
Application Security Engineering Manager
Posted Jun 9

Posted Jun 9
This is a fully remote position, open to applicants in United Kingdom.
• Lead, support, and develop the AppSec team by overseeing hiring, onboarding, performance management, and career growth for a group of Senior and Staff-level Security Engineers. It is crucial to note that we are not seeking someone to dictate the team's roadmap or daily tasks; rather, we need an individual who empowers the team to accomplish their objectives and provides them with the optimal environment to succeed.
• Take ownership of formalizing the AppSec strategy and roadmap, translating team insights, business risks, and engineering contexts into a clear, prioritized work program with measurable results.
• Serve as a credible technical partner for your team, engaging in substantial discussions on threat models, security architecture, tooling design, and risk management, and willing to delve into details when necessary.
• Define and uphold the team's operational rhythm, including OKRs, quarterly planning, cross-team coordination, and communication with stakeholders up to leadership.
• Act as a vital link between AppSec and the broader organization and leadership, fostering relationships with business leaders, engineering heads, the Developer Platform team, Architecture Working Group, and other partner functions like Legal and Moderation to integrate security into Synthesia's development processes.
• Engage in the maintenance and evolution of Synthesia's approach to AI-assisted development security, including securing our use of agentic coding tools and evaluating the security of AI-generated code.
• Manage AppSec's relationship with the wider Security function, ensuring close alignment between AppSec and other InfoSec teams concerning shared risks, incidents, and collaborative initiatives.
• Represent AppSec externally when necessary, engaging with customers, auditors, and participating in compliance programs such as SOC2 and ISO42001.
• You are an effective communicator capable of engaging with diverse audiences — from technical discussions with staff engineers to clear risk communication for leadership, as well as practical negotiations with product and engineering partners.
• You possess a solid engineering background in application security, with hands-on experience in areas such as threat modeling, secure design reviews, (AI-)SAST/SCA tooling, vulnerability management, and/or security automation.
• You are highly proficient in Python and JavaScript, with experience in AWS and/or GCP from a cloud infrastructure standpoint, and familiarity with GitHub Actions.
• You have substantial people management experience, having hired, developed, and performance-managed security engineers, with a clear understanding of what excellence looks like at senior individual contributor levels.
• You have led or made significant contributions to an AppSec program in a rapidly growing SaaS or AI company, particularly where the engineering organization was scaling more quickly than the security team.
• You hold a genuine perspective on AI-native security engineering — understanding how LLMs and agentic tools alter the attack surface and how to employ them defensively. This area is critical to our mission, and you should be able to lead effectively within it.
• You have experience working in an environment with a mature engineering culture and comprehend how to integrate security as a collaborative partner rather than a gatekeeper.
• A flexible, remote-friendly role based in Europe or one of our hubs located in London, Copenhagen, Munich, or Zurich.
• 25 days of annual leave plus public holidays in the country where you are based.
• A generous referral program.
• Work-from-home setup.
• At Synthesia, you have the freedom to work from anywhere (*within reason)* around the world for up to **60 days per year!**
• A significant opportunity for career advancement as you contribute to shaping a market-defining product.
GE Vernova
Convatec
Red Hat
Get handpicked remote jobs straight to your inbox weekly.