Technical security orchestration: Partner with Security Engineering, Risk, Product, and Infrastructure teams to bake security and compliance "into the kiln" rather than painting it on at the end.
Help design risk solutions: Dive deep into the security stack to not only identify execution blockers but actively architect the technical solutions to implement them.
Help architect our security mission: Define the technical milestones for high-stakes initiatives like Zero Trust and IAM overhauls, translating a broad vision into a precise execution roadmap.
Drive high-velocity operations: Lead agile security sprints that harmonize vulnerability remediation and threat detection with feature development, ensuring security moves at the speed of innovation.
Optimize the "rhythm of the business" by automating manual GRC workflows, eliminating manual friction and moving us toward Compliance as Code.
Translate telemetry into narrative: Distill complex security data and telemetry into compelling risk narratives for leadership while maintaining high-fidelity technical depth for engineers.
Optimize the defensive roadmap: Command long-term strategic planning by aligning cloud infrastructure costs and security tooling with the company’s overarching defensive goals.
Cultivate organizational excellence: Uphold a relentless culture of focus and accountability, identifying systemic inefficiencies and driving impact through superior tooling and process engineering.

Requirements

Bachelor's degree in CS, Engineering, or a related field. Crucially, you likely started your career as a Security Engineer, Systems Administrator, or Analyst.
TPM professional for 5+ years, specifically managing high-stakes security, privacy, or infrastructure initiatives.
You have a deep understanding of the Security SDLC and experience navigating cloud-native service architectures (AWS/GCP) with a focus on security guardrails.
Experience translating regulatory frameworks (e.g., SOC2, ISO 27001, FedRAMP, or GDPR) into concrete technical requirements that engineers can actually execute.
A proven ability to "go deep." You are comfortable looking at architectural diagrams, API docs, or cloud configurations to find the root cause of a program delay.
Exceptional communication skills with a knack for explaining the "why" behind a security control to a developer and the "how" of a technical fix to an auditor.
Strong ability to leverage data—from vulnerability scanners to Jira velocity—to tell a story and drive cross-functional decision-making.

Benefits

A great 401(k) plan: Our own! Our 401(k) includes a dollar-for-dollar employer match up to 4% of compensation (immediately vested) and $0 plan fees
Top-of-the-line health plans, as well as dental and vision insurance
Competitive time off and parental leave
Addition Wealth: Unlimited access to digital tools, financial professionals, and a knowledge center to help you understand your equity and support your financial wellness
Lyra: Enhanced Mental Health Support for Employees and dependents
Carrot: Fertility healthcare and family forming benefits
Candidly: Student loan resource to help you and your family plan, borrow, and repay student debt
Monthly work-from-home stipend; quarterly lifestyle stipend
Engaging team-building experiences, ranging from virtual social events to team offsites, promoting collaboration and camaraderie.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Security SDLCcloud-native service architecturesAWSGCPvulnerability remediationthreat detectionCompliance as Coderegulatory frameworksAPI documentationcloud configurations

Soft Skills

exceptional communicationorganizational excellencefocusaccountabilitycross-functional decision-makingnarrative translationsystemic inefficiency identificationtechnical storytellingleadershipagile management