CrawlJobs Logo

Director, Product Security

acvauctions.com Logo

ACV Auctions

Location Icon

Location:
United States , Buffalo

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

178000.00 - 220000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Director of Product Security is a critical leadership role responsible for the overall security posture of ACV’s software applications and platforms. Reporting directly to the CISO, this individual will own and mature the entire Product and Application Security program, integrating security practices throughout the Secure Software Development Lifecycle (SSDLC). This position requires a self-motivated and highly organized leader with excellent communication and technical skills. The Director will ensure the confidentiality, integrity, and availability of ACV’s product-related data and systems by mitigating code-based risks within a fast-paced, technology-driven environment. You will build and lead a high-performing team, driving continuous improvement and ensuring ACV remains a secure and trusted platform for dealers and buyers nationwide.

Job Responsibility:

  • Design, implement, and manage the end-to-end Product Security program
  • Lead the adoption of DevSecOps practices, automating security tools and gates within the CI/CD pipelines
  • Establish and enforce Secure Software Development Lifecycle (SSDLC) requirements
  • Build, mentor, and manage a team of Product Security Engineers
  • Proactively identify and establish security guardrails for AI/ML model development and usage
  • Oversee the deployment, tuning, and management of application security testing tools (SAST, DAST, SCA)
  • Lead vulnerability remediation efforts for all ACV products
  • Perform and oversee deep-dive security architecture and design reviews for all new products, features, and core application services
  • Define and manage secure configuration standards for containerized applications, microservices, APIs, and their supporting cloud infrastructure (AWS and GCP)
  • Manage and coordinate external penetration testing and bug bounty programs
  • Design, maintain, and measure processes to prevent vulnerabilities from reaching production
  • Work with Technical Program Management to create appropriate key performance indicators
  • Contribute to ACV’s overall Governance, Risk, and Compliance (GRC) program
  • Lead security risk assessments, threat modeling, and tabletop exercises specific to product features and application architecture
  • Ensure protection of sensitive data, including PII and financial information, within the application environment
  • Serve as the primary security advisor to Product and Engineering leadership
  • Collaborate effectively with IT, Engineering, and Product teams to integrate security into their processes
  • Maintain strong communication channels with remote team members
  • Create a culture of communication and collaboration
  • Create and maintain executive dashboards to increase security visibility
  • Perform additional duties as assigned

Requirements:

  • 10+ years experience in Information Security
  • 5+ years directly focused on Product Security or Application Security in a leadership role
  • Proven experience building and leading a centralized Product Security/AppSec program within a technology-driven, cloud-based SaaS company
  • Deep, hands-on knowledge of the Secure Software Development Lifecycle (SSDLC), CI/CD, and DevSecOps principles, including automating security tooling
  • Strong understanding of security frameworks and best practices (NIST CSF, ISO 27001, CIS Controls)
  • Extensive experience with cloud security, with a strong focus on securing applications deployed in AWS and/or GCP environments
  • Experience with modern software development including Agentic and Generative AI techniques
  • Expertise with multiple application security tools, including SAST, DAST, MAST, SCA, API security platforms, and Web Application Firewalls (WAF)
  • Excellent communication, interpersonal, and leadership skills, with an ability to translate complex technical risks into business context
  • Ability to work effectively in a remote environment and manage geographically dispersed teams

Nice to have:

Experience with Fintech companies is desirable

What we offer:
  • Multiple medical plans including a high deductible, low cost health plan
  • Company-sponsored (paid) Short-Term Disability, Long-Term Disability, and Life Insurance
  • Comprehensive optional benefits such as Dental, Vision, Supplemental Life/AD&D, Legal/ID Protection, and Accident and Critical Illness Insurance
  • Generous paid time off options, including uncapped vacation days, paid sick days, 6 paid company holidays, 2 floating holidays, parental leave, bereavement leave, jury duty leave, voting leave
  • Employee Stock Purchase Program with additional opportunities to earn stock in the Company
  • Retirement planning through the Company’s 401(k)

