Manager, Product Security

Summary

Join Chainguard as their Director, Product Security, a deeply technical leadership role requiring coaching, coding, reviewing, architecting, and hands-on problem-solving. Lead and mentor a team of product security engineers, providing guidance on secure architecture, code reviews, and threat modeling. Serve as a technical backbone, offering guidance, reviewing complex issues, and collaborating with engineers and product teams. Drive initiatives such as secure SDLC improvements and DevSecOps integrations. Collaborate across various teams to build strong partnerships. Act as a calm, technical leader during security incidents, helping diagnose, prioritize, and resolve issues. Elevate security standards by designing playbooks, building tools, and spreading security knowledge across the company.

Requirements

• Strong technical foundation — you’ve worked in software or security engineering roles (10+ years), and you’re still hands-on, able to dig into code, architecture, and tooling
• Experience leading secure coding and DevSecOps programs (SCA, SAST, CNAPP, threat modeling, the works)
• Deep understanding of Agile and CI/CD environments, and how to integrate security into fast-moving product teams without slowing them down
• Programming experience across languages like Python, Node.js, C#, .NET, JavaScript, Go, Ruby, GraphQL, RESTful APIs (no need to be a wizard in all, but you can hold your own)
• Expertise in secure code reviews, business logic assessments, cloud security, and frameworks like OWASP, NIST, FedRAMP, ISO and you can explain why they matter in real-life situations
• A growth mindset: you’re proactive, always learning, and stay ahead of emerging threats and technologies

Responsibilities

• Lead the team. You’ll manage, mentor, and develop a team of product security engineers, guiding them on everything from secure architecture to code reviews to threat modeling
• Be a technical backbone. You’re jumping into the work, offering technical guidance, reviewing complex issues, and collaborating closely with engineers and product teams
• Own major initiatives. You’ll drive everything from secure SDLC improvements to DevSecOps integrations, ensuring our products are locked down before they ever hit production
• Collaborate. You’ll work across Product, Engineering, and leadership teams building strong, trusted partnerships
• Be the cool-headed expert. When security incidents escalate, you’re the calm, technical leader who helps diagnose, prioritize, and resolve
• Elevate the bar. You’ll help design playbooks, build tools, and spread security knowledge across the company, so everyone knows how to build safer, smarter software

Benefits

• Flexible & Remote-First Culture: Work remotely with team meetup opportunities, bi-annual destination summits, and a $400 monthly stipend for coworking spaces, phone and internet costs
• Our Approach to Equity: Receive stock options upon hire and promotion. Plus, you can participate in secondary offerings and have 10 years to exercise your options (yes, you read that correctly: 10 years!)
• 100% Covered Health Insurance: We cover 100% of your health, vision and dental insurance premiums for you and your dependents. Nothing comes out of your paycheck
• ��� Flexible Time Off: Take the time you need – to do our best work, we need to recharge and reset
• 18 Weeks Paid Parental Leave: We offer 18 weeks for birthing parents and 12 weeks for non-birthing parents, with the option to use it all at once or throughout your child's first year