Job Description:

Application Security Testing Manager

Collaborate with Innovative 3Mers Around the World

Choosing where to start and grow your career has a major impact on your professional and personal life, so it’s equally important you know that the company you choose to work at, and its leaders, will support and guide you. With a variety of people, global locations, technologies, and products, 3M is a place where you can collaborate with other curious, creative 3Mers.

This position provides an opportunity to transition from other private, public, government, or military experience to a 3M career.

The Impact You’ll Make in this Role

As an Application Security Testing Manager, you will lead the strategy, execution, and continuous improvement of application security practices across 3M’s global application portfolio. This role supports the secure enablement of the software development lifecycle (SDLC) by helping confirm that application risks are identified, prioritized, and addressed in alignment with enterprise risk management objectives.

Key Responsibilities:

Management
• Lead and mentor a team of application security engineers and analysts.
• Define and maintain the 3M application security testing strategy, roadmap, and operating model.
• Partner with application development, platform, and product teams to integrate security into SDLC and CI/CD pipelines.
• Oversee third-party application security vendors, tooling, and testing engagements.
• Establish governance, standards, and metrics for application security testing programs.

Technical
• Oversee application security testing programs including SAST, DAST, SCA, and manual code review.
• Promote secure design practices through threat modeling and architecture reviews.
• Guide remediation of application vulnerabilities in collaboration with development teams.
• Leverage enterprise tooling (e.g., SAST/SCA platforms, Azure DevOps, GitHub) to support secure development workflows.
• Monitor emerging application security threats and adjust controls accordingly.

Organizational
• Collaborate with vulnerability management, detection engineering, and incident response teams to align application risk handling.
• Communicate application security risk posture to leadership through dashboards and management reporting.
• Support audit, compliance, and regulatory activities by providing application security program evidence and metrics.
• Promote secure coding culture through training, standards, and developer engagement.

Your Skills and Expertise:

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, or related field (completed and verified prior to start)
• Five (5) years of experience in application security or secure software development in a private, public, government or military environment

​

Additional qualifications that could help you succeed even further in this role include:

• Strong knowledge of application security principles and SDLC integration
• Experience with OWASP Top 10, NIST, and secure design practices
• Proven leadership and stakeholder management skills
• Ability to translate technical risk into business impact
• Familiarity with cloud-native application architectures
• Certifications such as CISSP, CSSLP, or GWAPT are valued

Work location: Austin, TX

Relocation Assistance: Yes

Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).

Supporting Your Well-being

3M offers many programs to help you live your best life – both physically and financially. To ensure competitive pay and benefits, 3M regularly benchmarks with other companies that are comparable in size and scope.

Chat with Max

For assistance with searching through our current job openings or for more information about all things 3M, visit Max, our virtual recruiting assistant on 3M.com/careers.

Applicable to US Applicants Only:The expected compensation range for this position is $188,251 - $230,084, which includes base pay plus variable incentive pay, if eligible. This range represents a good faith estimate for this position. The specific compensation offered to a candidate may vary based on factors including, but not limited to, the candidate’s relevant knowledge, training, skills, work location, and/or experience. In addition, this position may be eligible for a range of benefits (e.g., Medical, Dental & Vision, Health Savings Accounts, Health Care & Dependent Care Flexible Spending Accounts, Disability Benefits, Life Insurance, Voluntary Benefits, Paid Absences and Retirement Benefits, etc.). Additional information is available at: https://www.3m.com/3M/en_US/careers-us/working-at-3m/benefits/.All US-based 3M full time employees will need to sign an employee agreement as a condition of employment with 3M. This agreement lays out key terms on using 3M Confidential Information and Trade Secrets. It also has provisions discussing conflicts of interest and how inventions are assigned. Employees that are Job Grade 7 or equivalent and above may also have obligations to not compete against 3M or solicit its employees or customers, both during their employment, and for a period after they leave 3M.Learn more about 3M’s creative solutions to the world’s problems at www.3M.com or on Instagram, Facebook, and LinkedIn @3M.Responsibilities of this position include that corporate policies, procedures and security standards are complied with while performing assigned duties.Safety is a core value at 3M. All employees are expected to contribute to a strong Environmental Health and Safety (EHS) culture by following safety policies, identifying hazards, and engaging in continuous improvement.Pay & Benefits Overview: https://www.3m.com/3M/en_US/careers-us/working-at-3m/benefits/3M does not discriminate in hiring or employment on the basis of race, color, sex, national origin, religion, age, disability, veteran status, or any other characteristic protected by applicable law.

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

3M Global Terms of Use and Privacy Statement

Carefully read these Terms of Use before using this website. Your access to and use of this website and application for a job at 3M are conditioned on your acceptance and compliance with these terms.

Please click on the following links and select the country where you are applying for employment to review the applicable Terms of Use (link here) and Privacy Policy (link here). Before submitting your application, you will be asked to confirm your agreement with the terms.