Lead Application Security

Chevron Corporation

Quick summary

Work type
On-site
Location
Houston, TX
Posted
1 day ago
Closes
Jun 30, 2026

Market check

Salary context

How this pay compares to similar roles

Similar $186k
$130k most similar roles pay here $235k

This listing doesn't post a salary. Most similar roles pay $154,600–$216,656.

Based on 240 similar postings.

Employer

About Chevron Corporation

Chevron Corporation is one of the world''s largest multinational energy companies engaged in the exploration, production, refining, and marketing of oil and natural gas, as well as petrochemicals and power generation. Industry: Oil & Gas Energy

View all roles at Chevron Corporation

At a glance

TL;DR · Lead Application Security

Apply Now Log in to save

The Lead Application Security role at Chevron involves advancing the company’s Application Security Program by enhancing security testing and remediation practices across the software development lifecycle. This senior position requires leading secure design reviews, threat modeling, code analysis, and automated testing to identify application risks early and drive timely remediation. The individual will partner with DevOps, architecture, engineering, cloud, and cybersecurity teams to improve application security controls at enterprise scale. Key responsibilities include defining and maturing the enterprise application security strategy, embedding secure SDLC practices, overseeing assessments and governance, and building developer enablement programs. Essential qualifications are a degree in Cybersecurity or related field, experience leading application security initiatives, knowledge of application security testing tools like SAST and DAST, and strong communication skills to advise senior stakeholders. Preferred candidates have relevant certifications and hands-on experience with AppSec tooling and practices.

Skills

CI/CD SAST DAST SCA API security Secrets detection SBOMs Cloud-native application security Threat modeling Secure design reviews Application security testing DevOps Kubernetes AWS Python

What you'll do

  • Define and mature Chevron’s enterprise application security strategy and standards.
  • Embed secure SDLC practices including threat modeling, secure design reviews, and automated testing.
  • Oversee application security assessments, vulnerability prioritization, and remediation governance.
  • Build developer enablement programs to improve secure coding and architecture practices.
  • Lead the AppSec team while managing program metrics, tooling, and continuous improvement.

What we're looking for

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering, or related field.
  • Experience leading application security and secure SDLC practices.
  • Knowledge of application security testing, threat modeling, and CI/CD security controls.
  • Ability to influence cross-functional teams and drive risk-based remediation.
  • Experience leading people, programs, governance processes, metrics, vendors, or cross-functional security initiatives.
  • Relevant security certification such as CISSP, CSSLP, GWEB, GWAPT, OSWE, or comparable credential.

Related searches

More Lead Application Security jobs Lead Application Security jobs in Houston All jobs at Chevron Corporation

More like this

Similar roles

Lead, Application Security

Prudential Financial

Newark, NJ 84 days ago $123,700$204,100
DevSecOps Python Bash PowerShell OWASP Top 10 SAST SCA DAST ASPM NIST PCI DSS AWS Azure GCP CI/CD CIS MITRE ATT&CK SOX
Save

Desktop Engineering Lead - Endpoint Security

T. Rowe Price

Owings Mills, MD +5 43 days ago $110,000$188,000
Intune MECM SCCM Microsoft Defender Entra ID Windows PowerShell Zero Trust CI/CD Terraform AWS Azure Docker Kubernetes Prometheus Grafana PostgreSQL Python Go
Hybrid
Save

Lead Engineer - Security Architecture

Target

Brooklyn Park, MN 12 days ago $132,000$238,000
GCP Kubernetes Docker Python Go Ruby Java Cryptography NIST ISO/IEC 27001 CI/CD SIEM IAM Cloud Armor VPC Service Controls Organization constraints NextGen Firewall OPA Rego Vertex AI AWS Azure
Hybrid
Save

Lead Security Software Engineer

CME Group

Chicago, IL 12 days ago $119,900$199,800
AWS Kubernetes Terraform Python Java JavaScript Docker Jenkins Maven Git CloudFormation Ansible Bash CI/CD PostgreSQL Splunk CloudWatch DevSecOps CIS NIST_800 PCI HIPAA
Save

Lead Product Security Engineer

Johnson & Johnson

Remote (Us345 Ma Danvers - 22 Cherry Hill Dr, US) 13 days ago $94,000$151,800
ISO27001 SOC2 NIST Cybersecurity Framework HIPAA GDPR PKI HSMs TPMs Secure Enclave Integration SBOM Threat Modeling CI/CD PostgreSQL Python AWS Kubernetes
Remote
Save

Lead, PKI Security Engineer

Prudential Financial

Newark, NJ 15 days ago $133,600$220,400
Keyfactor Command Venafi EJBCA Digicert HashiCorp Vault AWS Azure Docker Kubernetes HSM appliances cloud KMS services Splunk CI/CD PKI architecture certificate lifecycle management monitoring tools containerization technologies
Save