CrawlJobs Logo
Barclays Logo Barclays · IT - Software Development

Head of Product Security

United Kingdom, London · Job Posted June 09, 2026
Apply Position
Job Link Share

Job Description

The Head of Product Security leads the pillar responsible for ensuring everything the company builds and ships is secure by design. This is the most agile-facing pillar in the CISO function — it must embed into product squads without becoming a bottleneck, own the shift-left programme, manage the developer security toolchain, and provide assurance that releases meet the organisation’s security and compliance requirements. The role requires a blend of technical depth, developer empathy, and pragmatic risk management. The ideal candidate is someone who understands application security at a hands-on level, has run a security champions programme in an agile engineering organisation, and knows how to make security a service that engineering teams want to use rather than a gate they try to avoid. You will work more closely with engineering leadership than with regulators — this is a builder’s role, not an auditor’s role.

Job Responsibility

  • Own and drive the shift-left security programme, ensuring security is integrated into the earliest stages of the software development lifecycle through threat modelling, secure design patterns, and automated tooling
  • Manage the security champions programme, recruiting, training, and supporting champions across all product squads
  • Own the developer security toolchain (SAST, DAST, SCA, secrets scanning) and ensure it is integrated into all CI/CD pipelines with minimal developer friction and calibrated thresholds to avoid noise
  • Establish and operate the vulnerability management lifecycle, including scanning orchestration, triage, prioritisation, SLA assignment, remediation tracking, and exception management
  • Chair the weekly Vulnerability Review Board, making prioritisation decisions on critical and high-severity findings in collaboration with engineering leads
  • Define and publish the security engagement model for product and engineering teams, including trigger points (new service, new integration, pre-release), SLAs, and escalation paths
  • Oversee threat modelling for new services and major changes, ensuring threat models are completed before development progresses beyond initial design
  • Own the security sign-off process for production releases, providing risk-based release decisions (approved, approved with conditions, deferred, escalated) rather than binary pass/fail gates
  • Provide self-service security capabilities to product teams: threat model templates, security stories backlog, secure coding guides, and accessible tooling documentation
  • Produce security assurance reporting for the CISO, including vulnerability trends, SDLC integration metrics, champion programme health, and developer satisfaction with security
  • Collaborate with Security Architecture and Engineering on the “paved road” of secure defaults, patterns, and base images that product teams build upon
  • Manage and develop the Product Security team, balancing deep technical capability with developer relations skills

Requirements

  • CSSLP, OSCP or similar certifications
  • Experience with PCI Software Security Framework (SSF) and its application to payment processing software
  • Previous career as a software engineer or developer before moving into security — you understand the developer experience from the inside
  • Experience with bug bounty programme management
  • Payments acquiring, FinTech, E-Pay - application security experience
  • Contributions to open-source security tools, OWASP projects, or published security research
  • Experience with security tooling for Kubernetes-native applications
  • Several years of progressive experience in application security or product security, with a number of years in a leadership role managing a product security or AppSec team
  • Deep understanding of modern application security: OWASP Top 10, API security (REST, gRPC, GraphQL), microservices security, container security, and secure coding practices
  • Proven experience building and running a security champions programme in an agile engineering organisation
  • Hands-on experience with SAST, DAST, SCA, and secrets scanning tools and their integration into CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, or equivalent)
  • Experience managing a vulnerability management programme with defined SLAs, exception processes, and stakeholder reporting across multiple engineering teams
  • Strong developer empathy — demonstrable ability to work with engineering teams as a partner, not an adversary. Ideally you have a software development background yourself
  • Experience operating a security function within agile or DevOps delivery models, including sprint-aligned engagement and security backlog management
  • Understanding of PCI DSS software security requirements and their practical application in a cloud-native, microservices environment
  • Experience with threat modelling frameworks (STRIDE, PASTA, attack trees) and their application to modern architectures
  • Strong communication skills for influencing engineering leadership, presenting to executives, and writing clear guidance for developers.

