Director, Security Integration & Engineering - Application Security & Vulnerability Management - American Express

Key Responsibilities

• Define and execute the strategy for application security and vulnerability management across the organization.
• Architect, implement, and maintain automated security testing pipelines (SAST, DAST, SCA) integrated into CI/CD workflows.
• Lead cross‑functional teams to remediate critical vulnerabilities, ensuring timely patching and secure code practices.
• Collaborate with cloud engineering to embed security controls in AWS environments, including IAM, network segmentation, and runtime protection.
• Mentor senior engineers, establish best‑practice standards, and drive a culture of security‑first development.

Requirements

• 10+ years of experience in application security, vulnerability management, or related fields, with at least 5 years in a leadership role.
• Deep knowledge of security testing tools, secure coding practices, and cloud security (AWS preferred).
• Proficiency in scripting or programming languages such as Python and experience with CI/CD platforms (Jenkins, GitLab, Azure DevOps).
• Strong track record of building and scaling DevSecOps processes in large, distributed organizations.
• Excellent communication and stakeholder management skills, capable of influencing technical and non‑technical audiences.