**Product Delivery Manager - Application Security** drives secure, high-impact product delivery across a multi-service vulnerability management platform. Lead end-to-end execution, manage complex dependencies, and bridge security engineering with product delivery. Experience required: 5+ years product delivery, release management, or technical program management, plus exposure to security engineering, vulnerability management, compliance, or DevSecOps domains. Skills needed: operational management, change readiness, vulnerability scan interpretation, product-wide release management. Apply if experienced in software composition analysis, application security assessments, and risk-informed decision-making. Preferred qualifications include relevant certifications (CISSP, CCSP, etc.) and experience with vulnerability management platforms (Qualys, Tenable).
Full Job Description
Location: OH, United States
Drive secure product delivery at scale across a multi-service vulnerability management platform. Lead end-to-end execution, manage complex dependencies, and ensure operational excellence while bridging security engineering and product delivery disciplines.
As a Product Delivery Manager in Application Security within Cybersecurity & Technology Controls, you enhance and optimize the way security products are delivered across the firm. You lead delivery across multiple platform services and feature teams, interpreting security findings, aligning stakeholdersincluding Vulnerability Management Operations, Cyber Operations, Penetration Testing, and Red Team partnersand creating solutions that enable secure, compliant implementations at pace.
Job Responsibilities
Lead end-to-end product delivery processes across multiple platform services, including intake, dependency management, release management, product operationalization, delivery feasibility decision-making, and product performance reporting, while escalating opportunities to improve efficiencies and functional coordinationLead change management activities across functional partners, ensuring adherence to the firm's risk, controls, compliance, and regulatory requirements while facilitating effective communication and timely resolution of issues among technical and business stakeholdersManage timelines, dependencies, and blockers across cross-functional feature teams, ensuring adequate resourcing and liaising with stakeholders to interpret vulnerability scan results, software composition analysis findings, and application security risk scenarios that inform delivery priorities and roadmap decisionsGovern key performance indicators to assess product delivery success and security compliance, applying data analytics to monitor delivery performance and inform process improvementsRequired Qualifications, Capabilities, and Skills
5+ years of experience or equivalent expertise in product delivery, release management, or technical program management, with exposure to security engineering, vulnerability management, compliance, or DevSecOps domainsDemonstrated ability to execute operational management and change readiness activities with a proven track record of implementing continuous improvement processesAbility to interpret technical security findings (vulnerability scans, software composition analysis, application security assessments) and translate them into delivery plans and risk-informed decisionsExperience in product or platform-wide release management, in addition to deployment processes and strategiesPreferred Qualifications, Capabilities, and Skills
Relevant certifications (e.g., CISSP, CCSP, AWS Certified Security Specialty, GIAC, OSCP)Experience with vulnerability management platforms (Qualys, Tenable, Rapid7) or security tooling in enterprise environmentsProficient knowledge of the product development life cycle, design, and data analyticsStrong analytical skills with a problem-solving mindset and the ability to manage complex, cross-functional challenges
Lead secure product delivery across a vulnerability management platform, manage change activities, ensure regulatory and security compliance, oversee cross-functional timelines, and drive operational efficiency at scale. 
