×
Register Here to Apply for Jobs or Post Jobs. X
More jobs:

Director Security Integration EngineeringApplication Security Vulnerability Management

Job in Phoenix, Maricopa County, Arizona, 85003, USA
Listing for: American Express
Full Time position
Listed on 2026-06-27
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 150000 - 180000 USD Yearly USD 150000.00 180000.00 YEAR
Job Description & How to Apply Below

JOB DESCRIPTION

The Director - Security Integration & Engineering will lead the engineering backbone of enterprise Security Posture Validation. This role drives the strategy, architecture, integration, automation, and sustained operation of the security tooling ecosystem that enables scalable, observable, and enforceable security controls across the software development lifecycle.

How will you make an impact in this role?

American Express is committed to delivering secure, resilient, and scalable technology solutions that protect our customers and enable business growth. As part of this mission, the Director will oversee the design and execution of application and code‑to‑cloud security integrations, ensuring that tooling, automation, and telemetry pipelines generate accurate, defensible insights while supporting developer velocity and regulatory compliance. This leader will collaborate across cybersecurity, engineering, infrastructure, and risk domains to mature posture validation capabilities and align security controls with enterprise standards and global regulatory expectations.

RESPONSIBILITIES
  • Define and execute the multi-year strategy and roadmap for Security Integration & Engineering aligned with enterprise cybersecurity and business priorities.
  • Lead the design, integration, automation, and continuous evolution of the enterprise security tooling platform, ensuring reliability, scalability, resiliency, and operational excellence.
  • Provide engineering enablement and integration support across security validation domains including:
    • Static Application Security Testing (SAST)
    • Software Composition Analysis (SCA)
    • Dynamic Application Security Testing (DAST)
    • API Security
    • Penetration Testing intake and integration
    • Infrastructure Vulnerability Management
    • External Attack Surface Management (EASM)
    • Sensitive Data Element (SDE) detection
    • Enterprise vulnerability reporting and executive dashboards
  • Ensure normalized data models, scalable automation, exception workflows, SLO enforcement, and audit‑ready reporting across security telemetry pipelines.
  • Own and maintain the Source Code Security Standard and ensure alignment with enterprise security controls and architecture governance.
  • Support regulatory and audit engagements by delivering defensible evidence, metrics, and documentation aligned to global cybersecurity standards.
  • Lead response to complex security and operational events, coordinating cross‑functional mitigation, root cause analysis, and control validation.
  • Partner with product, engineering, IAM, infrastructure, vulnerability management, and risk teams to embed security controls into CI/CD pipelines and business workflows.
  • Influence senior stakeholders to prioritize and implement security recommendations aligned with enterprise risk tolerance.
  • Build, mentor, and develop high‑performing cybersecurity engineering teams, driving hiring strategy, talent retention, succession planning, and performance management.
  • Manage budgets, workforce planning, and resource allocation to support strategic and operational objectives.
QUALIFICATIONS

Preferred Qualifications
  • 10+ years of progressive experience in cybersecurity, including senior leadership roles within security engineering or application security.
  • Deep expertise in Application Security disciplines including SAST, DAST, SCA, API Security, and secure CI/CD integration practices.
  • Strong understanding of vulnerability management practices, threat modeling methodologies, and enterprise risk management frameworks.
  • Experience designing and implementing enterprise‑scale security platform integrations and automation using APIs and scripting languages (Python, Bash, Power Shell).
  • Knowledge of cloud security principles, identity and access management (IAM), data security governance, and network security fundamentals (TCP/IP, DNS, HTTP).
  • Experience building and managing security telemetry pipelines, metrics frameworks, and executive reporting dashboards.
  • Demonstrated success managing regulatory audits, control validation efforts, and global compliance requirements.
  • Proven ability to lead high‑impact security incident response efforts and cross‑functional remediation initiatives.
  • Strong…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary