The Ampin App
deep insights into the Atlassian community

The Senior Manager of Application Security leads a global team to embed security into Miro’s SDLC—partnering with product and engineering to mitigate risk while accelerating developer velocity through secure-by-default design, tooling, vulnerability management, offensive testing, and developer engagement, aligned with the AMPED framework and AI-driven development. The role defines and operationalizes Miro’s application security strategy across Discover, Define, Deliver, guiding a multidisciplinary team across regions to embed security from ideation and threat modeling through secure delivery pipelines and post-release monitoring, while supporting Agentic AI workflows. Key duties include leading security engineers, coordinating cross-functional initiatives, integrating security into CI/CD and infrastructure-as-code, overseeing bug bounty and third-party testing, building a Security Champions program, guiding AI-tool adoption, and delivering patterns, reference architectures, and KPIs for secure development and governance. Requirements are 10+ years in software/security with 3+ years of technical leadership, deep expertise in threat modeling and SSDLC, experience with governance frameworks (ISO 27001, SOC 2, OWASP SAMM), familiarity with AI/LLM tooling and AWS, and the ability to manage distributed teams and communicate with technical and business stakeholders. Miro emphasizes collaboration, growth, and belonging with a global benefits package, a diverse and inclusive culture, and information about location-specific benefits and recruitment privacy.

The Senior Manager of Application Security at Miro leads a global team to embed security across the SDLC, partnering with product and engineering to mitigate risk while accelerating developer velocity, with a focus on secure-by-default design, automated tooling, vulnerability management, offensive testing, and AI-enabled workflows within the AMPED framework. The role defines and operationalizes Miro’s application security strategy, oversees a multidisciplinary team across regions, and integrates security from early ideation through secure delivery pipelines and post-release monitoring, including guiding AI-driven development tooling and Agentic AI workflows. Key responsibilities include leading security engineers, coordinating cross-functional initiatives, integrating security into Discover-Define-Deliver, shaping Secure SDLC practices, managing bug bounty and third-party testing, and scaling the Security Champions program and security tooling adoption. Requirements include 10+ years in software/security, 3+ years of technical leadership, deep threat modeling expertise (STRIDE/PASTA), SSDLC experience, governance familiarity (ISO 27001, SOC 2, GDPR), familiarity with AI/LLM tooling, AWS experience, and the ability to lead distributed teams. The role emphasizes collaboration, clear communication, data-driven decision-making, mentoring, alignment with regulatory requirements, and participation in Miro’s culture and benefits, underpinned by a commitment to diversity and belonging.

The Senior Manager of Application Security leads a global team responsible for embedding security into Miro’s Software Development Lifecycle—from concept to customer impact—through secure-by-default design support, automated tooling, vulnerability management, offensive testing, and developer engagement, aligned with AMPED Ways of Working and evolving AI workflows. You will define and operationalize the application security strategy, leading a multidisciplinary team that collaborates with product, engineering, and design across regions to embed security from ideation through threat modeling, risk reviews, secure delivery pipelines, and post-release monitoring and testing. Responsibilities include driving security integration into Discover, Define, Deliver, shaping Secure SDLC practices, overseeing CI/CD and infrastructure-as-code security, bug bounty and third-party testing, building a Security Champions program, and guiding AI-augmented tooling and Agentic AI workflows with policy-driven automation. Qualifications include 10+ years in software/security, 3+ years of leadership, deep threat modeling and SSDLC experience, familiarity with governance frameworks (ISO 27001, SOC 2, GDPR), AI/LLM tooling, and experience with AWS and microservices, plus strong cross-functional communication and distributed-team management. Why join: you’ll influence how innovation and trust scale at Miro across the AMPED framework, empower developers with secure tooling and AI-driven workflows, and enjoy a global benefits package in a diverse, collaborative environment that supports growth.

