[Remote] Engineering Manager, Product Security

Note: The job is a remote job and is open to candidates in USA. Paxos is on a mission to open the world’s financial system to everyone by rebuilding financial infrastructure. The Engineering Manager, Product Security will lead a team of security engineers to secure AWS and Kubernetes infrastructure, ensuring applications are built and maintained safely while driving the technical direction for cloud and application security.

Responsibilities

• Lead, coach, and develop a team of cloud and application security engineers, including setting clear goals, providing ongoing feedback, and running performance reviews
• Own the security posture of our cloud environment, including AWS account topology, access management, inner-service communication, network segmentation, and ongoing monitoring (e.g., Cloud Posture tools)
• Partner across the engineering and security organization to embed security into application designs, CI/CD pipelines, and influence roadmaps of other teams
• Establish and scale automated guardrails for infrastructure as code/policy as code, SAST, and DAST to reduce manual toil
• Act as Incident Commander for high-severity security incidents and vulnerabilities, coordinating technical response, stakeholder communication, and post-incident reviews
• Collaborate with Compliance, Risk, and Legal to maintain and improve our security posture relative to frameworks like NIST, and to support customer and regulator inquiries
• Partner with leadership on headcount planning, hiring, and organizational design to ensure the Platform Security team scales with the business
• Champion a culture of security across Paxos through education, documentation, and close collaboration, helping teams ship secure systems quickly and confidently

Skills

• 8+ years of engineering experience (software, infrastructure, or security), including time as an individual contributor security engineer working on cloud or application security
• At least 2–3 years of experience as an engineering manager, leading and developing security teams
• Proven experience leading security of production AWS environments at scale, including AWS Organizations, IAM, SCPs, Transit Gateways, WAFs, and logging/monitoring
• Hands-on experience deploying secure applications to multi-cluster Kubernetes environments (e.g., network policies, admission controllers, service mesh, secrets management, runtime hardening)
• Strong fluency of SSDLC lifecycle, from design to threat modeling to deployment with a bias on possible automation at every step of the way (Terraform/CDK, Policy-as-Code, SAST, DAST, AI-based penetration testing, etc)
• Deep understanding of security architecture concepts, including Zero Trust, mTLS, access management, least privilege, OWASP and application and cloud hardening best practices
• Demonstrated experience leading incident response as an Incident Commander for major vulnerabilities or breaches, including coordinating cross-functional teams under pressure
• Proficiency in headcount planning, performance reviews, and mentorship, with a clear and thoughtful leadership philosophy you can articulate with examples
• Excellent communication skills, with the ability to explain complex security risks and trade-offs to both deeply technical engineers and non-technical stakeholders

Company Overview

Company H1B Sponsorship