Full-Time Senior Technical Program Manager, Product Security
Job Description
The Team
Across our work in Science, Education, and within our communities, we pair technology with grantmaking, impact investing, and collaboration to help accelerate the pace of progress toward our mission. Our Central Operations & Partners team provides the support needed to push this work forward.
Central Operations & Partners consists of our Brand & Communications, Community, Facilities, Finance, Infrastructure/IT Operations/Business Systems, Initiative Operations, People, Real Estate/Workplace/Facilities/Security, Research & Learning, and Ventures teams. These teams provide the essential operations, services, and strategies needed to support CZI’s progress toward achieving its mission to build a better future for everyone.
Our Central Tech team provides technology and security support for CZI and our grantees. Engineering, IT, and Security are most effective when in sync and learning from each other daily. Across our three pillars of Infrastructure, Security, and Grantee & Partner Support, we enable our teams to achieve their goals faster and more securely. We leverage technology to automate manual processes, constantly innovate to optimize operations, provide first-class support, and build solutions to enable the scale and execution of our business partners’ strategies and initiatives.
The Opportunity
As we engage directly in our communities, we must work from a shared place of trust. We know that our communities care deeply about how information is collected, used, and shared, and so do we. So when CZI builds products, supports grantees, makes venture investments, and purchases services from third parties, we consider their privacy and security at every step.
We’re seeking a Senior Technical Program Manager who will play a key role in priority enterprise-level initiatives, influence security across our organization, and drive implementing our Information Security strategy. We are looking for a TPM with a proven track record of developing and shipping high-quality technologies and services and integrating them into products and experiences. This role will have the opportunity to work closely with Software Engineers, Scientists, Educators, Infrastructure Engineers, Product Experience members, and leaders across the organization. The role will help evolve a security program focused on enabling CZI staff while protecting sensitive information in an active and robust environment and adhering to security measures applied to the production infrastructure (e.g. architecture, authentication, data usage policies).
What You’ll Do
- Partner closely and drive technical excellence with engineers, product managers, legal, product trust & safety and other teamss across CZI to build flexible and robust security programs that continuously evaluate, track, and manage risks tied to architecture, infrastructure specifications, launch criteria, and test plans.
- Serve as an internal champion and consultant for security and privacy, demonstrate end-to-end ownership of security and thought leadership across multiple teams, and influence program direction and plans.
- Understand technology requirements, roadmap, dependencies, evolution, and develop a plan for mitigating risks and delivering features that meet the requirements across multiple products.
Stay current with the latest Security research (AI/ML, Cloud, Container, Infrastructure, Application, etc.) and technologies and assess their potential application. - Assess security risks and implement controls to mitigate them across various domains (e.g., application security, infrastructure, data protection).
- Assess products and procedures for inclusion in CZI’s infrastructure scaffolding and compliance with requirements, standards, and information assurance.
- Provide regular updates to leadership on security program progress, risks, and mitigation strategies.
- Partner with legal on risk based reviews and training.
What You’ll Bring
- 8+ years of Technical Program Management, Software Engineering, or Systems Engineering experience.
- Experience working on AI/ML security, application security, product security, infrastructure security, and/or IT security.
- Experience collaborating with cross-functional teams, including Legal, Product Trust & Safety, Infrastructure Software Engineers, and Product teams.
- Organized, methodical, and detail-oriented, with superior analytical and problem-solving skills.
- Familiarity with regulatory compliance frameworks (e.g. SOC2, GDPR, CCPA)
- Strong understanding of Information Security principles, including security architecture, authentication, encryption, and data protection.
- Solid understanding of cloud-based infrastructure security (AWS, Azure, GCP) and on-prem environments.
- Knowledge of security measures, tools, and techniques (WAF/firewalls, intrusion detection systems, SIEM, etc.).
- Familiarity with CI/CD processes and secure software development practices (e.g., DevSecOps).
- Strong leadership skills, with demonstrated ability to lead via influence in cross-functional environments.
- Excellent communication skills, particularly technical concepts between audiences of varying backgrounds.
- Experience in the Education Technology space is a huge plus.
How to Apply
https://grnh.se/26b9cef91us45 total views, 0 today