Demo
Salary Resume Critique Job Openings

Head of Application Security

SHEIN Technology LLC
Los Angeles, CA Full Time
POSTED ON 1/16/2025
AVAILABLE BEFORE 4/13/2025

Job Title : Director I, Head of Application Security

Have you got what it takes to succeed The following information should be read carefully by all candidates.

Reports to : Chief Security Officer

Job Location : Los Angeles, CA, USA

Job Status : Exempt

About SHEIN

SHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from global network of vendors, all at affordable prices. Headquartered in Singapore, SHEIN remains committed to making the beauty of fashion accessible to all, promoting its industry-leading, on demand production methodology, for a smarter, future-ready industry. Founded in 2012, SHEIN has more than 16,000 employees operating from offices around the world and continues to expand operations globally. Join SHEIN and be the future!

Position Summary

SHEIN Global Security and Risk Management (GSRM) is a global security organization that oversees security infrastructure, risk management, data privacy, business fraud, governance, and regulatory compliance across SHEIN’s global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.

We’re seeking a full-time Head of Application Security (Official Title : Director I, Head of Application Security) for our Los Angeles-based corporate office. The Head of Application Security, a senior executive residing within GSRM, is responsible for leading the overall strategy, execution and roadmaps of application security and the entire secure software development lifecycle. This position will lead the team of engineering and SDL experts and work with technology and business partners and units to mitigate application risks.

This leader should have a deep technical understanding of the full SDL lifecycle and extensive experiences in code audit and application security testing. He or she must be familiar with industry standards and best practices, and must be able to effectively work with development, engineering, and business counterparts, across a broad deeply technical environment in the development world. This role will coordinate with application and system developers and owners on all aspects of SDL lifecycle through planning, feasibility analysis, design, development, testing to implementation and operations. This leader will also assist their leadership with ensuring all solutions and technologies are properly supported, implemented, and sufficiently met the needs for which they are deployed to protect SHEIN application footprint and its integrity.

Job Responsibilities

  • Oversee the application security team, consisting of direct and indirect reports (including full time employees, contractors, MSS staff and external service providers personnel). This includes hiring, training, career development, and performance management.
  • Lead all aspects of SDL and application testing disciplines, including but not limited to threat modeling, application risk assessment, vulnerability management, SAST and DAST tooling, attack surface monitoring, and application penetration testing.
  • Create and update new strategies, project plans and policy documents based on compliance and operational requests that map to SHEIN’s business requirements
  • Develop and manage security budget forecast, expense, and technology, service and vendor roadmaps.
  • Liaise with external agencies, such as law enforcement, standards and technology organization, advisory bodies and industry and peer working groups as necessary, to ensure that the organization maintains a strong application security posture and technical congruency.
  • Work directly with development teams to facilitate code audit, solution requirements and technology roadmaps to ensure compliance with industry and regulatory standards.
  • Establish credibility throughout the organization by earning the reputation for being a proactive senior leader and change agent.
  • Sustain high-availability service levels and ensure fulfillment of business-wide service levels and operational support objectives.

Job Requirements

  • A minimum of 10 years of experience in global scale cyber security and development environment with strong focus in a DevSecOps eco-system and building security into the CI / CD pipeline, with at least 5 years of direct people management experience is preferred.
  • Bachelor’s degree or higher in the field of Engineering, Computer Science, Business Analytics, or equivalent advance technology field of study preferred.
  • Must be skilled at mentoring and motivating staff, communicating goals and other corporate initiatives and driving to results
  • Strong knowledge of programming languages, software development lifecycle, and security testing skills with ability to work through complex application footprint and derive characteristics of risk scenarios
  • Experience building application security metrics, attack surface monitoring, and incident response strategies and playbooks in the technology industry.
  • Experience with change management lifecycle, development and regular preparation of management status and key metrics reports
  • Should have strong experience working with technical teams on developing advanced risk engines, algorithms and models for threat detection
  • Ability to translate complex application security threats from a technical perspective to business-line understanding and execution
  • Ability to manage extremely technical staff and work in a matrix organization
  • High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
  • Must have strong business and financial acumen to make sound business and budgeting decisions.
  • Must be a strong communicator with exceptional verbal and written communication skills to translate the vision and strategy into clear priorities and direction, both internally and externally.

    • 147,700.00 min. – $265,200.00 max annually. Bonus & RSU offered.

    Benefits and Perks

  • Healthcare (medical, dental, vision, prescription drugs)
  • Health Savings Account with Employer Funding
  • Flexible Spending Accounts (Healthcare and Dependent care)
  • Company-Paid Basic Life / AD&D insurance
  • Company-Paid Short-Term and Long-Term Disability
  • Voluntary Benefit Offerings (Voluntary Life / AD&D, Hospital Indemnity, Critical Illness, and Accident)
  • Employee Assistance Program
  • Business Travel Accident Insurance
  • 401(k) Savings Plan with discretionary company match and access to a financial advisor
  • Vacation, paid holidays, floating holiday and sick days
  • Employee discounts
  • Free weekly catered lunch
  • Dog-friendly office (available at select locations)
  • Free gym access (available at select locations)
  • Free swag giveaways
  • Annual Holiday Party
  • Invitations to pop-ups and other company events
  • Complimentary daily office snacks and beverages

    • SHEIN Technology LLC is an equal opportunity employer committed to a diverse workplace environment.

    J-18808-Ljbffr

    Salary : $147,700 - $265,200

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Head of Application Security?

    Sign up to receive alerts about other jobs on the Head of Application Security career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $220,784 - $286,649
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $220,784 - $286,649
    Income Estimation: 
    $220,784 - $286,649
    Income Estimation: 
    $270,069 - $359,305
    Income Estimation: 
    $328,229 - $449,590
    Income Estimation: 
    $359,696 - $589,779
    Income Estimation: 
    $152,549 - $188,894
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Not the job you're looking for? Here are some other Head of Application Security jobs in the Los Angeles, CA area that may be a better fit.

    Stealth AI Security Company | Head of Engineering

    Stealth AI Security Company, Los Angeles, CA

    Head of Engineering

    Stealth AI Security Company, Los Angeles, CA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!