ShareGate- en - Application Security Manager

• Ensure security is embedded into CI/CD pipelines by delivering scalable, automated tooling and integrated security checks (SAST, DAST, SCA, secret scanning); • Enable secure-by-default development by designing and implementing automated, policy-driven security review workflows; • Establish robust security guardrails within AI-assisted development and agent workflows to reduce risk while maintaining developer velocity; • Reduce risk exposure by proactively identifying, assessing, and driving remediation of application security vulnerabilities; • Strengthen application security posture by leading threat modeling and security assessments for new features and architectural changes; • Improve detection and response capabilities through the development of automation, tooling, and streamlined vulnerability management processes; • Elevate cloud and application security by partnering with Infrastructure SecOps to harden Azure environments and deployment practices; • Enhance external security feedback loops by contributing to and scaling the bug bounty program and vulnerability intake processes. • A typical week? • Writing code for security tooling, CI/CD configurations, and automated review workflows; • Designing and refining policy-based security checks in pipelines; • Building and improving guardrails for AI-assisted development and agent workflows; • Participating in architecture and design discussions with engineering teams; • Collaborating with Infrastructure SecOps on shared security initiatives; • Triaging and prioritizing security alerts and vulnerabilities; • Sharing knowledge through pairing, code reviews, and informal coaching. • What does your future team look like? • You will join the AI-SDLC team, responsible for building the internal platform that enables AI agents to operate across the Workleap and ShareGate development lifecycle. This includes developing agent pipelines, safety mechanisms, and developer-facing tooling. • You will work closely with Infrastructure SecOps and partner with multiple product teams across the organization. This is a highly collaborative environment where your impact comes from building scalable solutions and making secure development the default for everyone. • What are the next challenges awaiting your team? • Scaling automated security practices across a growing portfolio of SaaS products; • Deepening security integration within GitHub Actions and CI/CD pipelines; • Ensuring security guardrails evolve alongside AI-assisted and agentic development workflows; • Strengthening secure-by-default practices and developer security awareness across teams.