Director - AppSec

A leading innovator in the fintech and online trading sector is seeking a forward‑thinking Director to lead its Application Security (App Sec) function. The company is building an AI‑driven culture and is searching for a cyber leader ready to drive secure software development across high‑impact products used by professional and institutional traders worldwide.

This role offers a unique chance to establish and scale a best‑in‑class application security program from the ground up. You’ll work cross‑functionally with engineering, architecture, and executive leadership to shape security strategies in a fast‑moving, cloud‑first environment.

• Design and lead an enterprise‑wide application security strategy across multiple products and platforms.
• Serve as the go‑to advisor to development and engineering teams on secure coding practices, vulnerability management, and control baselines.
• Own and evolve application security testing, including static, dynamic, and penetration testing programs.
• Deliver clear, actionable security metrics to leadership and communicate risk posture regularly.
• Build and maintain secure development training programs with measurable compliance outcomes.
• Ensure controls across all applications adequately protect sensitive data, including personal and financial information.
• Lead security risk assessments and track remediation efforts through completion.
• Stay ahead of emerging cyber threats and adapt the application security strategy accordingly.
• Leverage AI tools to increase security testing efficiency and proactively defend against AI‑driven threats.
• Collaborate closely with the CISO and security leadership to drive overall security maturity.

• 7+ years of progressive experience in information security, with 5+ years specifically in application security.
• Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent work experience).
• Expertise in secure development frameworks such as OWASP, ISO, and ITIL.
• Hands‑on experience with application security tools (e.g., BURP Suite, Checkmarx, Black Duck) and WAFs.
• Strong understanding of cloud security (AWS, Azure), infrastructure‑as‑code, and containerized environments.
• Proficiency in encryption, authentication, and application/database access management.
• Familiarity with risks related to open‑source components and modules.
• Prior experience leading security education and awareness initiatives.
• Effective communicator who can engage technical and non‑technical stakeholders alike.
• Ability to travel occasionally for team collaboration or onsite meetings.

• One or more of the following: CISSP, CISM, CRISC, GIAC, CEH, PMP.

• High‑impact leadership role in a well‑capitalized tech company poised for significant growth.
• Competitive compensation package with bonus eligibility.
• Day‑one benefits for you and your family.
• Unlimited PTO and a flexible, remote‑first culture.
• Access to cutting‑edge trading platforms and continuous learning opportunities.

Blue Signal is an award‑winning, executive search firm specializing in various specialties. Our recruiters have a proven track record of placing top‑tier talent across industry verticals, with deep expertise in numerous professional services. Learn more at bit.ly/46

Gs4yS

Seniority level:
Director

Employment type:

Full‑time

Job function:
Other