Description

Director, Application Security

Bangalore, India or Chennai, India

The Opportunity:

Anthology delivers education and technology solutions so that students can reach their full potential and learning institutions thrive. Our mission is to empower educators and institutions with meaningful innovation that’s simple and intelligent, inspiring student success and institutional growth.

The Power of Together is built on having a diverse and inclusive workforce. We are committed to making diversity, inclusion, and belonging a foundational part of our hiring practices and who we are as a company.

For more information about Anthology and our career opportunities, please visit www.anthology.com.

Anthology's Security Program is dedicated to the engineering and operation of cutting-edge technologies that monitor and strengthen the confidentiality, integrity, and availability of all our information systems and products. We are building a high-performing team that fosters frictionless collaboration with partners across the organization, driven by transparency, trust, and teamwork. Our goal is to elevate Anthology’s security posture through strong partnerships and proactive engagement.

As the Director of Application Security, you will report directly to the Chief Information Security Officer (CISO) and will be responsible for leading, coaching, and mentoring a dynamic team of security professionals. You will oversee the processes and technologies that empower our global development teams to meet Anthology's stringent security standards, ensuring alignment with our clients' objectives.

Your leadership will be pivotal in driving a culture of collaboration and security across the organization. You will build and nurture relationships with key leaders and stakeholders within our product and technology teams, advising them on security control requirements, posture, and best practices. You will take ownership of driving a shift-left mindset, ensuring that security is embedded early in the development lifecycle.

The ideal candidate will be a proven leader with a track record in program management, a strong understanding of application security, and a deep expertise in integrating security practices and tools into product development processes. Your ability to inspire, guide, and elevate your team, while ensuring seamless collaboration with cross-functional teams, will be critical to the success of our security strategy.

The Candidate:

Required skills/qualifications:

• Strong leadership skills, including experience with project/program management, performance management, initiating and driving high-value process change and continuous improvement, and developing/mentoring teams
• Minimum of 7 years of prior relevant experience, with at least 2 years’ experience as a manager or director
• Experience operating security testing automation and continuous improvement processes with automated testing tools as integrated components of the SDLC to improve software quality across multiple information systems
• Working knowledge of common application security vulnerabilities, including those cataloged in the OWASP Top 10, SANS CWE Top 25, and implementing processes to prevent, detect, mitigate and remediate vulnerabilities as an ongoing program
• Ability to communicate security posture, risk, and mitigation strategies to technical and non-technical audiences, and act as an evangelist of security objectives to influence decision making at senior management levels in support of business risk management processes and compliance objectives
• Experience in software engineering and/or product architecture roles, with a working knowledge of application security architectures
• Experience managing improvement projects and communicating project risks effectively
• Demonstrated ability to communicate and collaborate effectively with stakeholders at multiple levels across the organization
• Fluency in written and spoken English
• Minimum of bachelors’ degree in Computer Science or a related field

Preferred skills/qualifications:

• Experience integrating and scaling security testing automation and continuous improvement cycles into the software development process, creating a collaborative and efficient culture across development, security and operations teams
• Experience managing a security program in a global organization
• Experience managing technology vendor relationships as an extension of the team and execution of planned projects on schedule and on budget
• Familiarity with compliance standards and control catalogs such as ISO 27000 series, NIST 800-53, PCI DSS

This job description is not designed to contain a comprehensive listing of activities, duties, or responsibilities that are required. Nothing in this job description restricts management's right to assign or reassign duties and responsibilities at any time.

Anthology is an equal employment opportunity/affirmative action employer and considers qualified applicants for employment without regard to race, gender, age, color, religion, national origin, marital status, disability, sexual orientation, gender identity/expression, protected military/veteran status, or any other legally protected factor.