Team Lead, AppSec
Why You Should Apply
Shape a growing function: This is a high-visibility leadership role at a pivotal moment for Forward's security program. You'll have the mandate and support to build the team, tools, and processes needed to secure AI-built software from the ground up.
Mission driven company: Forward is a trusted source of fast, flexible funding for small businesses that have often been underserved by traditional financing options. When you join the team, you will help ensure all small businesses have access to the financial support they need to succeed.
Flexibility is a top priority: Our employees are empowered to choose where they want to work (whether that’s from home, in the office, or a combination of both) with flexible hours.
Role Requirements
- Typically has 7 or more years in application security, offensive security, or product security, including team leadership.
- Hands-on pentesting and code-review depth across web applications, APIs, and cloud infrastructure (AWS).
- Experience building or scaling a security testing program — scoping, tooling, cadence, and remediation SLAs.
- Understanding of AI/LLM attack surface: prompt injection, insecure agent tool use, and vulnerabilities characteristic of AI-generated code.
- Experience with modern programming languages such as Ruby, Python, or Go, and with secure SDLC practices.
- Ability to communicate risk and priorities crisply to engineers and executives.
- Typically has a Bachelor's Degree in Computer Science or equivalent technical degree, or equivalent industry experience.
It Would Be Nice If You Also Had
- Experience pentesting or red-teaming LLM applications and agentic systems.
- OSCP/OSWE or comparable offensive certifications.
- Experience running bug-bounty or external testing programs.
- Background in fintech or other regulated environments.
Pay
Annual Targeted Salary: $175,000– $200,000 USD
Annual Target Bonus: 12%