Engineering Director, Application Security Assurance
To see similar active jobs please follow this link: Remote Development jobs
Role
As the Engineering Director for the Application Security Assurance Practice, you will oversee the practice’s business activity and performance. You will develop and lead a team of talented security consulting engineers in this role, ensuring successful client service delivery. You will grow and elevate the team’s contributions in meaningful research, tooling, and publications that cement Trail of Bits as a premier security consultancy via the team’s output. You will enable the team by identifying and removing obstacles, improving processes, and documenting and launching initiatives for growth and skills development that lead to the department's growth and profitability.
What You’ll Achieve
Strategic Vision and Industry Leadership: Craft and execute a forward-thinking vision for your specialty area, aligning with the company's objectives while demonstrating your thought leadership in the cybersecurity community through conferences, blogs, and social media.
Business Growth and Service Innovation: Drive business expansion by identifying new market opportunities, developing innovative service offerings, and expanding existing services to enhance client engagement and departmental growth.
Team Leadership and Development: Lead and mentor a diverse team of security engineers, fostering a culture of continuous growth, improvement, and innovation in technical and consulting skills and managing resource allocation and staffing to maximize team effectiveness and domain expertise.
Client Engagement and Quality Assurance: Oversee the delivery of high-quality work products, closely collaborating with client teams to understand and meet client needs, ensuring precision in service delivery and effective problem resolution.
Financial Strategy and Operational Efficiency: Collaboratively manage the practice’s budget with cross-departmental teams, focusing on cost optimization and revenue growth while driving profitability and operational efficiency improvements.
Performance Management and Organizational Influence: Lead performance and career development within your team, influencing hiring decisions and contributing to client and internal projects, reinforcing a results-driven, learning-oriented departmental culture.
Strategic Partnerships and Communication: Build and maintain strategic partnerships within and outside the organization, ensuring effective communication and alignment of goals, particularly in client management and service delivery.
Innovative Problem Solving and Project Leadership: Actively engage in innovative problem-solving and lead critical projects and decision-making processes that drive the department’s success, client satisfaction, and overall company growth.
What You’ll Bring
10+ years of experience in professional services delivery, including technical leadership roles and leading technical teams through client engagements
Consulting background with significant contributions to client projects, encompassing strategic planning, leading teams, project management within tight deadlines, and expertise in proposal development, project scoping, and driving sales to delivery.
Proficiency in providing specialized technical security services, including Secure Code Reviews, Dynamic Application Testing, Fuzzing, Threat Modeling and Design Reviews, Cloud Native Assessments, iOS/Android security, Containers and Orchestration security..
Proficiency in at least 4 modern programming languages or frameworks, including, but not limited to, Rust, Go, Python, C/C++, and JavaScript.
In-depth understanding of application security, with the ability to identify and mitigate vulnerabilities effectively. Demonstrated passion for application security, evidenced by ongoing research, contributions to open-source projects, participation in bug bounty programs, or other activities outside of professional obligations that showcase a deep interest and expertise in appsec.
Knowledgeable in static and dynamic analysis testing methods and the tools for efficient and secure software.
Excellent interpersonal and communication skills, capable of engaging with a diverse range of stakeholders, understanding their needs, and delivering measurable results.
Expertise and an engineering mindset in application security, with a continuous commitment to keeping abreast of industry trends and challenges.
Active contribution to the field through research, speaking engagements, development of security tools, or other thought leadership activities.
The base salary for this full-time position ranges from $225,000 to $275,000, excluding benefits and potential bonuses. Various factors influence our salary ranges, including the specific role, level of seniority, geographic location, and the nature of the employment contract. An individual's specific work location, unique skills, experience, and relevant educational background will determine the final offer within this range. The presented salary range encompasses the starting salaries for all U.S. locations. For a precise salary estimate tailored to your preferred location, please discuss it with your recruiter during the hiring process.
Trail of Bits, Inc. participates in E-Verify, the US federal electronic employment eligibility verification program. Learn more.
