Greenway Health Hiring for Manager, Application Security at India Full Time

Job Summary

The application security program is designed to ensure that any Greenway application developed or acquired meets these stringent standards while enabling rapid innovation to meet customers’ ever‐changing needs. For this role, you should possess software vulnerability expertise, along with excellent communication, management, and organizational skills. The position requires proficiency with software development methodology (SDLC), exposure to application security risk frameworks, application security testing methodologies, and related application security tools.

Essential Duties & Responsibilities

· Lead a geographically diverse team of Application Security Analysts responsible for executing software vulnerability analysis and other related functions.

· Partner with teams across the organization to help them integrate security tools, standards, and processes into the product life cycle.

· Improving and supporting application security tool deployments including static analysis and runtime testing tools.

· Improving and maintaining secure development standards.

· Supporting the incident response and architecture review processes whenever application security expertise is needed.

· Supporting vendor security activities to ensure 3rd‐party software and development meet security standards.

· Producing metrics reporting the state of application security programs and performance of development teams against requirements.

Experience Education

· BS/MS in Computer science or equivalent experience.

Minimum Qualifications

· 8+ Years of experience of software engineering with 3 or more focused on a security function.

· 3+ Years of proven hands-on management experience of software / software engineers.

· Strong familiarity with common application security vulnerability frameworks (such as those listed in OWASP Top 10), Security Testing methodologies, SDLC, and their application to HIPAA regulation.

· Experience working with DAST, SAST, and related open-source tools such as Fortify, SCA, BurpSuite, and AppSpider.

· Technical certifications like a GWEB or CISSP are a plus.

· Experience in performing manual secure code review of popular web application programming languages (Java, JavaScript/TypeScript, C#, Python, etc).

Skills/Knowledge

· Translate security concepts into language that is meaningful to many audiences, including business and technical leaders and individual contributors.

· Be able to approach application security from the perspective of risk management.

· Outstanding communications and interpersonal skills

· Strong comprehension of the Software Development Life Cycle (SDLC)

· Strong organizational skills and ability to multi-task

· Ability to lead individuals and teams to achieve common business goals

· Ability to provide coaching, direction, and feedback to direct reports

· Ability to prioritize frequently competing initiatives

· Ability to exemplify the Greenway leadership competencies of Caring for Self, Caring for Others, and Caring for our Brand

Work Environment/Physical Demands

• While at work, this position is primarily a sedentary job and requires that the associate can work in an environment where they will consistently be seated for the majority of the workday.

• This role requires that one can sit and regularly type on a keyboard the majority of their workday.

• This position requires the ability to observe a computer screen for long periods of time to observe their own and others’ work, as well as in-coming and out-going communications via the computer and/ or mobile devices.

• The role necessitates the ability to listen and speak clearly to customers and other associates.

• The work environment is an open room with other associates and noise from others will be part of the regular workday.