Application Security Team Lead

Reposted 7 Hours Ago
Be an Early Applicant
Tel Aviv, ISR
Hybrid
Senior level
Artificial Intelligence • Productivity • Sales • Software
Shaping the way the world works.
The Role
Lead and scale an AppSec team to embed security across the SDLC. Own the global application security roadmap, integrate automated testing into CI/CD, run threat modeling and architecture reviews, manage bug bounty and pentest programs, and partner with product, R&D, and GRC to ensure compliance with standards like SOC 2 and ISO 27001.
Summary Generated by Built In

About monday.com

At monday.com, we are reshaping the way teams work. Our AI Work Platform empowers organizations to build custom software applications and work management tools tailored to their needs. As a fast-growing, global SaaS company, trust and security are at the core of everything we do. We are seeking a visionary, hands-on leader to ensure our rapidly evolving platform remains secure, resilient, and trusted by millions worldwide.

About the Role

As our Application Security Team Lead, you will lead a team of talented security engineers, collaborating closely with Product and R&D to embed security across every phase of the software development lifecycle (SDLC). You will own the planning and execution of our global AppSec program, and drive a "secure-by-design" culture to ensure our agile deployment cycles never compromise on security.

Key Responsibilities

Strategic Leadership & Culture

  • Define and execute a scalable application security roadmap aligned with monday.com’s rapid growth.

  • Foster a culture of security ownership across R&D via training, champion programs, and hands-on threat modeling.

  • Mentor, scale, and inspire a high-performing team of AppSec engineers; encourage continuous learning and innovation.

Technical & Operational Oversight

  • Seamlessly integrate automated security testing (SAST, SCA, Secrets) into CI/CD pipelines.

  • Lead threat modeling sessions and architectural reviews for major platform changes, new features, and infrastructure updates.

  • Manage our bug bounty program, penetration testing, and internal vulnerability disclosures, ensuring timely, risk-based remediation.

Collaboration & Compliance

  • Act as a trusted advisor to product managers and engineering leads, balancing risk mitigation with business agility.

  • Partner with Governance, Risk, and Compliance (GRC) to ensure application compliance with international standards (SOC 2, ISO 27001, GDPR, HIPAA).

Requirements

  • 8+ years in application security, with at least 3 years managing/scaling AppSec teams in cloud/SaaS environments.

  • Strong background securing cloud-native applications (AWS preferable) and expertise with web application vulnerabilities (e.g., OWASP Top 10, CWE).

  • Proficiency in modern programming languages represented in our stack (e.g., Node.js, Ruby on Rails, React) and experience with Kubernetes, Docker.

  • Track record of implementing and optimizing AppSec tools in DevOps pipelines (GitHub, CI/CD tools).

  • Strong communication skills, able to translate complex security concepts into actionable recommendations for developers and executives.

If you are passionate about creating secure, scalable technology and leading with vision and technical depth, we'd love to meet you!

 
 

Skills Required

  • 8+ years in application security, with at least 3 years managing/scaling AppSec teams in cloud/SaaS environments
  • Strong background securing cloud-native applications and expertise with web application vulnerabilities (OWASP Top 10, CWE)
  • Experience with AWS (preferable)
  • Proficiency in modern programming languages in our stack (Node.js, Ruby on Rails, React)
  • Experience with Kubernetes and Docker
  • Track record of implementing and optimizing AppSec tools in DevOps pipelines (SAST, SCA, Secrets scanning, GitHub, CI/CD tools)
  • Strong communication skills to translate security concepts for developers and executives

What the Team is Saying

Ruchita
Nate
Kyle
Brad Wisselman
Brad Wisselman
Bianca Collado

monday.com Compensation & Benefits Highlights

  • Retirement Support A 401(k) plan with a guaranteed 3% company contribution regardless of employee deferral provides reliable retirement savings support. This predictable employer funding strengthens baseline long‑term financial security.
  • Parental & Family Support Up to 13 weeks of fully paid parental leave for all caregivers and adoption assistance (reimbursing up to $10,000) support growing families. Return‑to‑work programming and family events further ease caregiving transitions.
  • Wellbeing & Lifestyle Benefits Free daily breakfast, monthly meal (~$300) and commuter (~$130) stipends, snacks, and wellness offerings enhance everyday experience. Mental‑health resources, including 12 counseling sessions and additional wellness stipends, add meaningful support.

monday.com Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: New York, NY
3,049 Employees
Year Founded: 2012

What We Do

At monday.com, we help teams get more work done. We are the best AI work platform that empowers teams to automate, build, and scale their impact end-to-end with tools that actually execute the work for you. With over $1B in ARR, 250,000+ customers, and a global team, we’re serious about building a product people love to use and giving our employees the same ownership and flexibility to shape the way the world works.

Why Work With Us

At monday.com we believe in transparency, accountability, and impact. Together, those values have lent themselves to create a strong culture of professional and creative autonomy where every team member is encouraged to share ideas and help bring them to life!

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

monday.com Teams

Team
Customer Experience
About our Teams

monday.com Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

monday.com embraces a flexible work environment with our hybrid model!

Typical time on-site: 3 days a week
HQNew York, NY
HQTel Aviv
Denver, CO
London
Melbourne
Munich
Paris, France
Sao Paolo
Singapore
Sydney
Tokyo
Warsaw
Learn more

Similar Jobs

monday.com Logo monday.com

Operations Manager

Artificial Intelligence • Productivity • Sales • Software
Hybrid
Tel Aviv, ISR
3049 Employees

monday.com Logo monday.com

Data Analyst

Artificial Intelligence • Productivity • Sales • Software
Hybrid
Tel Aviv, ISR
3049 Employees

monday.com Logo monday.com

Security GRC Specialist

Artificial Intelligence • Productivity • Sales • Software
Hybrid
Tel Aviv, ISR
3049 Employees

monday.com Logo monday.com

Engineering Group Lead- Monday Agents

Artificial Intelligence • Productivity • Sales • Software
Hybrid
Tel Aviv, ISR
3049 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account