What you'd actually do

Lead & Scale: Recruit, mentor, and manage a high-performing team of Application Security Engineers.

Program Ownership: Design and execute the long-term AppSec roadmap, including Secure SDLC, threat modeling, and automated guardrails.

Strategic Influence: Serve as a peer to Engineering Leaders, ensuring security is a first-class citizen in the product roadmap.

Incident Management: Act as the primary escalation point for application-level security events, leading the team through containment and root-cause analysis.

Vendor & Community Management: Oversee our Bug Bounty program, external penetration testing partners, and security tooling vendors (SAST, DAST, SCA).

Skills

Required

8+ years of overall experience in Information Security with an emphasis on Application Security.
Strong understanding of web application security (OWASP Top 10), common attack vectors, and modern CI/CD pipelines.
Ability to make high-stakes decisions and prioritize the team's workload based on business risk, even with incomplete data.
Demonstrated ability to manage upward effectively, providing proactive results and strategic updates rather than requiring step-by-step guidance.
A "Team Over Self" mentality with the ability to influence senior engineering leadership without formal authority.
Find and implement AI solutions to enhance the Application Security and Engineering Teams capabilities and ability to execute.

Nice to have

CSSLP, CISSP, or GWEB are highly desirable.

What the JD emphasized

architect a secure-by-default culture

radical ownership

manager-of-one

navigate ambiguity

execute a long-term vision without needing a playbook provided for them

player-coach

high-trust, high-autonomy environments

been in the trenches

building systems and people

defines the "how" once we’ve agreed on the "what"

operating with minimal oversight

drive measurable risk reduction and program execution

bias-towards-action leader

own a function end-to-end

Independent Execution

Proven track record of taking messy, undefined security challenges and turning them into streamlined, repeatable processes without hand-holding.

Navigating Ambiguity

Ability to make high-stakes decisions and prioritize the team's workload based on business risk, even with incomplete data.

Low-Friction Leadership

Demonstrated ability to manage upward effectively, providing proactive results and strategic updates rather than requiring step-by-step guidance.

Job Title: Manager, Application Security

**Location: US, Remote **

ABOUT THE COMPANY:

Clari + Salesloft are building the next era of enterprise revenue — one where teams make confident decisions powered by AI and real signals. By combining our scale, insights, and AI innovation, we’re building the industry’s first Predictive Revenue System, enabling humans and AI to work together to make smarter decisions and drive consistent growth. With thousands of customers using our platforms every day, we have an unmatched view into how revenue is actually won — the Revenue Context that reveals what happens, when, and with what outcome. This gives us a unique opportunity to transform an entire category and set a new benchmark for how modern revenue teams operate.

Join us to help transform how companies around the world run revenue — and build the platform that will guide leading revenue teams into the future.

THE OPPORTUNITY:

At Clari + Salesloft, our Manager, Application Security will be pivotal to our company’s success. You will be a foundational leader within our information security team, tasked with building and leading a world-class group of AppSec Engineers. Your mission is to move beyond tactical fixes and architect a secure-by-default culture across our entire engineering organization.

As a leader at Salesloft, you will have radical ownership of the AppSec function. We are looking for a "manager-of-one" who can navigate ambiguity and execute a long-term vision without needing a playbook provided for them.

On a day-to-day basis, you will:

Lead & Scale: Recruit, mentor, and manage a high-performing team of Application Security Engineers.
Program Ownership: Design and execute the long-term AppSec roadmap, including Secure SDLC, threat modeling, and automated guardrails.
Strategic Influence: Serve as a peer to Engineering Leaders, ensuring security is a first-class citizen in the product roadmap.
Incident Management: Act as the primary escalation point for application-level security events, leading the team through containment and root-cause analysis.
Vendor & Community Management: Oversee our Bug Bounty program, external penetration testing partners, and security tooling vendors (SAST, DAST, SCA).
Evangelize Security: Build a "Security Champions" program to scale security knowledge across the broader development team.

In addition to working with amazing colleagues who exemplify our ‘team over self’ core value, you will also have the opportunity to grow and evolve a fast moving Application Security function while making a real difference in reducing risk and enabling developers to deliver secure code faster. You will have an opportunity to make a difference.

WHAT WE’RE LOOKING FOR:

We are seeking a player-coach who thrives in high-trust, high-autonomy environments. You are a seasoned AppSec professional who has "been in the trenches" but is now passionate about building systems and people. We need someone who defines the "how" once we’ve agreed on the "what," operating with minimal oversight to drive measurable risk reduction and program execution.

If you are a bias-towards-action leader who wants to own a function end-to-end, this is the career path for you!

If you’re looking for an opportunity to learn more, do more, and become more, then becoming a Manager, Application Security is the career path for you!

THE TEAM:

Our Clari + Salesloft Information Security team is comprised of seasoned and up-and-coming security professionals who are all aligned on one vision and mission:

**Vision: **Fundamentally transform the way buyers and sellers drive repeatable outcomes
**Mission: **Bring science to the art of sales

THE SKILL SET:

8+ years of overall experience in Information Security with an emphasis on Application Security.
Independent Execution: Proven track record of taking messy, undefined security challenges and turning them into streamlined, repeatable processes without hand-holding.
Technical Depth: Strong understanding of web application security (OWASP Top 10), common attack vectors, and modern CI/CD pipelines.
Navigating Ambiguity: Ability to make high-stakes decisions and prioritize the team's workload based on business risk, even with incomplete data.
Low-Friction Leadership: Demonstrated ability to manage upward effectively, providing proactive results and strategic updates rather than requiring step-by-step guidance.
Collaboration: A "Team Over Self" mentality with the ability to influence senior engineering leadership without formal authority.
Relevant Certifications: CSSLP, CISSP, or GWEB are highly desirable.
**AI Enablement: **Find and implement AI solutions to enhance the Application Security and Engineering Teams capabilities and ability to execute.

At Clari + Salesloft, we are committed to creating an inclusive and supportive workplace where everyone belongs and can thrive. We focus on culture add, not culture fit, and believe our teams are made stronger by the unique perspectives, experiences, and identities each person brings.

We are proud to be an Equal Opportunity Employer and provide employment opportunities to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, pregnancy, or any other characteristic protected by law.

If you’re excited about this role even though your experience may not perfectly match every requirement, we encourage you to apply. We are actively hiring across multiple geographies and would love to welcome passionate, curious, and mission-driven individuals to our growing team. Explore our open roles and consider joining us!

Please note that all official communication regarding job opportunities at Clari + Salesloft will come from an @clari.com or @ salesloft.com email address. If you receive messages on LinkedIn or other job platforms claiming to be from Clari + Salesloft, they may not be legitimate. To verify the authenticity of any job-related communication, please visit our official Careers Page.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, notetaking, or summarizing responses. These tools assist our recruitment team but do not replace human judgment — all hiring decisions are made by people. If you would like more information about how your data is processed or prefer to opt out of any AI-assisted tools, please let your recruiter know. Opting out will not impact your experience or consideration.

#LI-Remote

It is Clari + Salesloft’s intent to pay all Lofters competitive wages and salaries that are motivational, fair and equitable. The goal of Clari + Salesloft’s compensation program is to be transparent, attract potential employees, meet the needs of all current employees and encourage employees to stay with our organization.

Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location.

The total compensation package for this position may also include performance bonus, benefits and/or other applicable incentive compensation plans.

Base Pay Range

$123,000—$175,000 USD