Job Description

:Application Security is core to the cybersecurity program at AT&T. The function is being revamped to enable application security processes and systems that enable enhanced developer productivity and experience across business units.This Director of AppSec will work closely with the global head of AppSec based in US in this transformation journey.The person in this role will play a lead role (alongside working with the global head of AppSec) in the transformation program for AT&T, including the overall design, engineering, deployment and management of application security products.The Director leads the engagement with Technology teams and leadership, represents the program to external stakeholders (such as regulators) in the region.Essential Functions

• Assist the global head of AppSec across the program that enables better developer productivity and experience

• Develop, maintain, and enhance the AppSec solutions across application security domains such as secure software requirements, architecture, design, testing, implementation, life cycle management and governance, software supply chain security, analytics and reporting

• Maintain and mature current control solutions around AppSec

• Partner with other functions within the cybersecurity organization and broader business units for seamless developer experience and productivity

• Identify, develop and lead the deployment of AI tools that can assist, augment or automate application security transformation program

• Work closely with Technology and business leaders to establish two way feedback mechanism that helps mature the AppSec transformation efforts.

• Represent the AppSec program to relevant regulators across different markets as required

• Implement governance and oversight of program management, including design and maintenance

• Build-out required program MIS, KRIs and overall reporting packs.

• Stay engaged with market practices, and identify best practices in the further evolution of risk in AppSec domain

• Oversee budget

QualificationsBasic Qualifications:\xe2\x80\xa2 18 or more years of work experience with a Bachelor\xe2\x80\x99s Degree

• experience in global organizations at leadership level for 10+ years

• certified in CISA/CRISC/CISSP/CCSP etc. Preferred qualifications:\xe2\x80\xa2 Deep domain expertise posed across AppSec policy, definition of software security requirements, AppSec testing (DAST, SAST, ADAST etc), engineering, risk management and services \xe2\x80\xa2 Organizational Change Management Experience: The candidate should be comfortable driving people change and have a track record of successfully navigating organizational changes.\xe2\x80\xa2 Demonstrated expertise in deploying effective, large-scale AppSec programs, working effectively with a broad group of stakeholders\xe2\x80\xa2 Strong understanding of applicable regulatory expectations on the design and deployment AppSec solutions\xe2\x80\xa2 System thinker with proven ability to connect the dots and design solutions that require deployment and/or buy-in across a larger group of stakeholders\xe2\x80\xa2 Effective leader with track record of growing global talent and developing strong digital identity skills\xe2\x80\xa2 Self-starter who can communicate with a deep understanding of the company needs and enable people to move forward through complexity\xe2\x80\xa2 Strong experience driving AppSec programs, projects and collaborating in large, matrixed organizations\xe2\x80\xa2 Experience establishing and leading global teams\xe2\x80\xa2 Experience with Executive Reporting, with the ability to deliver data insights\xe2\x80\xa2 A clear record of strategic thinking, sound judgment and superior problem solving\xe2\x80\xa2 Flexible and creative thinker with strong execution skills, generate out-of-the-box solutions, manage ambiguity, anticipate the impact of decisions/initiatives and able to move seamlessly from high level concepts to details\xe2\x80\xa2 Proven project management skills and experience.

Weekly Hours: 40Time Type: RegularLocation: Bangalore, Karnataka, IndiaIt is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.

AT&T