About the job
Engineering Director, Application Security Assurance
To see similar active jobs please follow this link: Remote Development jobs
Role
As the Engineering Director for the Application Security Assurance Practice, you will oversee the practice’s business activity and performance. You will develop and lead a team of talented security consulting engineers in this role, ensuring successful client service delivery. You will grow and elevate the team’s contributions in meaningful research, tooling, and publications that cement Trail of Bits as a premier security consultancy via the team’s output. You will enable the team by identifying and removing obstacles, improving processes, and documenting and launching initiatives for growth and skills development that lead to the department's growth and profitability.
What You’ll Achieve
Strategic Vision and Industry Leadership: Craft and execute a forward-thinking vision for your specialty area, aligning with the company's objectives while demonstrating your thought leadership in the cybersecurity community through conferences, blogs, and social media.
Business Growth and Service Innovation: Drive business expansion by identifying new market opportunities, developing innovative service offerings, and expanding existing services to enhance client engagement and departmental growth.
Team Leadership and Development: Lead and mentor a diverse team of security engineers, fostering a culture of continuous growth, improvement, and innovation in technical and consulting skills and managing resource allocation and staffing to maximize team effectiveness and domain expertise.
Client Engagement and Quality Assurance: Oversee the delivery of high-quality work products, closely collaborating with client teams to understand and meet client needs, ensuring precision in service delivery and effective problem resolution.
Financial Strategy and Operational Efficiency: Collaboratively manage the practice’s budget with cross-departmental teams, focusing on cost optimization and revenue growth while driving profitability and operational efficiency improvements.
Performance Management and Organizational Influence: Lead performance and career development within your team, influencing hiring decisions and contributing to client and internal projects, reinforcing a results-driven, learning-oriented departmental culture.
Strategic Partnerships and Communication: Build and maintain strategic partnerships within and outside the organization, ensuring effective communication and alignment of goals, particularly in client management and service delivery.
Innovative Problem Solving and Project Leadership: Actively engage in innovative problem-solving and lead critical projects and decision-making processes that drive the department’s success, client satisfaction, and overall company growth.
What You’ll Bring
10+ years of experience in professional services delivery, including technical leadership roles and leading technical teams through client engagements
Consulting background with significant contributions to client projects, encompassing strategic planning, leading teams, project management within tight deadlines, and expertise in proposal development, project scoping, and driving sales to delivery.
Proficiency in providing specialized technical security services, including Secure Code Reviews, Dynamic Application Testing, Fuzzing, Threat Modeling and Design Reviews, Cloud Native Assessments, iOS/Android security, Containers and Orchestration security..
Proficiency in at least 4 modern programming languages or frameworks, including, but not limited to, Rust, Go, Python, C/C++, and JavaScript.
In-depth understanding of application security, with the ability to identify and mitigate vulnerabilities effectively. Demonstrated passion for application security, evidenced by ongoing research, contributions to open-source projects, participation in bug bounty programs, or other activities outside of professional obligations that showcase a deep interest and expertise in appsec.
Knowledgeable in static and dynamic analysis testing methods and the tools for efficient and secure software.
Excellent interpersonal and communication skills, capable of engaging with a diverse range of stakeholders, understanding their needs, and delivering measurable results.
Expertise and an engineering mindset in application security, with a continuous commitment to keeping abreast of industry trends and challenges.
Active contribution to the field through research, speaking engagements, development of security tools, or other thought leadership activities.
The base salary for this full-time position ranges from $225,000 to $275,000, excluding benefits and potential bonuses. Various factors influence our salary ranges, including the specific role, level of seniority, geographic location, and the nature of the employment contract. An individual's specific work location, unique skills, experience, and relevant educational background will determine the final offer within this range. The presented salary range encompasses the starting salaries for all U.S. locations. For a precise salary estimate tailored to your preferred location, please discuss it with your recruiter during the hiring process.
Trail of Bits, Inc. participates in E-Verify, the US federal electronic employment eligibility verification program. Learn more.