Role Overview :

The ApplSec & TPRM Lead will be responsible for owning and governing the enterprise-wide Vulnerability Management (VM) program and ensuring alignment of application, infrastructure, and cloud security controls.

The role involves driving remediation efforts, improving VM maturity, integrating security into DevOps pipelines, and enabling risk-based decision-making through strong stakeholder collaboration and data-driven reporting.

Key Responsibilities :

- Own and govern the end-to-end Vulnerability Management (VM) program

- Ensure DevSecOps integration completeness across SAST, DAST, SCA, CSPM, and Infra tools for automating security assessments in DevOps pipelines

- Track remediation SLA adherence, escalate overdue issues, and align with stakeholders

- Review and report weekly/monthly dashboards covering risk trends, SLAs, and exceptions

- Oversee secure SDLC enforcement and continuous improvement of security processes

- Facilitate TPRM alignment and integration into the broader VM landscape

- Lead cross-functional coordination, metrics-driven governance, and knowledge sharing

- Perform thread modelling for new applications

Key Attributes :

- Strong analytical, reporting, and dashboarding capability.

- Excellent communication, collaboration, and leadership skills.