The Senior Manager of Application Security at Miro leads a global team responsible for embedding security into the SDLC, enabling secure-by-default development through secure design support, tooling, vulnerability management, and developer engagement, while aligning with AMPED and evolving AI/agentic workflows. You will define and operationalize Miro’s application security strategy, collaborating with Product, Engineering, and Design to surface security early via threat modeling and risk reviews, and embedding security across CI/CD, infrastructure-as-code, and post-release monitoring. Responsibilities include leading a distributed team of security engineers and offensive specialists, managing bug bounty and third-party testing, building a Security Champions program, and guiding secure adoption of AI-augmented tools and agentic workflows with governance. Requirements include 10+ years in software/security, 3+ years in technical leadership, expertise in threat modeling (STRIDE, PASTA) and SSDLC, familiarity with governance frameworks (ISO 27001, SOC 2, GDPR), experience with AI/LLM tooling, AWS, and managing distributed teams with strong cross-functional communication. Why join: you’ll influence how innovation and trust scale within AMPED, work on AI-driven development and secure workflows, and receive global benefits like equity, wellbeing support, and an L&D stipend in a diverse, collaborative environment.

The Senior Manager of Application Security at Miro leads a global team responsible for embedding security into the Software Development Lifecycle—from concept to customer impact—working with product and engineering to mitigate risk while accelerating developer velocity and innovation. The role focuses on enabling secure-by-default development through secure design support, automated tooling, vulnerability management, offensive testing, and developer engagement, and it supports AI-enabled development and Agentic AI workflows within the Discover, Define, Deliver lifecycle and the AMPED framework. You will define and operationalize Miro’s application security strategy, lead a multinational team of security engineers and offensive specialists, and integrate security across all phases of the product lifecycle, including threat modeling, design reviews, CI/CD, infrastructure-as-code, and post-release monitoring. Responsibilities include running bug bounty and third-party testing programs, building and scaling the Security Champions program, guiding secure adoption of AI-assisted development tools, and providing patterns, reference architectures, and KPIs while ensuring regulatory alignment with ISO 27001, SOC 2, GDPR, and emerging AI regulations. Requirements include 10+ years in software/security with 3+ years of leadership, expertise in threat modeling and SSDLC, experience with offensive security, governance frameworks, familiarity with AI/LLM tooling and AWS, and strong collaboration, communication, and data-driven decision-making, plus a supportive culture and global benefits at Miro.

The Senior Manager of Application Security leads a global team to embed security into Miro’s SDLC—from concept to customer impact—partnering with product and engineering to mitigate risk while accelerating developer velocity, with a focus on secure-by-default design, automated tooling, vulnerability management, offensive testing, and developer engagement, aligned with the AMPED framework and AI-enabled workflows. The role defines and operationalizes Miro’s application security strategy, leading a multidisciplinary team across regions and embedding security in all product lifecycle phases—from discovery and threat modeling to design reviews, secure delivery pipelines, and post-release monitoring—while guiding secure adoption of AI-driven development tools and Agentic AI workflows. Responsibilities include mentoring security engineers, driving cross-functional initiatives, integrating security into Discover-Define-Deliver, shaping SSDLC practices within CI/CD and infrastructure-as-code, overseeing bug bounty and third-party testing, building a Security Champions program, and defining KPIs for secure development adoption and vulnerability remediation. The ideal candidate has 10+ years of software/security experience, 3+ years of technical leadership, deep expertise in threat modeling and risk assessment, mastery of SSDLC, experience running security programs and champions, governance familiarity (ISO 27001, SOC 2, GDPR), familiarity with AI/LLM tooling and AWS, and the ability to manage distributed teams and communicate with stakeholders. Miro highlights a developer-aligned, collaborative culture with global benefits (equity, wellbeing, equipment allowance, L&D stipend), emphasizes diversity and inclusion, and invites applicants who want to scale innovation with trust across the AMPED operating model.

