About monday.com
At monday.com, we are reshaping the way teams work. Our AI Work Platform empowers organizations to build custom software applications and work management tools tailored to their needs. As a fast-growing, global SaaS company, trust and security are at the core of everything we do. We are seeking a visionary, hands-on leader to ensure our rapidly evolving platform remains secure, resilient, and trusted by millions worldwide.
About the Role
As our Application Security Team Lead, you will lead a team of talented security engineers, collaborating closely with Product and R&D to embed security across every phase of the software development lifecycle (SDLC). You will own the planning and execution of our global AppSec program, and drive a "secure-by-design" culture to ensure our agile deployment cycles never compromise on security.
Key Responsibilities
Strategic Leadership & Culture
Define and execute a scalable application security roadmap aligned with monday.com’s rapid growth.
Foster a culture of security ownership across R&D via training, champion programs, and hands-on threat modeling.
Mentor, scale, and inspire a high-performing team of AppSec engineers; encourage continuous learning and innovation.
Technical & Operational Oversight
Seamlessly integrate automated security testing (SAST, SCA, Secrets) into CI/CD pipelines.
Lead threat modeling sessions and architectural reviews for major platform changes, new features, and infrastructure updates.
Manage our bug bounty program, penetration testing, and internal vulnerability disclosures, ensuring timely, risk-based remediation.
Collaboration & Compliance
Act as a trusted advisor to product managers and engineering leads, balancing risk mitigation with business agility.
Partner with Governance, Risk, and Compliance (GRC) to ensure application compliance with international standards (SOC 2, ISO 27001, GDPR, HIPAA).
Requirements
8+ years in application security, with at least 3 years managing/scaling AppSec teams in cloud/SaaS environments.
Strong background securing cloud-native applications (AWS preferable) and expertise with web application vulnerabilities (e.g., OWASP Top 10, CWE).
Proficiency in modern programming languages represented in our stack (e.g., Node.js, Ruby on Rails, React) and experience with Kubernetes, Docker.
Track record of implementing and optimizing AppSec tools in DevOps pipelines (GitHub, CI/CD tools).
Strong communication skills, able to translate complex security concepts into actionable recommendations for developers and executives.
If you are passionate about creating secure, scalable technology and leading with vision and technical depth, we'd love to meet you!
Skills Required
- 8+ years in application security, with at least 3 years managing/scaling AppSec teams in cloud/SaaS environments
- Strong background securing cloud-native applications and expertise with web application vulnerabilities (OWASP Top 10, CWE)
- Experience with AWS (preferable)
- Proficiency in modern programming languages in our stack (Node.js, Ruby on Rails, React)
- Experience with Kubernetes and Docker
- Track record of implementing and optimizing AppSec tools in DevOps pipelines (SAST, SCA, Secrets scanning, GitHub, CI/CD tools)
- Strong communication skills to translate security concepts for developers and executives
monday.com Compensation & Benefits Highlights
-
Retirement Support — A 401(k) plan with a guaranteed 3% company contribution regardless of employee deferral provides reliable retirement savings support. This predictable employer funding strengthens baseline long‑term financial security.
-
Parental & Family Support — Up to 13 weeks of fully paid parental leave for all caregivers and adoption assistance (reimbursing up to $10,000) support growing families. Return‑to‑work programming and family events further ease caregiving transitions.
-
Wellbeing & Lifestyle Benefits — Free daily breakfast, monthly meal (~$300) and commuter (~$130) stipends, snacks, and wellness offerings enhance everyday experience. Mental‑health resources, including 12 counseling sessions and additional wellness stipends, add meaningful support.
monday.com Insights
What We Do
At monday.com, we help teams get more work done. We are the best AI work platform that empowers teams to automate, build, and scale their impact end-to-end with tools that actually execute the work for you. With over $1B in ARR, 250,000+ customers, and a global team, we’re serious about building a product people love to use and giving our employees the same ownership and flexibility to shape the way the world works.
Why Work With Us
At monday.com we believe in transparency, accountability, and impact. Together, those values have lent themselves to create a strong culture of professional and creative autonomy where every team member is encouraged to share ideas and help bring them to life!
Gallery
monday.com Teams
monday.com Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
monday.com embraces a flexible work environment with our hybrid model!












