Manager, Information Security - Application Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

O'Reilly Auto Parts · 11 hours ago

Manager, Information Security - Application Security

positionSpringfield, MO
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date6+ years exp

O'Reilly Auto Parts is seeking an Information Security Manager - Application Security to oversee the organization's cybersecurity systems and protect its IT infrastructure. The role involves developing security policies, managing vulnerability assessments, and ensuring compliance while leading a team of security personnel.

AutomotiveManufacturingRetailWholesale
check
H1B Sponsor Likelynote

Responsibilities

Security Strategy: Develop and implement security policies and procedures for the full software development life cycle (SDLC)
Vulnerability Management: Oversee vulnerability assessments, code scanning, and penetration testing, prioritizing findings for remediation
Team Leadership: Supervise, train, and manage security personnel or AppSec engineers
Threat Modeling & Risk Analysis: Perform, manage, and deliver risk assessments for applications
Guidance & Collaboration: Act as a liaison between development teams and security, providing guidance on best practices for secure coding
Incident Response: Investigate security incidents and provide timely resolutions
Reporting & Metrics: Produce key performance indicators (KPIs) and reports on the security posture
Lead in detecting and analyzing security incidents, including attacks, breaches, and identified vulnerabilities, and remediate any security gaps in line with the security incident management procedure
Explore and develop a detailed understanding of external developments or emerging issues and evaluate their potential impact on, or usefulness to, the organization
Document complex "as is" and "to be" processes and describe the changes required to migrate to the "to be" capability to record accurately the change required
Provide input and assist GRC with the drafting of policies, procedures, and related guidelines within an area of expertise to meet defined key principles and ensure compliance with external requirements
Monitor and review performance and behaviors within area of responsibility to identify and resolve noncompliance with the organization's policies and relevant regulatory codes and codes of conduct
Elicit complex business requirements using a variety of methods, such as interviews, document analysis, workshops, and workflow analysis, to express the requirements in terms of target user roles and goals
Communicate the actions needed to implement the function's strategy and business plan within the team; explain the relationship to the broader organization's mission, vision, and values; motivate Team Members to commit to these and to do extraordinary things to achieve local business goals
Support strategy formulation for digital by exploring how information technology can be used to help the organization become more responsive to customer needs and changing business requirements
Manage and report on the performance of a substantial, diverse team; set appropriate performance objectives for direct reports or project/account team members and hold individuals accountable for achieving them; take appropriate corrective action where necessary to ensure the achievement of team/personal objectives
Develop and/or deliver budget plans with guidance from senior colleagues
Use the organization's formal development framework to identify the team's individual development needs. Plan and implement actions, including continuing professional development specified by professional or regulatory institutions, to build their professional capabilities. Provide informal training or coaching to others throughout the organization in own area of expertise to enable others to improve performance and fulfill personal potential
Develop stakeholder engagement by identifying stakeholders; by finding out their needs, issues, and concerns; and by reacting to these needs, issues, and concerns to support the communication of business information and decisions
Conduct research and select relevant information to enable analysis of key themes and trends using primary data sources and business intelligence tools
Manage a portfolio of projects while reporting to senior colleagues
Develop medium- or long-term work schedules that enable the organization to achieve its business goals. Involves coordinating across multiple teams

Qualification

Application SecurityPenetration TestingVulnerability AssessmentsSecure Coding PrinciplesCI/CD ToolsStatic Analysis ToolsDynamic Analysis ToolsWeb Application FirewallsRisk Management FrameworksData AnalysisChange ManagementTeam ManagementCommunication SkillsProject Management

Required

Proven experience in application security, penetration testing, or software development
Understanding of web application vulnerabilities (e.g., OWASP Top 10), secure coding principles, and CI/CD tools
Strong team management and communication skills
Knowledge/Experience with: Static (SAST) and Dynamic (DAST) analysis tools, Web Application Firewalls (WAF), Risk Management frameworks
Applies comprehensive knowledge / skill, acts with independence and provides guidance and training to others
Implements transaction security and computer/network virus protection
Maintains systems/services and information security, integrity, compliance and continuity
Ensures the confidentiality, integrity, and availability of information
Controls access to servers, systems, and computers
Follows confidentiality procedures, ensuring that restricted information is only shared with approved recipients, that data sharing is done so using approved/secure communication methods, and that data is kept safe and secure at all times
Interprets and applies knowledge of laws, regulations and policies in area of expertise
Monitors, interprets and understands policies and procedures and ensure their alignment with organizational strategies and work objectives
Conducts gap analysis between current and future states to identify components of the overall change strategy
Plans, organizes, prioritizes and oversees activities to efficiently meet objectives
Determines and analyzes trends from data that is collected to assist in compiling reports that will help in decision-making
Acquires, organizes, protects and processes data in order to fulfill business objectives

Preferred

Plans and manages small project work assignments within desired cost, time and quality parameters
Identifies, sequences, and resources project schedules for timely completion
Estimates and manages the effort and finances to complete the work within budget
Demonstrates a change mindset as well as plans, executes and monitors activities during times of change whilst keeping performance levels up
Identifies, addresses, and navigates opposition or reluctance effectively, fostering a collaborative environment and facilitating positive outcomes in the face of resistance
Creates reports, and reviews reports created by others, for various audiences as relevant, in a lucid and effective manner, keeping in mind the purpose of reports
Communicate and articulates potential resolutions or strategies in a clear, compelling, and tailored manner to address specific challenges or meet organizational needs
Understands and effectively uses standard office equipment and standard software packages to support business processes
Expresses ideas, requests action, formulates plans, & policies by means of clear and effective verbal communications
Ability to change actions or plans at short notice
Understands, evaluates, uses, and engages with digital technology and information, as well as create and share digital content, while being aware of essentials like safety, privacy and ethical considerations
Shifts into and out of a mental mindset associated with assessing the facts and circumstances of the current situation and/or environment, and makes the appropriate/innovative adjustments to thinking and work habits to thrive in any scenario

Benefits

Competitive Wages & Paid Time Off
Stock Purchase Plan & 401k with Employer Contributions Starting Day One
Medical, Dental, & Vision Insurance with Optional Flexible Spending Account (FSA)
Team Member Health/Wellbeing Programs
Tuition Educational Assistance Programs
Opportunities for Career Growth

Company

O'Reilly Auto Parts

twittertwittertwitter
Glassdoor3.3
company-logo
O’Reilly Auto parts is a specialty retailer of automotive aftermarket parts, tools, supplies, equipment and accessories.
dateFounded in 1957
location
Springfield, Missouri, USA
people-size10001+ employees
web-link
http://www.oreillyauto.com/

H1B Sponsorship

O'Reilly Auto Parts has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2021 (2)

Funding

Current Stage
Public Company
Total Funding
$500M
2024-08-19Post Ipo Debt· $500M
1993-04-23IPO

Leadership Team

leader-logo
Brent Kirby
President
linkedin
leader-logo
Greg Johnson
Retired
linkedin

Recent News

bloomberglaw.com
O’Reilly Automotive Hit With Suit Over Health Plan’s Smoker Fee
2026-01-24
Benzinga.com
$100 Invested In O'Reilly Automotive 5 Years Ago Would Be Worth This Much Today
2026-01-20
Investing.com
Top 5 Auto Parts Retailers WarrenAI Says to Watch in 2026: Value Plays Lead the Pack
2025-12-29
Company data provided by crunchbase