Senior Director, Product Security

Candidates must be experienced security leaders with a proven track record in building and scaling Product Security functions. A strong understanding of Application Security, including Bug Bounty, Vulnerability Management, and secure SDLC programs, is essential. Experience leading Data and Device Security initiatives and building Security Research teams is required. The role demands people leadership skills, including managing individual contributors and managers, providing feedback, and fostering career development, as well as the ability to hire security professionals. A strategic mindset with a focus on proactive risk reduction and enabling secure innovation, particularly with AI, is necessary. Experience in defining and driving company-wide security strategies, establishing metrics and reporting, and partnering with engineering, product, and security leadership is crucial. Familiarity with secure coding practices, threat modeling, security reviews, code analysis, CI/CD pipeline integration, and shifting security left is expected. Experience overseeing vulnerability management, pentesting, and vulnerability disclosure programs, including rapid triage and remediation, is required. Knowledge of data security, cryptography, cryptographic libraries, codebase secrets management, and device security, including security libraries and frameworks, is necessary. Participation in on-call rotations and support during incident management processes is part of the role.