Nice to have

  • Contributions to open-source security tools, OWASP projects, or published security research
  • Experience with security tooling for Kubernetes-native applications
  • Experience with bug bounty programme management

What we offer

  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
Barclays - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Head of Product Security

8 matching positions

Senior Director of Product (Head of International - Real Time Operations)

As Head of International – Real Time Operations, you will own the strategy and e...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of product management experience in enterprise SaaS, real-time operations, VSaaS, VMS, IoT, or public safety technology
  • Proven success in international product leadership, including experience scaling platforms across multiple regions with diverse compliance and operational requirements
  • Experience partnering with sales leadership on tender-driven opportunities, translating deal pipelines into prioritized product roadmaps
  • Strong understanding of global compliance standards (privacy, data residency, security) and their impact on product delivery
  • Demonstrated ability to harmonize requirements across geographies while balancing global parity vs. regional differentiation
  • Excellent communication and collaboration skills
  • able to influence senior leaders and cross-functional teams without direct authority
  • Bachelor’s degree required
  • MBA or advanced degree preferred
Job Responsibility
Job Responsibility
  • Define the international product strategy for Fusus, balancing competitiveness, sustainability, and scalability
  • Partner directly with international sales leadership to evaluate pipeline opportunities, shape tender responses, and prioritize engineering work to win deals
  • Harmonize requirements across countries and regions, ensuring strategic parity with U.S. markets where necessary, while building features and capabilities that truly matter for international success
  • Collaborate with product, engineering, and program leaders to ensure international deliverables are embedded in Axon’s global roadmap
  • Ensure compliance with regional security, privacy, and data residency standards critical to customer trust and adoption
  • Drive continuous improvement in tender readiness, adoption, and customer success metrics across regions
  • Act as a champion for international customer and partner needs within RTO, ensuring they inform product priorities at all stages
  • Build strong partnerships across Axon (devices, digital evidence, productivity solutions) to deliver integrated outcomes internationally
  • Lead direct engagement with international customers, regulators, and partners to distill insights into product priorities
  • Establish a clear execution path within 90 days that defines roadmap priorities and sequencing for international expansion
What we offer
What we offer
  • Competitive base salary and RSUs
  • Comprehensive pension plan with matching contribution
  • Private health insurance & cash plans
  • 30 days paid holiday + UK public holidays
  • Enhanced maternity/paternity leave
  • GymPass subscription
  • Life assurance & income protection
  • Career growth support and wellness resources
  • Fulltime
Read More
Arrow Right

