Product Delivery Manager - Application Security

Drive secure product delivery at scale across a multi-service vulnerability management platform.

Lead end-to-end execution, manage complex dependencies, and ensure operational excellence while bridging security engineering and product delivery disciplines.

As a Product Delivery Manager in Application Security within Cybersecurity & Technology Controls, you enhance and optimize the way security products are delivered across the firm.

You lead delivery across multiple platform services and feature teams, interpreting security findings, aligning stakeholders-including Vulnerability Management Operations, Cyber Operations, Penetration Testing, and Red Team partners-and creating solutions that enable secure, compliant implementations at pace.
Job Responsibilities


* Lead end-to-end product delivery processes across multiple platform services, including intake, dependency management, release management, product operationalization, delivery feasibility decision-making, and product performance reporting, while escalating opportunities to improve efficiencies and functional coordination


* Lead change management activities across functional partners, ensuring adherence to the firm's risk, controls, compliance, and regulatory requirements while facilitating effective communication and timely resolution of issues among technical and business stakeholders


* Manage timelines, dependencies, and blockers across cross-functional feature teams, ensuring adequate resourcing and liaising with stakeholders to interpret vulnerability scan results, software composition analysis findings, and application security risk scenarios that inform delivery priorities and roadmap decisions


* Govern key performance indicators to assess product delivery success and security compliance, applying data analytics to monitor delivery performance and inform process improvements

Required Qualifications, Capabilities, and Skills


* 5+ years of experience or equivalent expertise in product delivery, release management, or technical program management, with exposure to security engineering, vulnerability management, compliance, or DevSecOps domains


* Demonstrated ability to execute operational management and change readiness activities with a proven track record of implementing continuous improvement processes


* Ability to interpret technical security findings (vulnerability scans, software composition analysis, application security assessments) and translate them into delivery plans and risk-informed decisions


* Experience in product or platform-wide release management, in addition to deployment processes and strategies

Preferred Qualifications, Capabilities, and Skills


* Relevant certifications (e.g., CISSP, CCSP, AWS Certified Security Specialty, GIAC, OSCP)


* Experience with vulnerability management platforms (Qualys, Tenable, Rapid7) or security tooling in enterprise environments


* Proficient knowledge of the product developmen...