Additional Information:

Job Posted:
April 12, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
ACV Auctions - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Director, Product Security

Director, Product Security

We are a global team of innovators and pioneers dedicated to shaping the future ...
Location
Location
United States , Portland
Salary
Salary:
224000.00 - 280000.00 USD / Year
newrelic.com Logo
New Relic
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of technical hands-on security experience or security program management
  • Deep Engineering Background: Substantial, hands-on experience in software engineering and development roles prior to, or integrated with, security leadership
  • Demonstrated ability leading multiple managers and teams
  • SaaS Product Delivery Experience: Proven track record of securing rapidly scaling SaaS products delivered on cloud platforms
  • Strong product security program planning, project management, and execution skills
  • DevSecOps Mastery: Extensive, practical experience designing and implementing advanced DevSecOps toolchains and methodologies
  • A background involving open-source security, vulnerability disclosure, SaaS cloud security technologies, product incident response, and a deep understanding of risk and threat assessments
  • Experience identifying and resolving potential security issues involving compliance, mergers and acquisitions, and regulatory issues as related to Software as a Service (SaaS)
  • Demonstrated communication skills with detailed, technical information in a manner comprehensible by individuals at varying degrees of experience and skill level
Job Responsibility
Job Responsibility
  • Work closely with the CISO to provide leadership for product security strategy execution, product security architecture, and the secure engineering ecosystem
  • Help build and deliver on the CISO's vision for the growth of information security programs such as SDLC, audit logging, product security standards, security testing, and bug bounties
  • Own and Execute the Product Security Strategy, defining a clear, actionable roadmap that aligns with business goals and reduces organizational risk
  • Act as the principal security advisor to Engineering and Product leadership, translating high-level product strategy into technical security requirements and engineering practices
  • Drive DevSecOps Adoption by architecting and leading the implementation of our DevSecOps program, integrating security testing, validation, and controls seamlessly into the CI/CD pipeline
  • Leverage deep experience with a broad range of development, build, and deploy systems (e.g., Jenkins, GitLab CI, Kubernetes) to identify and eliminate security friction points
  • Design, implement, and run an effective Product Vulnerability Management lifecycle, from automated scanning and triage to developer remediation and verification
  • Work directly with development teams to improve and scale secure coding practices, focusing on developer experience and automation
  • Feed and grow a global security organization that motivates team members to face challenges and deliver significant work
  • Coach and mentor managers and team members by understanding their career goals and providing opportunities for professional growth
What we offer
What we offer
  • Corporate bonus plan
  • Healthcare
  • Dental
  • Vision
  • Parental leave and planning
  • Mental health benefits
  • 401(k) plan and match
  • Flex time-off
  • 11 paid holidays
  • Volunteer time-off
  • Fulltime
Read More
Arrow Right

