and strong communication skills to manage teams, projects, and client relationships effectively.
As a Practice Lead, you will ensure high-quality service delivery, provide technical oversight, and contribute to client success while staying current with trends in Application Security.
Key Responsibilities:
Mentor analysts and project leads, ensuring successful delivery across multiple engagements.
Monitor project progress, allocate resources, and act as a decision-maker and point of escalation for project execution.
Provide technical guidance for escalated vulnerabilities and oversee deliverables for quality and accuracy.
Occasionally lead large or complex projects.
Stay informed on industry trends and advancements, dedicating time weekly for research to support presales conversations related to tooling.
Ensure team members are aligned with work priorities.
Required Qualifications:
Education: Bachelor’s degree in Computer Science, Information Security, or a related field.
Experience:
3–5 years in Application Security roles with leadership experience.
Proficiency in at least one programming language (e.g., Java, Python, Ruby, C#).
Hands-on experience with Application Security tools like Veracode, Checkmarx, Snyk, Mend.io, GitLab, Black Duck, Sonatype, Invicti, Tenable, Qualys, OWASP Zap, Burp Suite, etc.
Knowledge Areas:
Strong understanding of compliance frameworks (e.g., NIST, PCI-DSS, GDPR).
Expertise in OWASP standards (SAMM, ASVS, OWASP Top 10).
Skills:
Excellent written and verbal communication.
Strong organizational and project management capabilities.
Problem-solving mindset with the ability to manage competing priorities.
Preferred Qualifications:
Relevant certifications (e.g., CISSP, OSCP, GWAPT).
Experience integrating security into CI/CD pipelines and DevSecOps practices.
About the job
Apply for this position
Practice Lead - Application Security Engineering
GuidePoint Security is looking for a skilled Practice Lead for Application Security Engineering (Southeast region) to oversee the operations of our Application Security services. The ideal candidate will combine technical expertise, leadership abilities, and strong communication skills to manage teams, projects, and client relationships effectively.
As a Practice Lead, you will ensure high-quality service delivery, provide technical oversight, and contribute to client success while staying current with trends in Application Security.
Key Responsibilities:
Mentor analysts and project leads, ensuring successful delivery across multiple engagements.
Monitor project progress, allocate resources, and act as a decision-maker and point of escalation for project execution.
Provide technical guidance for escalated vulnerabilities and oversee deliverables for quality and accuracy.
Occasionally lead large or complex projects.
Stay informed on industry trends and advancements, dedicating time weekly for research to support presales conversations related to tooling.
Ensure team members are aligned with work priorities.
Required Qualifications:
Education: Bachelor’s degree in Computer Science, Information Security, or a related field.
Experience:
3–5 years in Application Security roles with leadership experience.
Proficiency in at least one programming language (e.g., Java, Python, Ruby, C#).
Hands-on experience with Application Security tools like Veracode, Checkmarx, Snyk, Mend.io, GitLab, Black Duck, Sonatype, Invicti, Tenable, Qualys, OWASP Zap, Burp Suite, etc.
Knowledge Areas:
Strong understanding of compliance frameworks (e.g., NIST, PCI-DSS, GDPR).
Expertise in OWASP standards (SAMM, ASVS, OWASP Top 10).
Skills:
Excellent written and verbal communication.
Strong organizational and project management capabilities.
Problem-solving mindset with the ability to manage competing priorities.
Preferred Qualifications:
Relevant certifications (e.g., CISSP, OSCP, GWAPT).
Experience integrating security into CI/CD pipelines and DevSecOps practices.