This page contains the different roles within the App Sec Team path. Choose the relevant role you want to learn about. You can also enter the “Professional Path” (coming soon) to access the relevant skills and resources. 🔙
Support security awareness and training efforts.
Starts by working under supervision, and requires a certain level of guidance from team members / direct manager.
Be a proactive enabler not a blocker.
Able to make a small, but consistent impact on the specific tasks level inside of the team.
Support security awareness and training efforts.
Relates to our culture and proactively tries to practice it.
End-to-end responsibility for monday’s bug bounty program.
Starts by working under supervision, and requires a minimal level of guidance from team members / direct manager.
Be a proactive enabler not a blocker.
Able to consistently make sure their tasks are prioritized based on the team or company goals.
Strong cooperation with development teams on features, vulnerabilities, security tools, and more.
Familiar with the culture and is able to communicate it and act according to it.
Provide guidance to junior-level security engineers. Responsible for troubleshooting production security issues. Lead production security incidents.
Execute independently – end-to-end ownership of tasks.
Be a proactive enabler not a blocker.
Project focal point, leads a project to completion whilst monitoring data to ensure impact is achieved.
Work together with cross Business Unit teams (Engineering, DevOps, Legal & Privacy) on executing standardized security solutions and integrations.
Familiar with the culture and is able to communicate it and act according to it.
End-to-end management and leadership of DevOps processes, working with various Cloud infrastructures, writing complex scripts, etc. Define security best practices in for organization tasks. Work together with cross Business Unit teams on executing standardized security solutions and integrations. Partake in inner sourcing initiatives within the organization.
Full end-to-end ownership on projects and processes, as well as a focal point to all complex issues in his domain, in the goal of promoting domain/organization’s KPIs.
Has ownership over critical verticals in the security domain, accross the organization.
Full AppSec domain ownership. Leading all the aspects of their domain – execution, planning, quality – for various aspects owned by them and by other team members.
Lead the communication regading cross-domain projects and processes.
Well established with the company culture and values and able to identify and realign misalignments.
Impacts other domains on the day to day basis, a go to person in various areas in the organization, drives cross company efforts.
Holds the complexity of either multiple domains with a common area, or a domain with deep or very high complexity. Enabler of key projects, champion of secure architecture and security processes.
Integral part in defining the group’s technological vision and the company solutions’ architecture.
Consistent unique impact through application security.
Stakeholders management – can effectively communicate and set expectations with multiple stakeholders across the organization over a predefined goal.
Drives the monday culture within their group, by their day to day actions and behaviors. Being a role model to others.
Partner with the team for prioritization, planning, tracking, and progress reporting. Grow the team by hiring members with a balanced set of expertise and skills. Monitoring security issues in the organization.
Works independently on issues of diverse scope under a general definition of the requirements of the role. Full E2E ownership on projects and processes, as well as a focal point to all complex issues in his domain, in the goal of Defining domain/organization’s KPIs.
Holds the entire team complexity from end-to-end. Can provide solutions and guidance on all aspects within the domain. Typically leads an entire domain within a group, typically up to 6 engineers.
n/a
Keep all team members aligned with others work by creating sharing environment. Establish trust & honesty in personal communication channels.
Promotes monday’s culture in their day to day actions and decisions, sets an example in their actions that promotes our core values and principles.