- The Senior Manager of Application Security leads a global team to embed security into Miro’s SDLC—working with product and engineering to mitigate risk while accelerating developer velocity—and focuses on secure-by-default design, automated tooling, vulnerability management, offensive testing, and developer engagement, aligned with the Discover, Define, Deliver lifecycle and AMPED Ways of Working; they will also help adapt to AI-supported development and Agentic AI workflows. - You will define and operationalize Miro’s application security strategy across multiple regions, lead a multidisciplinary team of security engineers and offensive specialists, and embed security across all phases of the product lifecycle from discovery and threat modeling to secure delivery pipelines and post-release monitoring. - Responsibilities include driving security integration into CI/CD, infrastructure-as-code, and developer tooling; overseeing bug bounty and third-party testing; building and scaling the Security Champions program; guiding secure adoption of AI-augmented development tools and agentic workflows; and providing patterns, reference architectures, and KPIs for secure development. - Requirements include 10+ years in software/security with 3+ years of leadership, expertise in threat modeling (STRIDE/PASTA) and SSDLC, experience running Security Champions programs and offensive security, familiarity with ISO 27001, SOC 2, GDPR, OWASP SAMM, knowledge of AI/LLM tooling and AWS, and ability to manage distributed teams and communicate with stakeholders. - About Miro: a visual workspace with 100M+ users and 250,000 companies, 1,600+ employees in 13 hubs, emphasizing collaboration, inclusion, and belonging; offers global benefits including equity, wellbeing, a WFH equipment allowance, and an annual Learning & Development stipend, with location-specific variations and a Recruitment Privacy Policy.

The Senior Manager of Application Security leads a global team to embed security into Miro’s SDLC—from concept to customer impact—collaborating with product and engineering to mitigate risk while accelerating developer velocity and innovation. The role focuses on enabling secure-by-default development via secure design support, automated tooling, vulnerability management, offensive testing, developer engagement, and alignment with AMPED Ways of Working, the AMPED Operating Model, and evolving AI/Agentic workflows. You will define and operationalize Miro’s application security strategy, lead threat modeling and risk reviews, shape Secure SDLC practices, integrate security into CI/CD and infrastructure-as-code, oversee bug bounty and third-party testing, and scale a Security Champions program across regions while guiding AI-enabled developer tooling. Requirements include 10+ years in software/security, 3+ years of leadership, extensive threat modeling and SSDLC expertise, experience with offensive security and governance frameworks (ISO 27001, SOC 2, GDPR), familiarity with AI/LLM tooling, AWS, API/microservices, and strong cross-functional communication. Miro emphasizes collaboration, learning, and inclusion, offers benefits such as equity, wellbeing support, a WFH equipment allowance, and an L&D stipend, and describes its mission and diverse, globally distributed culture with recruitment privacy information.

The Senior Manager of Application Security at Miro leads a global team that embeds security into the SDLC—from concept to post-release—by partnering with product and engineering to enable secure-by-default development, secure design support, tooling, vulnerability management, offensive testing, and developer engagement, aligned with the Discover-Define-Deliver lifecycle and the AMPED Ways of Working. The role defines and operationalizes Miro’s application security strategy, guiding a multidisciplinary team across regions to integrate security into early ideation, threat modeling, design reviews, secure pipelines, and ongoing testing, while supporting AI-driven development tooling and Agentic AI workflows. Key responsibilities include leading security engineers, coordinating cross-functional initiatives, integrating security into CI/CD and infrastructure-as-code, overseeing bug bounty and third-party testing, scaling the Security Champions program, and enabling secure adoption of AI-augmented tools with policy-driven autonomous agents. Requirements include 10+ years in software/security, 3+ years of technical leadership, extensive threat modeling experience, SSDLC expertise, governance familiarity (ISO 27001, SOC 2, OWASP SAMM), experience with AI/LLM tooling, AWS, and API-driven microservices, and demonstrated ability to manage distributed teams. You are expected to be developer-aligned, an exceptional communicator, natural collaborator, pragmatic problem-solver, data-driven, and a passionate mentor, thriving in a fast-paced environment while driving collaboration and continuous improvement within AMPED and the broader privacy/compliance context.