Head of Product & Data

We are looking for an exceptional product leader to shape and drive the vision, ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
selfridges.com Logo
Selfridges
Expiration Date
July 01, 2026
Flip Icon
Requirements
Requirements
  • A strong product leader with experience defining strategy and leading product teams across complex, cross-functional domains
  • A proven coach and people leader, able to develop capability, create clarity and build high-performing teams in a matrixed organisation
  • Strong experience managing products through the full lifecycle, from discovery and business case through to delivery, launch, adoption and optimisation
  • Deep understanding of modern product management, including roadmap development, prioritisation, agile delivery, experimentation and outcome-based measurement
  • Experience of leading data teams and managing master data ensuring compliance and quality
  • Experience working across some or all of the following areas: digital product, retail or store technology, CRM, loyalty, clienteling, stock and inventory, data platforms, analytics or operational systems
  • Commercially minded and highly analytical, with confidence using data, insight and ROI to inform prioritisation and strategic decisions
  • Excellent stakeholder management, communication and influencing skills, with the ability to work effectively from executive level through to delivery teams
  • A natural collaborator with strong problem-solving skills, sound judgement and a passion for creating simple, effective and high-quality customer and colleague experiences
  • Able to operate strategically and tactically: setting direction, building strong teams, shaping demand and discovery, and guiding delivery from concept through to launch, adoption and continuous improvement
Job Responsibility
Job Responsibility
  • Define the vision, strategy, roadmap, goals and KPIs for the overall product and data portfolio, ensuring alignment with Selfridges’ wider business, customer and technology strategy
  • Lead product discovery and prioritisation across Digital, Stores, Customer CRM, Clienteling, Stock and Data, balancing customer needs, colleague needs, technical opportunity and commercial value
  • Build and lead a high-performing product management capability, coaching and developing talent while creating clarity on accountabilities, ways of working and decision-making
  • Partner closely with technology, UX, analytics and business leaders to shape initiatives, define epics and outcomes, and ensure delivery is focused on measurable impact
  • Champion the voice of the customer and internal user, using insight, data and research to inform priorities, improve experiences and simplify complex processes
  • Own portfolio trade-offs, demand shaping and investment prioritisation, ensuring resources are focused on the highest-value opportunities and that roadmaps remain realistic and outcome-led
  • Establish strong partnerships with Retail, Buying, Supply Chain, Customer, Marketing/CRM, Data and Operations teams to connect front-end customer journeys with back-end operational capability
  • Ensure robust product practices across backlog management, story definition, acceptance criteria, testing, UAT, release readiness, adoption and benefit realisation
  • Drive the evolution of customer and data capabilities, including CRM, loyalty, clienteling and enterprise data platforms, to enable better personalisation, decision-making and operational insight
  • Define and lead data strategy Develop and lead data governance processes and across the business, liasing with data owners and stewards to identify, manage and maintain data entities and their use across multiple stakeholder groups
What we offer
What we offer
  • Competitive plus benefits
Read More
Arrow Right

Head of Product – FinTech

I am looking for a strategic and hands-on Head of Product to lead the vision, st...
Location
Location
Saudi Arabia , Riyadh
Salary
Salary:
55000.00 - 60000.00 SAR / Month
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven fintech experience
  • Deep understanding of SAMA regulations and experience building compliant, scalable financial products
  • Skilled in leading and growing product teams
  • Strong collaborator, capable of balancing multiple stakeholder priorities across regulatory, technical, and commercial domains
Job Responsibility
Job Responsibility
  • Define and drive the product vision and roadmap
  • Translate regulatory, risk, and commercial requirements into actionable product initiatives
  • Prioritize initiatives using data, customer insights, and regulatory considerations
  • Maintain a clear product architecture and scope
  • Lead the end-to-end product lifecycle
  • Break roadmap themes into well-structured epics and user stories
  • Facilitate sprint planning, backlog grooming, and agile rituals
  • Embed regulatory, risk, compliance, and security requirements into product design
  • Manage product documentation for SAMA Sandbox and partners
  • Lead, mentor, and develop mid-level Product Managers
  • Fulltime
Read More
Arrow Right

Head of security advisory

Security is a core pillar of our business, and our Information Security Advisory...
Location
Location
Poland , Warsaw
Salary
Salary:
Not provided
sportradar.com Logo
Sportradar
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–10+ years of experience in cybersecurity, with strong focus on data security, data governance, cloud security, or identity management
  • Proven experience leading teams or security programs, ideally within data-focused or governance-driven environments
  • Strong knowledge of data classification models and data lifecycle management
  • Hands-on experience with DSPM concepts and tooling
  • Experience collaborating with enterprise IT / Corporate Systems and product teams
  • Deep understanding of identity governance and internal access control mechanisms
  • Strong understanding of risk management principles across cloud and on-prem environments
  • Excellent communication and presentation skills, including executive-level reporting
  • Fluency in English
Job Responsibility
Job Responsibility
  • Lead a High-Performing Team
  • Data Security Strategy
  • DSPM Ownership
  • Data Leakage Prevention & Monitoring
  • Identity & Access Governance
  • Technical Program Leadership
  • Internal Advisory & Consulting
  • Governance & Executive Reporting
  • Risk Assessment & Mitigation
  • Cross-Functional Collaboration
What we offer
What we offer
  • A collaborative environment with colleagues from all over the world
  • Ability to shape your own workday and career via a clearly defined professional and personal development plan
  • Opportunity to work with senior leadership team and develop yourself within an inspiring and fast-growing company
  • Vibrant and inclusive community, including Women in Tech and Pride groups which welcome all participants
  • Flexible working hours
  • Fulltime
Read More
Arrow Right

