Braintree - San Jose, CA
posted 10 days ago
Full-time - Mid Level
San Jose, CA
Personal and Laundry Services
About the position
The Technical Product Manager will lead application security initiatives at PayPal, focusing on enhancing the security posture of software products. This role involves collaborating with cross-functional teams to implement effective security measures, manage product backlogs, and drive strategic security initiatives aligned with business goals. The position requires a proactive approach to identifying and mitigating security risks while fostering a culture of security awareness within the organization.
Responsibilities
- Take ownership of enhancing security posture and protecting infrastructure, applications, systems, and data from cyber threats.
- Lead strategic security initiatives and large-scale projects, ensuring alignment with PayPal's overall security objectives and business goals.
- Provide guidance to cross-functional teams, assist in implementing effective security measures, and drive continuous improvement in security operations through process optimization, automation, and integration of security technologies.
- Serve as the product manager for application security initiatives, driving the vision, strategy, and roadmap to enhance the security posture of software products.
- Collaborate with stakeholders to understand security requirements and translate them into actionable user stories and acceptance criteria.
- Carry out buy vs buy assessments to determine the most suitable product for achieving business goals, while continually identifying opportunities for tool consolidation.
- Prioritize and manage the product backlog, ensuring alignment with business goals and security objectives.
- Work closely with development teams to define and refine security features, ensuring they are implemented according to industry best practices and standards.
- Coordinate with security architects and engineers to design and implement security controls for web applications, APIs, and related systems.
- Conduct risk assessments and threat modeling exercises to identify and mitigate security risks across the application stack.
- Define and track key performance indicators (KPIs) and metrics to measure the effectiveness of security controls and initiatives.
- Keep abreast of emerging security threats and technologies, providing guidance and recommendations to improve security posture.
Requirements
- Bachelor's degree in Computer Science, Information Security, or related field.
- 3-5 years of proven experience as a Product Owner, Product Manager or similar role, with a focus on application security or related field.
- Basic understanding of product development processes, user experience design principles, and Agile methodologies.
- Strong understanding of web application security principles, vulnerabilities, and mitigation techniques.
- Strong organizational skills and attention to detail, with the ability to manage multiple tasks and prioritize effectively.
- Familiarity with cloud platforms such as Kubernetes, AWS, and Azure, including security best practices for cloud-native applications.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
- Strong analytical and problem-solving abilities, with a proactive mindset towards identifying and addressing security risks.
Nice-to-haves
- Certifications such as Certified Scrum Product Owner (CSPO), Certified Information Systems Security Professional (CISSP), or Certified Secure Software Lifecycle Professional (CSSLP) are a plus.
Benefits
- Annual performance bonus or other incentive compensation
- Equity
- Medical, dental, and vision benefits
