Demo
Salary Resume Critique Job Openings

Senior Technology Manager - Application Security

Bank of America
Pasco, WA Full Time
POSTED ON 1/22/2025
AVAILABLE BEFORE 4/19/2025

Senior Technology Manager - Application Security

The information below covers the role requirements, expected candidate experience, and accompanying qualifications.

Chicago, Illinois; Washington, District of Columbia; Denver, Colorado

Job Description :

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.

This job is responsible for building and leading a team to deliver technology products and services that meet business outcomes. Key responsibilities include developing a technology strategy, ensuring technology solutions comply with applicable standards, promoting design, engineering, and organizational practices, and advocating and advancing modern, Agile solution delivery practices. Job expectations may include coaching, mentoring, providing feedback and hands-on career development, identifying emerging talent, fostering leadership skills, and managing stakeholders.

Position Summary :

We are seeking a highly skilled and hands-on Senior Technology Manager specializing in Application Security . This role requires deep technical expertise in secure coding practices, vulnerability scanning, and cloud application security. The Senior Technology Manager will lead technical initiatives focused on security code scanning, application vulnerability scanning using tools such as Invicti, Checkmarx and validating secure coding practices in cloud environments. The Manager will collaborate closely with developers, DevOps, and cloud architects to embed security within the software development lifecycle and cloud infrastructure.

As the Sr. Manager over our Application Security program , you will lead multiple teams in the design, development, test, and delivery of innovative products to identify and reduce security vulnerabilities during the CI / CD process. The Manager will contribute to our mission of safeguarding our valuable assets and data from evolving cyber threats. This role is highly visible to senior leadership, auditors, and regulators.

The successful candidate will have demonstrated success in building software products, managing engineering teams, coordinating large-scale projects, effectively communicating with executive and technical audiences, and moving quickly to achieve outcomes. This is a technology leadership role requiring software engineering experience to excel but not focused on personal delivery of code.

Key Responsibilities :

  • Hands-On Technical Leadership :

Provide hands-on leadership in the deployment, configuration, and management of application security scanning tools such as Invicti and Checkmarx.

  • Design and implement application security strategies for cloud-based and on-premises applications, focusing on secure code development and vulnerability management.
  • Serve as a technical subject matter expert on secure coding practices, secure architecture, and vulnerability scanning methods.
  • Security Code and Vulnerability Scanning :

    • Manage the configuration, customization, and automation of application security scanning tools, enabling comprehensive scanning in CI / CD pipelines.

  • Analyze scan results, triage security findings, and provide detailed remediation guidance to developers.
  • Conduct regular assessments of the scanning tools to optimize their efficiency and accuracy in detecting security vulnerabilities.
  • Cloud Application Security Validation :

    • Validate that cloud applications adhere to secure coding practices by leveraging static and dynamic analysis tools.

  • Collaborate with cloud architects to design secure application architecture and enforce security policies within cloud environments (AWS, Azure, GCP).
  • Implement and review cloud security configurations, ensuring alignment with security frameworks such as CIS Benchmarks and NIST.
  • Secure Coding and Developer Enablement :

    • Develop and enforce secure coding guidelines and policies to standardize secure coding practices across development teams.

  • Support secure code reviews, manual penetration tests, and red-team exercises to identify and mitigate complex security flaws.
  • Organize and lead training sessions to enhance developer awareness of common vulnerabilities, security best practices, and secure coding techniques.
  • Risk Management and Compliance :

    • Evaluate the risk impact of identified vulnerabilities and prioritize remediation efforts based on criticality and business impact.

  • Ensure compliance with security standards (e.g., OWASP Top 10, SANS CWE Top 25) and regulatory requirements.
  • Prepare documentation and evidence for internal audits and external compliance assessments.
  • Research and Innovation :

    • Stay informed about the latest cybersecurity threats, trends, and emerging technologies relevant to software application security.

  • Evaluate new Application Security CI / CD tools, technologies, and techniques to improve the organization's security posture and stay ahead of potential threats.
  • Metrics, Reporting, and Continuous Improvement :

    • Define and monitor key performance indicators (KPIs) related to the effectiveness of security scanning tools and the remediation process.