Head of Security & Compliance

Plaud is building the next generation intelligence infrastructure and interfaces...
Location
Location
United States , San Francisco
Salary
Salary:
260000.00 - 340000.00 USD / Year
plaud.ai Logo
Plaud
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or higher in Computer Science, Software Engineering, or a related field
  • At least 5 years of experience working in global SaaS/AI companies
  • Comfortable working across time zones and collaborating asynchronously
  • Strong communication skills with empathy
  • Adaptive, collaborative, and proactive in driving outcomes
Job Responsibility
Job Responsibility
  • Build and execute a comprehensive security and compliance strategy covering enterprise IT, product, and cloud environments
  • Establish data protection, access control, and incident response policies across all regions and platforms
  • Partner with Engineering, IT, and Legal to ensure security-by-design in all AI systems, devices, and data pipelines
  • Lead company-wide security awareness and governance programs to embed a culture of trust and compliance
  • Drive SOC2, GDPR, and ISO27001 readiness, managing external audits and maintaining global certification programs
What we offer
What we offer
  • Top-tier healthcare for employees and dependents, including dental and vision, and a generous employer subsidy
  • 401(k) plan for full time employees with company matching
  • Unlimited PTO, plus 13 paid holidays
  • 12 weeks of paid time off to spend time with your new family, regardless of gender
  • New hires are equipped with their choice of new top-of-the-line laptops and workstation setups
  • Best office equipment
  • Annual offsites
  • Free office drinks and snacks
  • Fulltime
Read More
Arrow Right

Head of Security and Compliance

The Head of Security and Compliance will be responsible for building and leading...
Location
Location
United States
Salary
Salary:
Not provided
eightsleep.com Logo
Eight Sleep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10+ years of experience in security engineering, with deep expertise in mobile app security, IoT device security, or cloud infrastructure security
  • Proven expertise in cybersecurity, cloud infrastructure security (AWS), IoT device security, and corporate risk management
  • Experience in consumer technology, health tech, or regulated industries is highly desirable
  • Strong knowledge of compliance standards (SOC 2, ISO 27001, HIPAA, GDPR, etc.)
  • Excellent communication and stakeholder management skills
  • Ability to balance risk with business agility in a fast-paced startup environment
Job Responsibility
Job Responsibility
  • Oversight and implementation, operation and monitoring of information security tools and processes in customer production environments
  • Responsible for conducting IT risk assessments, documenting identified threats and maintaining risk register
  • Communicates information security risks to executive leadership
  • Reports information security risks annually to Eight Sleep leadership and gains approvals to bring risks to acceptable levels
  • Define and own Eight Sleep’s end-to-end security strategy across cloud, product, corporate, and customer environments
  • Serve as the primary security advisor to the executive team—translating risk into clear business decisions and helping set the company’s security posture and risk tolerance
  • Build and scale Eight Sleep’s security program, including roadmap, processes, metrics, and future team structure
  • Oversee security architecture and practices for software, cloud infrastructure, connected devices (IoT), and data storage
  • Ensure compliance with security frameworks (e.g., SOC 2, GDPR, HIPAA)
  • Lead vulnerability management, threat detection, and incident response
What we offer
What we offer
  • Equity participation
  • Periodic equity refreshments based on performance
  • Every Eight Sleep employee receives a Pod
  • Fulltime
Read More
Arrow Right

