Application Security Manager - Corebridge Financial : Job Details

Join to apply for the Application Security Manager role at Corebridge Financial

2 weeks ago Be among the first 25 applicants

Join to apply for the Application Security Manager role at Corebridge Financial

Who We Are

At Corebridge Financial, we believe action is everything. That's why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.

We align to a set of core values that define our culture and bring our brand purpose to life:

• We are stronger as one: We collaborate across the enterprise, scale what works, and act decisively for our customers and partners.
• We deliver on commitments: We are accountable, empower each other, and go above and beyond for our stakeholders.
• We learn, improve, and innovate: We get better each day by challenging the status quo and preparing for the future.
• We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work.

Who You'll Work With

The Information Technology organization is the technological foundation of our business. It collaborates with various departments to drive digital transformation, design and execute strategies, and ensure IT risk management and security measures are aligned with enterprise standards.

About The Role

The Application Security Manager will lead and evolve our DevSecOps function, overseeing a team responsible for embedding security throughout the software development lifecycle, integrating AI-driven tools, and enabling secure-by-design development. This role requires strategic and technical expertise in AppSec, DevSecOps automation, and AI adoption in security.

Responsibilities

• Lead the application security program, focusing on securing CI/CD pipelines, cloud-native applications, and microservices.
• Manage a team of DevSecOps engineers and security champions.
• Develop and implement security tooling, code analysis software, and Software Bill of Materials.
• Integrate AI and machine learning tools for threat modeling, code analysis, and anomaly detection.
• Collaborate with development, infrastructure, and product teams to ensure secure architecture and coding practices.
• Establish AppSec policies, threat modeling frameworks, and secure coding guidelines.
• Build metrics and reports to track AppSec initiatives and risk posture.
• Evaluate and implement AI-based AppSec tools within the DevSecOps toolchain.
• Lead incident response and secure code review processes for critical applications.
• Act as the primary contact for application security audits and compliance initiatives.

Skills And Qualifications

• 7+ years in application security, including 2+ years managing security teams.
• Strong knowledge of secure coding practices in languages like Python, Java, JavaScript, Go.
• Experience with AppSec tools such as SAST, DAST, SCA, IaC scanners, ASPM, and secrets detection tools.
• Hands-on experience with CI/CD platforms like GitHub Actions, GitLab CI, Jenkins, Azure DevOps.
• Understanding of cloud architectures (AWS/GCP/Azure), containers (Docker), and orchestration (Kubernetes).
• Experience with Infrastructure-as-Code (Terraform, CloudFormation) and securing DevOps pipelines.
• Familiarity with AI-driven AppSec tools and LLMs (e.g., GPT, Gemini) for code analysis and threat modeling.
• Knowledge of prompt engineering, model fine-tuning, and AI API integration in security workflows.
• Bonus: AI security experience (adversarial ML, model poisoning, threat modeling).
• Bonus: Experience in SAP Security, vulnerability management, threat monitoring.
• Bachelor's degree or proven experience in IT and Cyber Security.
• Certifications: OSCP (required or preferred), GWAPT, OSWE, CISSP, GPEN, AI/ML certifications (bonus).

Compensation

The salary range is $130,000 to $150,000, depending on location, skills, and experience. The role includes a discretionary bonus and comprehensive benefits.

Work Location

Based in Jersey City, NC, Houston, TX, or Durham, NC, with a hybrid work policy.

Why Corebridge?

We prioritize health, well-being, and work-life balance with benefits like health insurance, retirement plans, mental health support, charitable matching, volunteer time off, and paid time off.

Equal Opportunity Employer

We are committed to diversity and inclusion, providing accommodations for disabilities or religious beliefs, and considering all qualified applicants.

Learn more at www.corebridgefinancial.com

#J-18808-Ljbffr