Lead / Staff, Product Management - Application Security (DevSecOps & Integrations)

Role Overview: You will be the Technical Product Manager (TPM) at Black Duck Software, Inc. leading the execution and prioritizing integrations with CI, SCM, IDE, and Ticketing system. Your main focus will be ensuring seamless integration across flagship products and 3rd party solutions with a focus on SCM, CI, and Issue tracking. To excel in this role, you must have a deep understanding of application security workflows within the SDLC, hands-on experience with IDE, SCM/CI, and ticketing platforms, and the ability to translate technical requirements into compelling product features. Key Responsibilities: - Drive integrations with popular developer tools such as IDEs, SCM systems (e.g., Git, GitHub, GitLab, Bitbucket), and CI platforms (e.g., Jenkins, CircleCI, GitLab CI). - Prioritize and execute the product roadmap for application security solutions, emphasizing features that enhance DevSecOps practices and integrate with key developer tools. - Lead the product lifecycle from ideation to launch and iteration, including market research, competitive analysis, requirements gathering, and feature definition. - Collaborate closely with engineering, design, and security teams to ensure successful delivery of high-quality, secure, and user-friendly products. - Understand the needs of developer and security professional workflows and translate them into detailed product specifications, user stories, and acceptance criteria. - Act as a subject matter expert for application security and DevSecOps, advocating for the product and its value to internal and external stakeholders. - Monitor product performance, gather user feedback, and iterate on features to continuously enhance the user experience and security posture. Qualifications: - Bachelor's or master's degree in computer science or equivalent work experience. - Ideally, 5+ years of experience in product management or equivalent experience in Software development, DevOps, or QA, with a strong focus on building technical products in the application security or cybersecurity domain. - In-depth knowledge of developer tools and ecosystems, including IDEs, SCMs, CI/CD pipelines, and ticketing systems. - Demonstrated experience with DevSecOps principles and practices, including integrating security into the SDLC. - Experience with Application Security products like Black Duck or competitors. - Experience collaborating with Development, Security, Operations, QA, and Business Operations organizations. - Understanding of application security vulnerabilities, testing methodologies (SAST, DAST, SCA), and remediation. - Excellent communication, interpersonal, and presentation skills with the ability to articulate complex technical concepts to diverse audiences. - Proven ability to lead cross-functional teams and drive product development from concept to market.,