Manager, Software Development

What youll do

• Build and lead a high-performing team focused on vulnerability detection, assessment, and remediation across cloud and hybrid environments.
• Oversee the end-to-end patch management lifecycle, ensuring timely deployment of security patches and updates across all infrastructure components.
• Establish and enforce security baselines and compliance standards, integrating them into CI/CD pipelines and infrastructure as code.
• Monitor and analyze vulnerability metrics and patch compliance KPIs, using data to drive continuous improvement and risk reduction.
• Collaborate with Security, Risk, and Compliance teams to align on threat intelligence, audit requirements, and remediation strategies.
• Lead incident response efforts related to infrastructure vulnerabilities, ensuring rapid containment and resolution.
• Drive automation initiatives to streamline vulnerability scanning, patch deployment, and compliance reporting.
• Provide technical leadership in cloud infrastructure design, ensuring security is embedded in architecture and operations.
• Partner with Product Management and Application Engineering to align infrastructure security with product roadmaps and business goals.
• Manage 24/7 operations, ensuring high availability, performance, and security of critical systems.
• Create and maintain documentation for systems, processes and procedures to ensure knowledge sharing across teams
• Stay updated on industry trends and emerging technologies

• Bachelors degree in Computer Science, Engineering, Information Security, or related field (or equivalent experience).
• 10+ years of experience in IT infrastructure, DevOps, or SRE roles with a strong focus on security and patch management.
• Proven experience implementing and managing vulnerability management tools (e.g., Qualys, Tenable, Rapid7) and patch management solutions (Tanium).
• Hands-on experience with cloud platforms (AWS, Azure, GCP) and container orchestration (Docker, Kubernetes).
• Familiarity with DevSecOps practices, infrastructure as code (Terraform, Ansible), and secure CI/CD pipelines.
• Strong understanding of ITIL, security frameworks (NIST, CIS), and compliance standards (SOC 2, ISO 27001).
• Excellent communication and leadership skills, with experience managing geographically distributed teams.
• Availability for on-call support during critical incidents or high-impact events.