- The Senior Manager of Application Security at Miro leads a global team focused on embedding security into Miro’s SDLC—from concept to code to customer impact—working closely with product, engineering, and platform teams to enable secure-by-default development and faster developer velocity. - The role defines and operationalizes the application security strategy, supervising application and offensive security engineers, guiding threat modeling, secure design reviews, secure delivery pipelines, and ongoing post-release testing, while supporting AI-driven development and Agentic AI workflows. - Key responsibilities include integrating security into the Discover, Define, Deliver lifecycle via the AMPED framework, driving secure CI/CD and infrastructure-as-code, overseeing bug bounty and third-party testing, building a Security Champions program, and defining KPIs while ensuring privacy, legal, and regulatory compliance (ISO 27001, SOC 2, GDPR, and emerging AI regulations). - Requirements include 10+ years in software/security, 3+ years of technical leadership, deep expertise in threat modeling and SSDLC, experience with offensive security and governance frameworks, familiarity with AI/LLM tooling, AWS, and the ability to lead distributed teams and communicate with stakeholders. - The role offers a growth-focused, collaborative environment at Miro, with a global benefits package and a commitment to diversity and belonging as part of the company’s mission to empower teams to create the next big thing.

Miro's Cloud Security team is a hybrid function embedded in Cloud Engineering & Operations, responsible for core security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to bolster the cloud platform’s security posture. The role is a seasoned Site Reliability Engineer who will design, implement, and maintain scalable security controls for the AWS/EKS platform, automate deployment of security tooling, and ensure reliability while allowing development velocity. You will act as a consultant and SME for infrastructure teams, collaborate on on-call rotations to respond to incidents, and continuously improve observability to identify misconfigurations or vulnerabilities at scale. Requirements include extensive Kubernetes administration and security experience, strong AWS security services and networking knowledge, Infrastructure-as-Code with Terraform and CI/CD with GitHub, proficiency in Python or Go, and experience with Secrets Management (HashiCorp Vault, ESO); Privileged Access Management experience is a significant advantage, with a solid SRE/DevOps background. What’s in it for you includes equity, wellbeing benefits, a WFH equipment allowance, and an annual Learning & Development stipend, plus a diverse and collaborative team, with location-specific benefits varying and recruitment privacy policy applying.

Miro's Cloud Security team is a hybrid security and cloud‑engineering function within Cloud Engineering & Operations, responsible for capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to bolster the cloud platform's security. The role is a seasoned Site Reliability Engineer who will design, implement, and maintain scalable security controls for the AWS/EKS platform using Infrastructure-as-Code, automate deployment of security capabilities, and ensure the reliability, availability, and performance of critical services. You will act as a consultant to infrastructure teams to improve security posture with a strong emphasis on Kubernetes, participate in on-call incident response, and continuously improve observability to identify misconfigurations or vulnerabilities at scale. Qualifications include extensive Kubernetes administration and security experience in AWS, Terraform and GitHub CI/CD expertise, proficiency in Python or Go, familiarity with Secrets Management (e.g., HashiCorp Vault), and a background in SRE/DevOps; Privileged Access Management experience is a plus. Miro offers a global benefits package (equity, wellbeing, work-from-home equipment allowance, and an annual Learning & Development stipend), highlights belonging and inclusion, and shares information about life at Miro and its Recruitment Privacy Policy.

Miro's Cloud Security team is a hybrid unit embedded in the Cloud Engineering & Operations organization, responsible for security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to support the cloud platform. The role is for a seasoned Site Reliability Engineer to design, implement, and operate scalable security controls for AWS/EKS, helping move toward a unified cloud infrastructure with security as a first-class consideration. You will design and automate security tooling via Infrastructure-as-Code (Terraform) and CI/CD (GitHub), ensure reliability and performance of critical security services, advise infrastructure teams on Kubernetes security, participate in on-call incident response, and improve observability to identify misconfigurations or vulnerabilities at scale. Requirements include extensive Kubernetes administration and security experience, strong AWS-native security and networking knowledge, proficiency with Terraform and GitHub-based CI/CD, programming ability in Python or Go, experience with Secrets Management (e.g., Vault), and ideally Privileged Access Management experience. Miro offers global benefits (equity, wellbeing, equipment allowance, and an L&D stipend), values diversity and belonging with location-specific variations, and provides information about Miro's mission and recruitment privacy.

