CrawlJobs Logo

Product Lead, Access and Security

United States, Bay Area 168300.00 - 297000.00 USD / Year · Job Posted January 26, 2026
Apply Position
Job Link Share

Job Description

As a Product Lead on the Access team, you will own core Cash App account and access primitives including sign-up, login, and security features. These are foundational platform services that not only enable access to Cash App products but also support consumer workflows across Block. You will be responsible for the team’s vision, platform strategy, roadmap prioritization, and customer and business impact and will drive high-impact initiatives from inception through execution. This role will require a platform focus to optimize and expand on current features through customer research, analysis, experimentation, and product validation, as well as the creativity to dream up and build new features to improve our user experience to expand financial access to millions of customers around the world.

Job Responsibility

  • Own the full product lifecycle—from ideation and strategy to design, implementation, and iteration—for experiences and infrastructure that deepen customer trust
  • Lead a full stack development team (engineers, designers, researchers, data scientists) to ship innovative and incredible experiences at scale
  • Drive product strategy through customer insights, opportunity sizing, and rigorous prioritization—delivering the highest-impact solutions for our customers and business.
  • Structure and improve our team's processes to enhance execution velocity, making tactical tradeoffs between business priorities and resources
  • Drive effective cross-functional partnership, constantly inspiring and influencing colleagues in legal, compliance, support, machine learning, and other product areas to deliver on goals and maximize impact
  • Define the framework and metrics to measure the impact of the team
  • deeply understand the core drivers and monitor progress
  • Manage the roadmap to deliver on this strategy, balancing short term goals with long term vision.
  • Work with cross functional team members distributed across the four US times zones and Melbourne, Australia

Requirements

  • 8+ years of product management experience with a strong familiarity of platform engineering infrastructure and a proven track record of delivering outstanding products at scale
  • Outstanding leadership skills
  • the ability to inspire team members and drive collaborative decision-making across geographically dispersed cross-functional teams
  • Incredible business sense and a high degree of comfort with ambiguity, and a knack for quickly ramping on new skills and functions. You excel in a fast-paced, dynamic environment
  • Exceptional prioritization and cross-functional stakeholder management, particularly influencing compliance/legal and external partners in a highly regulated industry
  • Excellent oral and written communication and narrative storytelling skills. You can frame and distill complex information appropriately for different audiences and are comfortable regularly presenting to and guiding Cash App's most senior leaders.
  • An analytical mindset with the ability to distill and communicate complicated data to make decisions, determine roadmap prioritization, and understand and communicate customer and business impact
  • Exceptional team management and organizational skills. You've built and scaled cross-functional teams and processes.
  • A hunger to tackle complicated and impactful customer and business problems

Nice to have

Experience in the fintech industry with demonstrated knowledge of industry best practices

What we offer

  • Remote work
  • medical insurance
  • flexible time off
  • retirement savings plans
  • modern family planning

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Product Lead, Access and Security

8 matching positions

Hcm Security Product Lead

HCM Security is core to ensuring our users have the right access to the right ro...
Location
Location
United States , San Francisco; Sunnyvale
Salary
Salary:
211000.00 - 234000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in Oracle HCM Cloud security architecture and administration
  • Proven experience in the Technology Sector in a fast paced and dynamic environment
  • Deep understanding of RBAC frameworks, security profiles, and data roles within a complex HR ecosystem
  • Strong background in security compliance, audit requirements, and re-certification processes
  • Ability to manage technical backlogs and prioritize tasks based on business impact and risk
  • Excellent communication skills to align with leadership on security strategy and process improvements
Job Responsibility
Job Responsibility
  • Manage the Oracle HCM Security scope focusing on Security Model Governance
  • Oversee design and implementation of RBAC across HCM landscape
  • Manage lifecycle of user access including initial provisioning and periodic security re-certifications
  • Lead resolution of HR Security tickets and manage development backlog for security enhancements
  • Partner with HCM Security team and broader Data Products workstreams including Operational Reporting and Data Governance
What we offer
What we offer
  • Bonus program
  • Equity award
  • 401(k) plan
  • Various benefits
  • Fulltime
Read More
Arrow Right

