Senior Manager Application Security

Benefits

Additional Information

Join us as we work to create a thriving ecosystem that delivers accessible, high-quality, and sustainable healthcare for all. Role summary: Lead application security efforts that help protect athenahealth products and customer data at scale. In this role, you will partner with engineering and security teams to identify, prioritize, and reduce application risk through secure design, vulnerability management, and practical remediation approaches. This position is based in Bangalore - Whitefield, India and is a hybrid role. This person will report to the Director in Information Security . Team summary: Application Security in DevSecOps is responsible for embedding security into the software development lifecycle and advancing secure engineering practices across the organization. The team helps reduce risk by partnering with engineering, platform, product, information technology, and security architecture teams to identify weaknesses early, improve remediation speed, and strengthen secure-by-design execution. Success for this team is measured through risk reduction, operational efficiency, and the effective use of automation and AI-enabled security analytics to improve visibility and response. The team also supports scalable processes and practical guidance that help teams build and maintain secure applications with greater consistency. Essential Job Responsibilities: Lead application security programs that identify, assess, and reduce risk across software products and services. Prioritize vulnerabilities based on exploitability, business impact, exposure, and remediation complexity. Partner with engineering and product teams to design and implement secure-by-design patterns and controls. Manage the use of security scanning tools, including results review, workflow integration, and remediation tracking. Analyze application security findings to support timely decisions, trend identification, and risk reporting. Drive remediation efforts by coordinating with technical teams on practical fixes and sustainable preventive controls. Develop scalable processes that improve vulnerability triage, issue handling, and security feedback loops. Guide teams in adopting secure development practices through consultation, reviews, and working sessions. Apply AI-enabled approaches in day-to-day security work by using AI tools to help sort findings, accelerate triage, summarize patterns, and improve remediation workflows, while validating outputs with security judgment before action. Grow and improve Security Champions program. Additional Job Responsibilities: Support security awareness activities for engineering teams. Contribute to policy, standard, and control updates related to application security. Assist with security metrics, dashboards, and recurring reporting. Participate in incident response or security investigations when application expertise is needed. Review security architecture inputs for new or changed application capabilities. Help refine vulnerability management procedures and operating playbooks. Provide input on tool evaluation and process improvements for application security operations. Collaborate on special projects that improve secure software delivery practices. Expected Education & Experience: Bachelor's degree in Computer Science, Information Security, Engineering, or a related field, or equivalent practical experience. 0 to 20 years of experience in application security, product security, software security, or a related technical field. Experience working with application security scanning tools and remediation workflows. Experience prioritizing vulnerabilities using technical and business risk criteria. Knowledge of secure software development lifecycle practices and common application security controls. Experience partnering with engineering teams to support secure implementation and issue resolution. Familiarity with AI-assisted security workflows or the ability to apply AI tools to improve security operations. Strong communication skills for working across technical and non-technical partners. Ability to work in a hybrid environment with teams across locations and time zones. Experience reporting to or partnering closely with senior security leadership. About athenahealth Our vision: In an industry that becomes more complex by the day, we stand for simplicity. We offer IT solutions and expert services that eliminate the daily hurdles preventing healthcare providers from focusing entirely on their patients - powered by our vision to create a thriving ecosystem that delivers accessible, high-quality, and sustainable healthcare for all. Our company culture: Our talented employees - or athenistas, as we call ourselves - spark the innovation and passion needed to accomplish our vision. We are a diverse group of dreamers and do-ers with unique knowledge, expertise, backgrounds, and perspectives. We unite as mission-driven problem-solvers with a deep desire to achieve our vision and make our t

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at athenahealth? Share your experience