  • Create dashboards and detailed reports to communicate security findings, risk metrics, and remediation progress to stakeholders.
  • Continuously improve the security scanning program by staying current on emerging threats, new vulnerabilities, and the latest security tools.

    • Qualifications :

  • 7 years of experience in cybersecurity with a focus on application security, vulnerability management, and cloud application security.
  • Proven experience in deploying, managing, and optimizing application security scanning tools, such as Invicti, Checkmarx, Veracode, or others.
  • Experience in cloud platforms (AWS, Azure, GCP) with a track record of implementing security policies and validating secure coding practices within cloud-native applications.
  • Familiarity with secure code review techniques, both automated and manual, and the ability to identify, evaluate, and address security vulnerabilities across various coding languages (e.g., Java, Python, JavaScript, .NET, etc.).

    • Preferred Qualifications :

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field. Advanced degrees are preferred.

    • Soft Skills :

  • Demonstrated ability to lead and mentor technical teams, fostering a collaborative and knowledge-sharing environment.
  • Excellent problem-solving and analytical skills, with a proactive approach to identifying and addressing security risks.
  • Strong written and verbal communication skills, with the ability to communicate complex security findings to non-technical stakeholders and collaborate effectively across teams.

    • Managerial Responsibilities :

  • Diversity & Inclusion Champion : Models an inclusive environment for employees and clients, aligned to company D&I goals.
  • Manager of Process & Data : Demonstrates deep process knowledge, operational excellence, and innovation through a focus on simplicity, data-based decision making, and continuous improvement.
  • Enterprise Advocate & Communicator : Communicates enterprise decisions, purpose, and results, and connects to team strategy, priorities, and contributions.
  • Risk Manager : Ensures proper risk discipline, controls, and culture are in place to identify, escalate and debate issues.
  • People Manager & Coach : Provides inspection, coaching, and feedback to motivate, differentiate, and improve performance.
  • Financial Steward : Actively manages expenses and budgets in alignment with objectives, making sound financial decisions.
  • Enterprise Talent Leader : Assesses talent and builds bench strength for roles across the organization.
  • Driver of Business Outcomes : Delivers results by effectively prioritizing, inspecting, and appropriately delegating teamwork.

    • Shift :

    1st shift (United States of America)

    Hours Per Week :

    Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws.

    J-18808-Ljbffr

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Senior Technology Manager - Application Security?

    Sign up to receive alerts about other jobs on the Senior Technology Manager - Application Security career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $220,784 - $286,649
    Income Estimation: 
    $188,900 - $249,994
    Income Estimation: 
    $208,393 - $280,632
    Income Estimation: 
    $217,249 - $295,152
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $220,784 - $286,649
    Income Estimation: 
    $151,231 - $194,242
    Income Estimation: 
    $188,900 - $249,994
    Income Estimation: 
    $187,890 - $240,773
    Income Estimation: 
    $152,549 - $188,894
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Bank of America

    Merrill Financial Solutions Advisor: Oklahoma Market
    Bank of America
    Hired Organization Address Rogers, AR Full Time
    Job Description: Merrill Wealth Management is a leading provider of comprehensive wealth management and investment produ...
    Merrill Financial Solutions Advisor - Greater Alabama Market
    Bank of America
    Hired Organization Address Birmingham, AL Full Time
    Job Description: Merrill Wealth Management is a leading provider of comprehensive wealth management and investment produ...
    Financial Solutions Advisor - Consumer Investments - Chesapeake Market
    Bank of America
    Hired Organization Address Hanover, MD Full Time
    Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the p...
    Registered Private Wealth Management Associate
    Bank of America
    Hired Organization Address Phoenix, AZ Temporary
    Job Description: Merrill Wealth Management is a leading provider of comprehensive wealth management and investment produ...
    View More Jobs at Bank of America

    Not the job you're looking for? Here are some other Senior Technology Manager - Application Security jobs in the Pasco, WA area that may be a better fit.

    Senior Technology Project Manager

    SmithGroup, Pasco, WA

    Application Security Engineer

    Tech Talent Link, Inc, Pasco, WA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!