Director, Application Security (Cybersecurity Defense)

Cardinal Health

Remote

Quick summary

Work type
Remote
Location
Remote
Salary
$135,400–$208,100 / yr
Posted
3 days ago

Market check

Salary context

Competitive pay

How this pay compares to similar roles

Similar $176k
This role $172k
$120k most similar roles pay here $219k

This role pays more than 55% of similar roles. Most pay $142,400–$209,850 — the shaded band above. At the midpoint, this role pays about $172k versus about $176k for comparable roles.

Based on 239 similar postings.

Employer

About Cardinal Health

Cardinal Health is a global healthcare services and products company specializing in pharmaceutical distribution, medical products, and supply chain solutions for healthcare providers and pharmacies. Industry: Healthcare Distribution & Services

Cardinal Health currently has 20 open roles on FindRole.

Listed pay typically runs $100,000–$155,230 across 20 roles with salary data.

Most-posted roles

View all roles at Cardinal Health

At a glance

TL;DR · Director, Application Security (Cybersecurity Defense)

Apply Now Log in to save

The Director of Application Security at Cardinal Health leads the enterprise’s application security strategy, embedding security into the software development lifecycle (SDLC) and reducing risk across diverse business segments. This role involves establishing governance frameworks, collaborating with engineering teams to align security practices with technology strategies, and advising on security risks and priorities. The director oversees application security capabilities in Pharma, Medical, and Commercial Technology environments, ensuring compliance with regulatory requirements while driving standardization of processes and tooling. Key responsibilities include managing enterprise application security testing programs, integrating security controls into CI/CD pipelines, and collaborating with risk and compliance teams to ensure alignment with enterprise risk management frameworks. Ideal candidates have over 10 years of experience in cybersecurity, expertise in application security testing methodologies, and a strong understanding of modern development frameworks and regulatory requirements.

Skills

CI/CD DevSecOps SAST DAST SCA IAST OWASP NIST CSF ISO 27001 API security Cloud-native architectures Secure coding standards WAF API gateways Runtime monitoring Kubernetes AWS Python PostgreSQL

What you'll do

  • Lead the development and implementation of enterprise application security strategy aligned with business objectives.
  • Establish governance frameworks to embed security into SDLC across all applications.
  • Oversee application security capabilities across diverse segments, ensuring consistent practices.
  • Define segment-specific requirements for regulatory compliance and risk management.
  • Drive standardization of processes and tooling for application security testing programs.
  • Ensure alignment of application security with enterprise architecture and runtime protections.
  • Provide oversight for audits, assessments, and compliance reporting related to application security.

What we're looking for

  • Over 10 years of experience in cybersecurity with a focus on application security or DevSecOps.
  • Deep expertise in SAST, DAST, SCA, IAST methodologies and secure development practices.
  • Strong understanding of application/API security, cloud-native architectures, and modern development frameworks.
  • Proven leadership in managing large-scale application security programs within complex organizations.
  • Comprehensive knowledge of cybersecurity frameworks (NIST CSF, OWASP) and regulatory requirements.
  • Ability to collaborate with cross-functional teams and influence executive stakeholders effectively.
  • Strong leadership, communication, and problem-solving skills.

Related searches

More Director jobs Remote Director jobs All jobs at Cardinal Health

More like this

Similar roles

Director, Security Architecture

Cardinal Health

Us-Nationwide-Field, US 3 days ago $135,400$208,100
NIST-CSF ISO_27001 DevSecOps CI/CD Cloud_Security_Architecture Kubernetes AWS Azure GCP Terraform Python Java Go Docker PostgreSQL MongoDB Cybersecurity_frameworks Security_architecture_tooling Enterprise_architecture
Save

Director, IT Security Operations

University of Miami

Miami, FL 58 days ago
SIEM MDR CISSP CISM Security+ Certified Ethical Hacker Cloud Security certification ISO27000 COBIT NIST 800 Cybersecurity Incident Response Network and security architecture Regulatory compliance
Save

Global Director of Application Security

Northern Trust

Chicago, IL 1 day ago $164,600$288,000
SAST DAST SCA CI/CD API security Cloud-native application security Software supply chain security AI-assisted development DevSecOps Kubernetes Terraform Python PostgreSQL AWS Azure GitHub Jira Confluence
Save

Senior Security Engineer, Cyber Defense Platforms

State Street

Boston, MA 3 days ago $90,000$157,500
Endpoint hardening CIS benchmarks Zero Trust EDR Application control Configuration management Execution control mechanisms Network Security (NetSec) Data Security (DataSec) CI/CD Security architecture documentation Large scale multi-region environments Regulated enterprise environments Hybrid work model
Hybrid
Save

Cybersecurity Strategy and Communications Lead

3M

Maplewood, MN 29 days ago $164,612$201,193
PowerPoint Microsoft Office Suite SharePoint Online Adobe Creative Suite Project Management Tools Cybersecurity Platforms CI/CD Cloud Services Databases Python JavaScript HTML CSS Web Content Management Systems Digital Design Software Collaboration Tools Terraform AWS Kubernetes
Save