Senior Identity and Access Management Lead

The Senior Identity and Access Management Lead will be responsible for implement...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience implementing, operating, and maintaining access management solutions supporting single sign-on
  • 5+ years of experience in implementing a Modern Policy Based Access Control Authorization (PBAC) Methodology leveraging user Attributes to Enforce Access Controls According to Business Policies Dynamically
  • Deep understanding of Zero Trust & Secure Access Service Edge (SASE) technologies
  • Demonstrated experience with authentication and authorization technologies and protocols such as SAML, WS-Fed, OAuth, OpenID/OpenID Connect, one-time passcodes, PKI, derived credentials, FIDO, PBAC, RBAC
  • Strong knowledge of containerization technologies such as Docker and container orchestration with Kubernetes
  • Experience in managing projects, leading operational process change and improvement and delivering infrastructure technologies products and services
  • Experience in financial services or large complex and/or global environment preferred
  • Experience developing projects for the identification of best practices (design of metrics, analytical tools, benchmarking activities, and related reporting)
  • Consistently demonstrate clear and concise written and verbal communication with ability to communicate technical concepts to a non-technical audience
  • Proven analytical, diagnostic, and multitasking skills with focus on execution and attention to detail
Job Responsibility
Job Responsibility
  • Review the design for Modern Policy Based Access Control Authorization (PBAC) infrastructure with architecture and engineering teams
  • Deploy system capabilities incrementally and provide user authentication, SSO, federation, Role-Based and Attribute-Based Access Control
  • Manage auditing and reporting capabilities that are integrated with Citi enterprise logging and monitoring tools
  • Conduct work on a variety of high-impact, high-profile problems/projects such as creating complex project plans and conducting project-related research
  • Provide in-depth and sophisticated analyses, technical guidance and direction and identify and monitor key indicators to gauge performance and identify trends
  • Identify and resolve issues, engaging in Root Cause Analysis (RCA)
  • Conduct responsibilities such as quality control, work allocation, coaching/mentoring, ensuring ongoing compliance with regulatory requirements
  • Appropriately assess risk when business decisions are made, demonstrating consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Understand diverse stakeholder needs and share and influence stakeholder expectations
  • Fulltime
Read More
Arrow Right

Product Manager, Security and Compliance

Crusoe is on a mission to align the future of computing with the future of the c...
Location
Location
United States , San Francisco; Sunnyvale
Salary
Salary:
237000.00 - 288000.00 USD / Year
crusoe.ai Logo
Crusoe
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of Product Management experience, with a strong focus on cloud security, infrastructure platforms, or DevSecOps
  • Strong understanding of cloud infrastructure and security concepts, including Kubernetes security, cloud networking, and the evolving security challenges of LLMs and Generative AI
  • Proven experience navigating SOC 2
  • familiarity with HIPAA and FedRAMP is a strong plus
  • Comfort operating in an early-stage, high-growth environment and building product processes from scratch
  • Ability to deeply understand customer needs and advocate for them across technical and non-technical stakeholders
  • Strong written and verbal communication skills, with experience influencing senior leaders and executives
  • Highly proactive, self-directed, and decisive, with strong product judgment
  • Bachelor’s degree in Computer Science or a related technical field (or equivalent practical experience)
  • Genuine passion for Crusoe’s climate mission and sustainable infrastructure goals
Job Responsibility
Job Responsibility
  • Define and execute the long-term vision for cloud security capabilities, including Identity & Access Management (IAM), VPC networking, encryption at rest and in transit, key management, and audit logging
  • Build security guardrails for the full model lifecycle, ensuring customer data privacy, isolation, and secure execution environments for managed inference workloads
  • Lead the product side of major compliance initiatives (SOC 2 Type II required
  • ISO 27001, HIPAA, and eventually FedRAMP), partnering with Legal, Security, and Engineering to unblock high-growth customer segments
  • Develop customer-facing security documentation, trust centers, and compliance artifacts that clearly communicate Crusoe’s security posture to CISOs and technical buyers
  • Collaborate closely with Engineering, DevOps, SRE, Legal, Finance, Customer Success, and executive stakeholders to define requirements, execution plans, and operating models
  • Engage directly with current and prospective customers to understand real-world security and compliance needs and translate them into scalable product solutions
What we offer
What we offer
  • Restricted Stock Units in a fast growing, well-funded technology company
  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
  • Employer contributions to HSA accounts
  • Paid Parental Leave
  • Paid life insurance, short-term and long-term disability
  • Teladoc
  • 401(k) with a 100% match up to 4% of salary
  • Generous paid time off and holiday schedule
  • Cell phone reimbursement
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Digital Adoption And Workplace Experience Product Owner Lead

