Sr. Manager, Product Security

About The Position

Requirements

• Up to 7 years of progressive experience in information security, with at least 3 years focused on product or application security in a product-driven company.
• 3+ years of people management experience leading security engineering teams.
• Deep technical fluency in AWS and at least one or more of: IoT/embedded security, mobile security (iOS/Android), API security, and secure SDLC practices.
• Proven ability to perform and lead threat modeling, security architecture reviews, and vulnerability assessments at scale.
• Track record of building and scaling product security programs from the ground up—or dramatically raising the bar in an existing one.
• Strong communicator who can translate complex security risk to both technical engineers and non-technical executives with equal clarity.
• Experience working in an Agile/DevSecOps environment; comfortable with CI/CD security tooling (SAST, DAST, SCA, container scanning).

Responsibilities

• Own and drive the product security roadmap, partnering with the CISO to define and evolve the program.
• Establish security standards/guidelines for IoT, mobile, cloud, data, and third-party integrations, while staying ahead of emerging threat trends.
• Lead, mentor, grow, and recruit top product security engineering talent.
• Foster a no-ego culture of collaboration where security is everyone’s responsibility.
• Embed security into the SDLC by leading threat modeling, architecture reviews, and championing security automation and tooling.
• Drive a vulnerability management program (firmware, mobile, APIs, cloud) from identification through remediation.
• Oversee penetration testing and red team exercises, translating findings into actionable engineering improvements.
• Collaborate with Engineering and Product to incorporate security throughout the product lifecycle, serving as a trusted advisor to translate risk into business impact.
• Represent Product Security in cross-functional planning, architecture forums, and executive briefings.
• Partner with Legal and Compliance to meet applicable regulatory requirements and industry standards.
• Protect customer trust by ensuring the highest security standards, and coordinating responsible disclosure and external vulnerability reporting.
• Contribute to customer-facing security communications when incidents or significant findings require transparency.

Benefits

• A mission- and values-driven culture and a safe, inclusive environment where you can build, grow and thrive
• A comprehensive total rewards package that supports your wellness and provides security for SimpliSafers and their families
• Free SimpliSafe system and professional monitoring for your home.
• Employee Resource Groups (ERGs) that bring people together, give opportunities to network, mentor and develop, and advocate for change.