Sr. Director, Product Management for Data & AI, Security and HSI

The Sr. Director of Product Management will lead the strategy and execution of T...
Location
Location
United States , Bellevue
Salary
Salary:
207700.00 - 280900.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • More than 10 years Product Management experience in an agile software product development environment preferably in a large consumer organization with millions of consumer applications and an advanced level understanding of superior customer experiences
  • 5+ years of experience in AI, data science, and analytics
  • Expertise in LLMs and Generative AI field
  • Experience leading digital applications and successfully launching Data & AI products in the market at large scale
  • Background working with Engineering and a strong understanding of the role of engineering in product development
  • 10+ years of experience in leading strategy, innovation, and data products
  • Advanced knowledge of data tools, techniques, and manipulation including cloud platforms, programming languages, and technology platforms
  • 5+ years leading and developing teams of 5 or more Manager level direct reports with skip-level employees
  • Bachelor's Degree in Computer Science, Engineering, IT or equivalent
  • Demonstrated experience driving enterprise data, analytics, and insights solutions and other technologies
Job Responsibility
Job Responsibility
  • Develop the data products that empower digital customer experiences to be contextual and personal, revamping and redesigning journeys using the new AI experiences
  • Define the overall strategy for how to build and deliver the best experience to our existing users and grow the strategic areas in the T-Life Super App and T-Shop on web
  • Build a Data & AI and Security platform for all Magenta users including Postpaid, Prepaid, TFB Micro and HSI
  • reusing the platform for Metro users to build the same capabilities in the new MyMetro App
  • Enable all the core HSI (High Speed Internet) consumer experiences into one single platform available across Magenta and Metro brands
  • Oversee Security Products for ScamSheild, P360, device diagnostics, VPN, credit monitoring etc. in T-Life to ensure that we can fully fill our promise of “Peace of mind” in the T-Life app
  • Develop and maintain strategic partnerships with senior internal and/or external customers
  • Creates, plans, and owns a portfolio of high-quality products & services through a lifecycle of envisioning/investing/innovating
  • Champion and communicate information and AI product value and other key performance indicators to partners and team members
  • Develop change management and communication plans and execute connected with customer change initiatives
What we offer
What we offer
  • medical, dental and vision insurance
  • a flexible spending account
  • 401(k)
  • employee stock grants
  • employee stock purchase plan
  • paid time off
  • up to 12 paid holidays
  • paid parental and family leave
  • family building benefits
  • back-up care
  • Fulltime
Read More
Arrow Right

Director, Global Security

The Director, Global Security leads the development and execution of a comprehen...
Location
Location
United States
Salary
Salary:
180000.00 - 220000.00 USD / Year
avanos.com Logo
Avanos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or its non-U.S. equivalent
  • Minimum 10 years of experience in corporate and/or government security (law enforcement or other relevant experience) with a preference for experience in a global multinational corporation
  • Experience in international security operations, especially the US-Mexico Border
  • English language fluency required
  • Travel: 25–50% global travel, often on short notice
  • Must be available 24/7 for emergencies and business continuity needs
Job Responsibility
Job Responsibility
  • Strategic Leadership - Develop and implement a global security strategy aligned with corporate objectives
  • Security Management - Lead a high-performing global security team, including internal staff and co-sourced partners
  • Brand Ambassador - Establish and maintain a world-class security culture, awareness, and training program
  • Fiscal Responsibility - Develop and manage the global security budget, ensuring efficiency and productivity
  • Risk Assessment - Conduct global risk assessments to identify threats to people, property, and reputation
  • Site Leadership - Direct site security operations globally, ensuring optimal use of personnel and technology
  • Crisis Management - Co-lead Crisis Management and Business Continuity programs, including training and preparedness exercises
  • Executive Protection - Oversee executive protection and security for Board meetings and corporate events
  • Global Events and Activities - Manage international travel security and advance operations
  • International Compliance - Lead compliance with Customs-Trade Partnership Against Terrorism (C-TPAT) and Authorized Economic Operator (AEO) programs
What we offer
What we offer
  • Incentive compensation program
  • Benefits on day 1
  • Free onsite gym
  • Onsite cafeteria
  • HQ region voted 'best place to live' by USA Today
  • Uncapped sales commissions
  • Generous 401(k) employer match of 100% of each pretax dollar you contribute on the first 4% and 50% of the next 2% of pay contributed with immediate vesting
  • Fulltime
Read More
Arrow Right