Location
Location
United States , Pittsburgh
Salary
Salary:
Not provided
ppg.com Logo
PPG Industries
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information technology, Computer Science or a related field
  • 6+ years of experience in IT, digital workplace, product ownership, or digital adoption roles
  • 4+ years of people management experience leading teams or functional groups
  • Preferred experience leading enterprise M365 adoption programs, DAP initiatives, governance models, and global change initiatives
  • Product Owner or Product Management certifications
  • Change Management or Digital Adoption certifications
  • Technical understanding of platforms: Microsoft 365 applications, Copilot, agents, and enterprise IT ecosystems
Job Responsibility
Job Responsibility
  • Own the enterprise productivity tooling portfolio, including M365 and other productivity, collaboration, and digital enablement tools
  • Define the enterprise productivity roadmap, ensuring alignment to business priorities and employee experience outcomes
  • Define and own the enterprise M365 adoption and enablement roadmap, with a strong focus on Copilot capabilities, releases, and enablement
  • Lead the end-to-end Copilot implementation strategy, including pilots, phased rollouts, scaling, and continuous improvement
  • Partner closely with Microsoft and GWS to plan and execute Copilot implementations, training, and adoption programs
  • Define the vision, governance, and operating model for Copilot Agents, including standards for deployment and scale
  • Build, lead, and mature the Digital Adoption Platform (DAP) Center of Excellence, including operating model, governance, standards, and ways of working
  • Define and enforce governance standards for: Copilot and Copilot Agents usage, Agent lifecycle management, Security, privacy, compliance, accessibility, and data protection
  • Continuously evolve governance models as Copilot and Agents capabilities mature
  • Act as a trusted advisor to GWS, Microsoft, and senior leaders
  • Fulltime
Read More
Arrow Right

Security Engineering Manager, Identity and Access Management

Meta's security team is the central engine driving data and systems security at ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Meta will accept a Bachelor’s degree in Computer Science, Computer Software, Computer Engineering, Applied Sciences, or related field, followed by five years of progressive, post-baccalaureate work experience in the job offered or in a computer-related occupation
  • 5+ years of experience building, leading, and managing software or security engineering teams in the Identity & Access Management domain
  • Demonstrated experience working with many cross-functional partners and managing programs that require management team support and buy-in
  • Experience providing technical leadership and guidance, and thinking strategically and analytically to solve problems
  • BS or MS in Computer Science, Engineering, or a related technical discipline or equivalent experience
Job Responsibility
Job Responsibility
  • Support a team of security engineers that build and improve access control systems at Meta. Provide technical guidance and mentoring to the engineers on the team. Advocate for the team’s technical interests and needs
  • Support a team of engineers to build automated risk reduction and compliance solutions specially focused on Access Management space
  • Serve as an evangelist for the Access Management function and overall collaborative environment, both internally and externally
  • Support, grow, and lead an organization responsible for building services that secure Meta’s infrastructure, services, and data through effective access policies, standards, and controls
  • Work closely with engineering leaders across the company to help them prioritize security issues in their products and drive adoption of the systems the team builds
  • Build and maintain reports, dashboards, and metrics around access controls by mining data analytically and extracting operational insights that drive continuous improvement
  • Help define Meta's global security priorities, with a focus on helping the company manage access to user data
  • Develop relationships and work cross-functionally with many partners across organizations and functions, and as a result, increase the impact of the team’s work
  • Manage the best engineers in the world, including helping to hire and grow the team
  • Manage performance of the team and recognize high performers and support those who are struggling
Read More
Arrow Right

Lead Technical and Strategic Advisor - Office of the CISO - Customer Security Management

The Office of the Chief Information Security Officer (CISO) is accountable for m...
Location
Location
United States , Multiple Locations
Salary
Salary:
165600.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree AND 8+ years experience in engineering, product/technical program management, data analysis, or product development OR equivalent experience
  • 6+ years of experience managing cross-functional and/or cross-team projects
  • Candidates must be able to meet Microsoft, customer and/or government security screening requirements are required for this role
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Citizenship & Citizenship Verification: This role will require access to information that is controlled for export under export control regulations, potentially under the U.S. International Traffic in Arms Regulations or Export Administration Regulations, the EU Dual Use Regulation, and/or other export control regulations
  • Citizenship & Citizenship Verification: This position requires verification of citizenship due to citizenship-based legal restrictions
  • Bachelor's Degree AND 10+ years experience cybersecurity, security engineering, or security product/technical program management OR equivalent experience
  • Experience serving as a Chief Information Security Officer (CISO) or Deputy CISO
  • Passion and curiosity for learning and staying abreast of the latest trends and innovations in the security and AI fields
  • Strong knowledge and expertise in security, including challenges, solutions, standards, best practices, and ability to understand and translate customer needs and expectations
Job Responsibility
Job Responsibility
  • Leverage deep cybersecurity, technical expertise to build external and internal relationships that maximize value to customers, helping them navigate the complex, evolving security AI landscape
  • Represent Microsoft as a trusted and credible voice on security matters in, such as speaking at events, participating in panels, contributing to publications, etc
  • Develop and maintain a deep understanding of the security needs, challenges, and opportunities, including industry trends and innovations and the customer pain points and expectations
  • Solicit customer input for security improvements, promotes security best practice sharing, addresses complex security issues, and resolves high-level escalations
  • Build and nurture relationships with key internal stakeholders, customers, and other influencers in the global security community
  • Identify and pursue opportunities for collaboration and co-innovation with internal teams and the customer community on security matters, such as joint research, pilots, case studies, white papers, etc
  • Design and deliver programs and initiatives that engage and educate customers on Microsoft's security practices, capabilities, and CISO office roadmap
  • Collaborate with communications teams to leverage existing channels such as webinars, workshops, and roundtables to deliver topical information
  • Leads the development of feedback channels to gather and synthesize input from customers on security needs and drives awareness across teams and leadership
  • Fulltime
Read More
Arrow Right
New

