Lead / Staff, Technical Product Management - Application Security (DevSecOps & Integrations)

Job Location: Bangalore (Near Dairy Circle, Opposite to Christ University)

Work mode: Hybrid - 3 Days WFO

Responsibilities:

• The top priority for this role is to drive integrations with popular developer tools, including Integrated Development Environments (IDEs), Source Code Management (SCM) systems (e.g., Git, GitHub, GitLab, Bitbucket), and Continuous Integration (CI) platforms (e.g., Jenkins, CircleCI, GitLab CI).

• Prioritize and execute the product roadmap for application security solutions, prioritizing features that enhance DevSecOps practices and integrate with key developer tools.

• Lead the product lifecycle from ideation to launch and iteration, including market research, competitive analysis, requirements gathering, and feature definition

• Collaborate closely with engineering, design, and security teams to ensure the successful delivery of high-quality, secure, and user-friendly products.

• Deeply understand the needs of developer and security professional workflows, translating these into detailed product specifications, user stories, and acceptance criteria.

• Act as a subject matter expert for application security and DevSecOps, evangelizing the product and its value to internal and external stakeholders.

• Monitor product performance, gather user feedback, and iterate on features to continuously improve the user experience and security posture.

• This hands-on role is a true opportunity to redefine how Application Security is consumed within the SDLC, and to change the course of an industry. Are you up for the challenge? 

Qualifications: 

• Bachelor’s or master’s degree in computer science or equivalent work experience

• Ideally has 5+ years of experience in product management or equivalent experience in Software development, DevOps or QA, with a strong focus on building technical products in the application security or cybersecurity domain.

• In-depth knowledge of developer tools and ecosystems, including IDEs, SCMs, CI/CD pipelines and ticketing systems.

• Demonstrated experience with DevSecOps principles and practices, including integrating security into the SDLC.

• Experience with Black Duck or competitor Application Security products

• Experience working with Development, Security, Operations, QA, and Business Operations organizations.

• Understanding of application security vulnerabilities, testing methodologies (SAST, DAST, SCA), and remediation

• Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex technical concepts to diverse audiences.

• Proven ability to lead cross-functional teams and drive product development from concept to market.

Black Duck considers all applicants for employment without regard to race, color, religion, sex, gender preference, national origin, age, disability, or status as a Covered Veteran in accordance with federal law. In addition, Black Duck complies with applicable state and local laws prohibiting discrimination in employment in every jurisdiction in which it maintains facilities. Black Duck also provides reasonable accommodation to individuals with a disability in accordance with applicable laws.