Production Director

Our Production Directors are responsible for all elements of production for each...
Location
Location
United States , San Francisco; Los Angeles; New York City
Salary
Salary:
100000.00 - 150000.00 USD / Year
obexp.com Logo
On Board Experiential
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BA/BS in marketing, business administration, communications, or related field
  • 8 – 10 years of direct experience in producing/managing large experiential programs and events
  • At least 5 years in an experiential agency environment
  • Large event, big budget activations experience
  • Very strong client/customer service experience
  • Additional experience in at least 2 specialized areas: audio/video/lighting, mobile marketing tours, set fabrication, live event activations, corporate meetings
  • Experience with Microsoft 365, SharePoint, Smartsheet, Google apps, Trello and/or other project management tools
  • VERY Strong network of production personnel and service providers
  • Exceptional and proven organizational, planning, managerial and client interfacing skills
  • Superior management, leadership, and interpersonal communication skills
Job Responsibility
Job Responsibility
  • Direct, manage, mentor, and motivate junior production staff
  • Assist new business development team in determining feasibility of projects/events and developing production deliverables for new business proposals (RFPs)
  • Serve as primary Production team contact throughout a project/program with both internal and external teams, including client teams
  • Collaborate with OBE Leadership and senior level production team, Account, Creative, Strategy, Technology, and others
  • Direct and oversee all production related communications, documentation, and required deliverables
  • Ensure staff executes at the highest level of industry standards and in accordance with company policies and SOPs
  • Establish and maintain best practices
  • Create and manage and meticulously track detailed event timeline(s)
  • Produce detailed project-wide, operational, and logistical plans and procedures
  • Keep OBE Leadership and senior level production staff briefed on revisions to SOW’s and budgets
What we offer
What we offer
  • medical/dental/vision insurance
  • employer paid basic life and personal accident insurance
  • Annual Profit Sharing/Bonus Plan
  • 401(k)
  • Healthcare Flexible Spending Account
  • Dependent Care Flexible Spending Account
  • PTO
  • STD/LTD insurance benefits
  • recovery days
  • happy hours
  • Fulltime
Read More
Arrow Right

Director of Security

Jeeves is looking for a visionary and hands-on Director of Information Security ...
Location
Location
Brazil , São Paulo
Salary
Salary:
Not provided
tryjeeves.com Logo
Jeeves
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Master's degree preferred
  • 10+ years of progressive experience in information security
  • At least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment
  • Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil)
  • Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD)
  • Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response
  • Experience with various security tools and technologies (SIEM, EDR, WAF, DLP, vulnerability scanners, etc.)
  • Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex security concepts to technical and non-technical audiences, including executive leadership
  • Strong analytical and problem-solving skills, with a proactive and pragmatic approach to security
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain a robust global information security strategy aligned with business objectives, regulatory requirements, and industry best practices
  • Lead the evolution of our security roadmap, identifying emerging threats, vulnerabilities, and opportunities for improvement
  • Provide expert guidance and leadership on all aspects of information security to executive management and key stakeholders
  • Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines across the organization
  • Manage and mature our security awareness and training programs for all employees, fostering a security-conscious culture
  • Develop and manage the information security budget and resource allocation
  • Establish and maintain an enterprise-wide information security risk management framework, conducting regular risk assessments and managing mitigation plans
  • Ensure compliance with relevant international, regional, and local data privacy and security regulations
  • Lead and coordinate external security audits and assessments, facilitating responses to findings and ensuring timely remediation
  • Oversee security operations, including vulnerability management, penetration testing, security monitoring, and incident detection and response
  • Fulltime
Read More
Arrow Right

Director of Application Security

Hewlett Packard Enterprise is seeking a Director of Application Security to defi...
Location
Location
United States
Salary
Salary:
164500.00 - 398500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in cybersecurity, with at least 5+ years leading an application security function
  • demonstrated experience working at an enterprise-level organization with large-scale systems, processes, or operations
  • proven success in building and scaling application security programs in large, complex technology environments
  • deep understanding of secure software development practices, DevSecOps, and CI/CD tooling
  • threat modeling, code analysis, and vulnerability management
  • OWASP Top 10, SANS Top 25, and modern application security risks
  • experience with risk management frameworks (NIST CSF, ISO 27001, etc.) and regulatory requirements (SOX, GDPR, HIPAA, etc.)
  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
  • CISSP, CSSLP, or other relevant security certifications preferred.
Job Responsibility
Job Responsibility
  • define and execute the enterprise application security strategy aligned with business objectives and regulatory requirements
  • build, mentor, and grow a high-performing Application Security team
  • act as a trusted security advisor to engineering and product executives
  • develop and mature programs for secure software development
  • establish policies, standards, and patterns to deliver secure products at scale
  • partner with engineering, DevOps, and cloud teams to embed security tooling into CI/CD pipelines
  • lead developer outreach efforts
  • engage with product management to incorporate security requirements into roadmaps
  • drive the integration of an application security risk register
  • measure and report on the maturity and effectiveness of the AppSec program using KPIs and KRIs
What we offer
What we offer
  • comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • investment in personal and professional development
  • programs catered to career growth
  • unconditional inclusion
  • flexibility to manage work and personal needs.
  • Fulltime
Read More
Arrow Right