Agentic Identity & Access Security Architect

Our client is a leading global investment management company headquartered in Lo...
Location
Location
Poland; United Kingdom
Salary
Salary:
Not provided
Intellias
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in security architecture and/or platform engineering, with a track record of shipping production code
  • Principal / Staff-level depth, ideally in a high-velocity or quant / financial-services engineering culture
  • Deep, mechanical command of modern identity and authorisation: OIDC / OAuth2 / JWT — token issuance flows, claims design, and delegation / impersonation patterns
  • Hands-on HashiCorp Vault experience, including dynamic / short-lived secrets and the realities of migrating off long-lived tokens without breaking a large application estate at once
  • Keycloak policy modelling, ideally with the Terraform-driven configuration the firm already uses
  • Strong Terraform / IaC fluency — enough to design repeatable, self-service patterns that others adopt, rather than bespoke per-team setups
  • Working knowledge of the Active Directory + Entra legacy reality: nested groups, LDAP-backed role mapping, and the distribution-list-as-permission-group failure mode — able to design around the mess pragmatically
Job Responsibility
Job Responsibility
  • Design and ship IaC-driven, self-service identity patterns that roll out firm-wide without requiring a full Active Directory cleanup first
  • Define the currently undefined agentic runtime security model: containerised code execution, permission delegation to agents, and MCP-based tool access
  • Lead the transition from long-lived secrets toward ephemeral, time-based, risk-scored credentials, scoped to task duration and issued via JWT / OIDC
  • Layer LLM / software guardrails (policy-as-text plus human review) on top of whatever hard guardrails are feasible across the estate
  • Establish an opinionated onboarding standard (e.g. mandatory MCP interfaces) and win adoption through better defaults and developer experience, not mandate alone
  • Design SIEM integration, behavioural baselining, and anomaly detection for agentic workflows, and centralise siloed audit logs to satisfy both security and regulatory requirements
  • Take bounded beachheads (for example, authenticate users and then delegate scoped access to internal systems) from vague to delivered
Read More
Arrow Right
New

Senior Agentic Identity & Access Security Engineer

Our client is a leading global investment management company headquartered in Lo...
Location
Location
Poland;Spain;United Kingdom
Salary
Salary:
Not provided
Intellias
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years in security architecture and/or platform engineering, with a track record of shipping production code. Principal / Staff-level depth, ideally in a high-velocity or quant / financial-services engineering culture
  • Deep, mechanical command of modern identity and authorisation: OIDC / OAuth2 / JWT — token issuance flows, claims design, and delegation / impersonation patterns
  • Hands-on HashiCorp Vault experience, including dynamic / short-lived secrets and the realities of migrating off long-lived tokens without breaking a large application estate at once
  • Keycloak policy modelling, ideally with the Terraform-driven configuration the firm already uses
  • Strong Terraform / IaC fluency — enough to design repeatable, self-service patterns that others adopt, rather than bespoke per-team setups
  • Working knowledge of the Active Directory + Entra legacy reality: nested groups, LDAP-backed role mapping, and the distribution-list-as-permission-group failure mode — able to design around the mess pragmatically
Job Responsibility
Job Responsibility
  • Design and ship IaC-driven, self-service identity patterns that roll out firm-wide without requiring a full Active Directory cleanup first
  • Define the currently undefined agentic runtime security model: containerised code execution, permission delegation to agents, and MCP-based tool access
  • Lead the transition from long-lived secrets toward ephemeral, time-based, risk-scored credentials, scoped to task duration and issued via JWT / OIDC
  • Layer LLM / software guardrails (policy-as-text plus human review) on top of whatever hard guardrails are feasible across the estate
  • Establish an opinionated onboarding standard (e.g. mandatory MCP interfaces) and win adoption through better defaults and developer experience, not mandate alone
  • Design SIEM integration, behavioural baselining, and anomaly detection for agentic workflows, and centralise siloed audit logs to satisfy both security and regulatory requirements
  • Take bounded beachheads (for example, authenticate users and then delegate scoped access to internal systems) from vague to delivered
Read More
Arrow Right