Miro's Cloud Security team is a hybrid function embedded within Cloud Engineering & Operations, responsible for core security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP, and it champions security as a first-class part of a unified cloud platform. The role seeks an experienced Site Reliability Engineer to design, implement, and automate security controls for the AWS/EKS stack using Infrastructure-as-Code, while ensuring reliability, availability, and performance of critical security services. Key responsibilities include deploying security capabilities (WAF, Secrets Management, Cloud Governance tooling), acting as a security consultant for infrastructure teams with a focus on Kubernetes, participating in on-call incident response, and improving observability to identify misconfigurations or vulnerabilities at scale. Requirements include extensive Kubernetes administration and security experience in AWS-native environments, Terraform and GitHub-based CI/CD with strong coding (Python or Go), knowledge of AWS IAM/WAF/Secrets Manager and cloud networking, experience with Secrets Management solutions (HashiCorp Vault or ESO), and a background in SRE/DevOps; privileged access management experience is a plus. Miro offers a global benefits package (equity, wellbeing, WFH equipment allowance, Learning & Development stipend), and a culture that values belonging, diversity, and collaboration, with location-specific benefits and a Recruitment Privacy Policy.

Miro's Cloud Security team blends security and cloud engineering within Cloud Engineering & Operations, operating key capabilities like Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to promote best practices across the cloud. The role seeks a seasoned Site Reliability Engineer to secure, scale, and improve the reliability of Miro's core security capabilities on a large AWS/EKS platform, designing automated, secure solutions that let development move fast. Responsibilities include designing, implementing, and maintaining scalable security controls using Infrastructure-as-Code (Terraform), automating deployment of WAF, Secrets Management, and Cloud Governance tooling, ensuring reliability of security services, and acting as a Kubernetes-focused consultant while joining on-call incident response and improving observability. Requirements cover extensive Kubernetes administration and security, deep AWS-native security knowledge (IAM, WAF, Secrets Manager) and cloud networking, IaC with Terraform and CI/CD (GitHub), programming in Python or Go, and experience with Secrets Management solutions (HashiCorp Vault, ESO), with Privileged Access Management experience as a bonus. About Miro: the company offers a global benefits package (equity, wellbeing, WFH setup allowance, and Learning & Development stipend), emphasizes belonging and inclusion, and highlights its mission to empower teams, diverse and collaborative culture, and recruitment privacy policy.

Miro's Cloud Security team is a hybrid function blending security and cloud engineering, embedded in Cloud Engineering & Operations, and responsible for core cloud security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP. The role is a seasoned Site Reliability Engineer who will design, implement, and automate security controls for Miro's AWS/EKS platform using Infrastructure-as-Code, ensuring security, reliability, and scalability while enabling development speed. Responsibilities include automating deployment of WAF, Secrets Management, and Cloud Governance tooling; ensuring the reliability of critical security services; acting as a Kubernetes-focused consultant to infrastructure teams; participating in on-call rotations; and improving observability to identify misconfigurations or vulnerabilities at scale. Required experience includes extensive Kubernetes administration and security, strong AWS-native security and networking knowledge (IAM, WAF, Secrets Manager), Terraform and CI/CD pipelines, programming in Python or Go, and familiarity with Secrets Management solutions; a background in SRE/DevOps is preferred. Miro is a visual workspace for distributed teams serving over 100M users and 250,000 companies, offers global benefits (equity, wellbeing, equipment allowance, and an L&D stipend) and a diverse, inclusive culture with location-specific details on the Global Benefits board, and upholds a Recruitment Privacy Policy.

Miro's Cloud Security team is a hybrid function embedded within the Cloud Engineering & Operations organization, overseeing security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to strengthen the cloud security posture. The role seeks a seasoned Site Reliability Engineer to secure a large-scale, rapidly growing cloud platform, responsible for the security, reliability, and scalability of core security capabilities and for delivering automated, trusted security solutions. You will design, implement, and maintain scalable security controls for AWS/EKS using Infrastructure as Code, automate the deployment of WAF, Secrets Management, and Cloud Governance tooling, ensure the reliability and performance of security services, and act as a subject matter expert to improve security posture with a strong focus on Kubernetes. Requirements include extensive Kubernetes administration and security experience, strong AWS-native security knowledge, Terraform and CI/CD pipelines (GitHub), AWS IAM/WAF/Secrets Manager, cloud networking, programming in Python or Go, experience with vault-style secrets management, and a solid SRE/DevOps background. Miro offers a global benefits package (equity, wellbeing support, WFH equipment allowance, and an L&D stipend), a diverse and inclusive culture focused on collaboration and growth, and a mission-driven environment serving over 100 million users across 13 hubs.