Director of Product

We are seeking an experienced and visionary Director of Product to lead EarnIn’s...
Location
Location
United States , Mountain View
Salary
Salary:
270000.00 - 330000.00 USD / Year
earnin.com Logo
EarnIn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of product management experience, with a strong focus on building and delivering innovative, customer-centric solutions
  • Demonstrated success in managing large product portfolios with a proven track record of delivering across a broad set of areas, such as core experiences, identity, and money movement
  • 5+ years of experience managing and mentoring high-performing teams
  • Strong analytical skills, with the ability to leverage data to inform product decisions and drive metrics
  • Experience in the fintech space, especially with payments, risk management, or financial products, is highly desirable
  • Excellent communication and collaboration skills, with the ability to influence cross-functional teams and stakeholders at all levels
  • Ability to thrive in a fast-paced environment, balancing strategic thinking with tactical execution
  • A passion for solving real customer problems and improving financial wellness for everyday people
Job Responsibility
Job Responsibility
  • Define and lead the strategic direction for EarnIn’s core product and platform, ensuring scalability, security, and flexibility as we grow and expand our offerings
  • Focus on building a best-in-class platform that underpins our product experience, driving reliability, performance, and innovation across all product areas
  • Develop a deep understanding of customer needs and ensure our core platform enables products that provide exceptional, seamless, and intuitive user experiences
  • Lead and work with product, engineering, design, and business teams to deliver platform solutions that enhance the entire product ecosystem, ensuring alignment across the organization
  • Oversee the development of a flexible and scalable platform that can support current and future product demands, ensuring a strong foundation for continued growth and product innovation
  • Use data analytics and market insights to inform platform development decisions, ensuring the product evolves to meet both current and future customer needs
  • Lead and mentor a team of high-performing product managers, fostering a culture of collaboration, innovation, and excellence within the product organization
What we offer
What we offer
  • equity and benefits
  • Fulltime
Read More
Arrow Right

Assistant Director of Security and Safety

Assists the Director of Loss Prevention in managing the daily functions of the d...
Location
Location
United States , San Antonio
Salary
Salary:
62000.00 - 89000.00 USD / Year
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High school diploma or GED
  • 4 years experience in the security/loss prevention or related professional area
  • OR 2-year degree from an accredited university in Criminal Justice or related major
  • 2 years experience in the security/loss prevention or related professional area
Job Responsibility
Job Responsibility
  • Assists the Director of Loss Prevention in managing the daily functions of the department
  • Maintains logs, certifications, and documents required by law and Standard Operating Procedures
  • Trains staff in established emergency procedures and implements accident and fire prevention procedures
  • Supervises security staff to effectively monitor and protect property assets
  • Handles complaints, settling disputes, and resolving grievances and conflicts
  • Implements action plans to monitor and control risk
  • Reports any procedure violations to the Director of Loss Prevention and appropriate management
  • Strives to improve service performance
  • Celebrates successes and publicly recognizes the contributions of team members
  • Communicates critical information to Loss Prevention officers
What we offer
What we offer
  • Bonus program
  • Comprehensive health care benefits
  • 401(k) plan with up to 5% company match
  • Employee stock purchase plan at 15% discount
  • Accrued paid time off (including sick leave where applicable)
  • Life insurance
  • Group disability insurance
  • Travel discounts
  • Adoption assistance
  • Paid parental leave
  • Fulltime
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy