Senior Application Security Manager

Who You Are: We are searching for a Senior Application Security Manager who has experience working with Security or IT teams, the drive to become a subject matter expert in our products, and an unquenchable level of curiosity.
You'll apply these skills to better understand our customers, help tackle their problems, accelerate their growth and return insights to the organization that contribute to customer experience improvements at scale.
Do you love working with customers to help them embrace new products and help them achieve their desired outcomes?
Are you confident on the phone and experienced in communicating with a technical audience?
Are you creative and determined in identifying the root cause of problems or opportunities?
If so, then this could be exactly what you're looking for .
... please read on!
What You’ll Be Doing:  Strategic Advisory: Act as a lead consultant for enterprise customers, moving beyond tool configuration to advising on global web application security strategies and DevSecOps maturity.
  Program Architecture: Guide customers in integrating ASPM,  DAST, SAST, and SCA into complex CI/CD workflows (GitHub, GitLab, Jenkins, ADO) at an enterprise scale.
Thought Leadership: Act as an internal Subject Matter Expert for the consulting organization, refining our playbooks and guiding technical standards for AppSec, API security and cloud-native testing.
Technical Excellence: Resolve the most complex DAST rollout challenges, including authentication hurdles and scan accuracy in unique, abstract customer environments.
Why Invicti?
Your Health & Wellness Matters: Health Insurance: Taking care of our team goes beyond the office.
We cover 100% of employee and dependent health costs.
Coverage is effective your first day.
Family Leave: 16 week paid leave for birthing parent recovery.
4 week paid leave for non-birthing/bonding  parent.
Mother receives $250/month after returning back to work up to the child's first birthday We Value Adult/Life Balance: Excellent Working Options: Work from home or join us in our Turkey Istanbul - Ankara Offices, whichever works best for you!
  Discretionary Time Off: Enjoy a flexible vacation schedule where you do not have to wait to use time off until it is accrued.
14 extra days in the first year upon completion of the 2nd month.
10 days of paid sick leave every year.
Quarterly Thrive-Wellness Days: One extra vacation day per quarter where the entire company takes a break from normal, daily activities to refresh and rejuvenate Volunteerism Time Off : 5 days of paid time off each year to participate in the volunteer activities of your choice.
  Paid Birthday Off: Take your birthday off to celebrate you!
Mobile Allowance Benefit : This allowance will be provided to ensure you have support for work-related communication and tasks.
      We Value You: Employee Recognition: Ongoing recognition & rewards.
Culture that emphasizes personal and professional growth.
"At Invicti, we embrace diversity and individuality in all forms.
Discrimination has no place here - regardless of race, religion, gender, age, ability, sexual orientation, or any other aspect that makes you unique.
We're all about creating a space where everyone feels valued and included.
So come as you are and join us in shaping the future of our industry.
" Wh at You’ll Need Experience: 7–12 years of relevant experience in AppSec consulting, penetration testing, or vulnerability management.
Security Mastery: Expert-level hands-on experience with SAST, DAST methodologies and advanced configurations (Invicti, Burp Suite, Snyk, Semgrep etc.
). DevSecOps DNA: Proven ability to automate security workflows using Python, Bash, or PowerShell within enterprise pipelines.
Compliance & Risk: Deep understanding of mapping technical controls to frameworks like NIST 800-218 (SSDF), OWASP ASVS, OWASP API TOP TEN and PCI-DSS.
Strategic Soft Skills: The ability to negotiate success outcomes and influence stakeholders without direct authority in high-pressure environments.
What Will Be A Plus Advanced knowledge or hands-on experience with CI/CD platforms and tools such as Gitlab CI, Azure DO, Github Actions, or Jenkins Experience with Infrastructure as Code (Terraform, CloudFormation) or specific Cloud Security tooling.
Hands-on experience in managing security in the software development lifecycle (SDLC) Holding OSCP, OSWE or similar certifications What Will Be Required Personal Skills Technical Project & Engagement Management: Ability to lead complex, multi-phase security deployments, manage project timelines, and ensure milestone delivery.
Strategic Influence: Proven ability to "influence without authority," navigating internal and external stakeholders to drive AppSec adoption.
Analytical Negotiation: Strong problem-solving skills with a focus on negotiating realistic and valuable success outcomes in high-pressure environments.
Mentorship & Coaching: A proactive approach to knowledge sharing, capable of upskilling both junior team members and customer "security champions.
" Excellent command of English both verbal and written Who We Are:  Invicti is an application security leader protecting over 3,500 organizations worldwide through our DAST-first Application Security Platform.
Our flagship products, Invicti and Acunetix, enable security and development teams to continuously secure web applications through proprietary proof-based scanning and predictive risk scoring.