Head of Product - Platform

As Head of Product - Platform at Hawk, you’ll take ownership of the long-term pr...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
hawk.ai Logo
Hawk
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in product leadership for SaaS platforms, ideally in high-scale or enterprise contexts
  • Proven track record defining roadmaps, SLAs, deployment strategies, and enterprise-ready processes
  • Strong technical understanding of microservices architectures, Kubernetes, databases, data lakes, BI/reporting, and APIs
  • Experience working with high-throughput, low-latency systems (e.g., payments or other critical transaction-heavy industries)
  • Skilled at bridging technical, customer, and commercial perspectives into clear product strategies
  • Strong operational skills, with experience in developer efficiency, resource planning, and budget ownership
  • Comfortable with product operations tools (e.g., Jira) and able to scale processes across teams
  • Excellent communicator and stakeholder manager, able to align engineering, product, and go-to-market teams
  • Fluent in English
Job Responsibility
Job Responsibility
  • Define and own the long-term platform product vision and roadmap, ensuring scalability, reliability, and security
  • Oversee and manage both product infrastructure and overarching platform services
  • Productize and create blueprints & processes around deployment & cloud hosting options including it’s SLAs, reporting, documentation for our global SaaS as well as our private cloud deployments
  • Develop enterprise blueprints and professional services models for customer-specific requirements, balancing scalability with flexibility
  • Collaborate with engineering leadership to ensure product execution is aligned with BAU necessities e.g. vulnerability, bug and incident management, roadmap priorities and long-term vision
  • Partner with sales, solutions, and finance to create pricing models & materials for complex enterprise cases beyond standard packages
  • Manage resource allocation and budgeting across platform product initiatives, ensuring effective use of team capacity and investment
  • Lead and expand a team of technical and functional product owners
  • Act as the senior product counterpart to the VP Platform Engineering, owning the “why” and “what” while engineering owns the “how”
What we offer
What we offer
  • We offer a culture of mutual trust, support and passion – while providing individuals with opportunities to grow professionally and make a difference in the world
  • Fulltime
Read More
Arrow Right

Head of Product - Platform

As Head of Product - Platform at Hawk, you’ll take ownership of the long-term pr...
Location
Location
Germany , Munich, Berlin
Salary
Salary:
Not provided
hawk.ai Logo
Hawk
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in product leadership for SaaS platforms, ideally in high-scale or enterprise contexts
  • Proven track record defining roadmaps, SLAs, deployment strategies, and enterprise-ready processes
  • Strong technical understanding of microservices architectures, Kubernetes, databases, data lakes, BI/reporting, and APIs
  • Experience working with high-throughput, low-latency systems (e.g., payments or other critical transaction-heavy industries)
  • Skilled at bridging technical, customer, and commercial perspectives into clear product strategies
  • Strong operational skills, with experience in developer efficiency, resource planning, and budget ownership
  • Comfortable with product operations tools (e.g., Jira) and able to scale processes across teams
  • Excellent communicator and stakeholder manager, able to align engineering, product, and go-to-market teams
  • Fluent in English
Job Responsibility
Job Responsibility
  • Define and own the long-term platform product vision and roadmap, ensuring scalability, reliability, and security
  • Oversee and manage both product infrastructure and overarching platform services
  • Productize and create blueprints & processes around deployment & cloud hosting options including it’s SLAs, reporting, documentation for our global SaaS as well as our private cloud deployments
  • Develop enterprise blueprints and professional services models for customer-specific requirements, balancing scalability with flexibility
  • Collaborate with engineering leadership to ensure product execution is aligned with BAU necessities e.g. vulnerability, bug and incident management, roadmap priorities and long-term vision
  • Partner with sales, solutions, and finance to create pricing models & materials for complex enterprise cases beyond standard packages
  • Manage resource allocation and budgeting across platform product initiatives, ensuring effective use of team capacity and investment
  • Lead and expand a team of technical and functional product owners
  • Act as the senior product counterpart to the VP Platform Engineering, owning the “why” and “what” while engineering owns the “how”
What we offer
What we offer
  • culture of mutual trust, support and passion
  • opportunities to grow professionally and make a difference in the world
  • Fulltime
Read More
Arrow Right