Miro's Cloud Security team is a hybrid unit within Cloud Engineering & Operations that oversees security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP. The role is a seasoned Site Reliability Engineer who will secure a large-scale AWS/EKS platform, designing automated, reliable, and secure solutions to enable rapid development while protecting the global user base. Responsibilities include designing, implementing, and maintaining scalable security controls via Infrastructure-as-Code (Terraform), automating deployment of WAF, Secrets Management, and Cloud Governance tooling, ensuring the reliability of security services, acting as a subject matter expert for Kubernetes, and improving observability to detect misconfigurations or vulnerabilities at scale, including on-call incident response. Required qualifications include extensive Kubernetes administration and security experience, strong AWS security and cloud-native design skills, proficiency with Terraform and GitHub CI/CD, knowledge of IAM, WAF, Secrets Manager, cloud networking, programming in Python or Go, experience with Secrets Management solutions and privileged access management, and a solid SRE/DevOps background. Benefits include a global package with equity, wellbeing benefits, a work-from-home equipment allowance, and an annual Learning & Development stipend, alongside a diverse, collaborative culture at Miro and location-specific benefits; recruitment privacy is observed.

Miro's Cloud Security team is a hybrid security and cloud engineering function embedded in Cloud Engineering & Operations, responsible for security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP. They are hiring a seasoned Site Reliability Engineer to secure a large-scale, rapidly growing AWS/EKS cloud platform, combining SRE skills with cloud security to build automated, reliable, and secure solutions. Responsibilities include designing and maintaining scalable security controls via Infrastructure-as-Code, automating the deployment of WAF, Secrets Management, and Cloud Governance tooling, ensuring the reliability of security services, advising infrastructure teams on security with a Kubernetes focus, and participating in on-call incident response while improving observability. Requirements include extensive Kubernetes administration and security experience, deep expertise in AWS-native security, Terraform and GitHub CI/CD proficiency, strong knowledge of AWS IAM/WAF/Secrets Manager and cloud networking, programming in Python or Go, experience with Secrets Management (HashiCorp Vault, ESO), Privileged Access Management as a plus, and a background in SRE/DevOps. Perks include global benefits such as equity, wellbeing support, a WFH equipment allowance, and an L&D stipend, along with a diverse, collaborative culture and information about Miro's mission, inclusion efforts, and privacy policies.

Miro’s Cloud Security team is a hybrid function embedded within Cloud Engineering & Operations, handling security capabilities such as Cloud Identity, Web Application Firewall, Cloud Governance, Secrets Management, and CNAPP to promote best practices across the cloud infrastructure. The role seeks a seasoned Site Reliability Engineer to secure a large-scale AWS/EKS platform, responsible for the security, reliability, and scalability of core security capabilities and for building automated, secure solutions that enable fast development. Responsibilities include designing and maintaining scalable security controls via Infrastructure-as-Code, automating deployment of tooling like WAF, Secrets Management, and Cloud Governance, ensuring reliability of security services, and acting as a subject-matter expert to improve infrastructure security with a Kubernetes focus, plus on-call incident response and enhanced observability. Requirements cover extensive Kubernetes administration and security in AWS, Terraform and CI/CD (GitHub) proficiency, knowledge of AWS security services (IAM, WAF, Secrets Manager) and cloud networking, programming in Python or Go, experience with Secrets Management (e.g., Vault), and a solid SRE/DevOps background focused on production reliability. Benefits include equity, wellbeing support, a work-from-home equipment allowance, and an annual Learning & Development stipend, alongside Miro’s emphasis on belonging, collaboration, and a global, diverse team (with location-specific details and recruitment privacy noted).