
Posted a month ago
AI Product Security Manager
Thomson ReutersAI Product Security Manager
Perks & benefits
CommissionHealth InsurancePaid Leave
Requirements
8+ years product security experience, Experience managing senior security engineers, Ownership of Secure SDLC programs, Cloud platform expertise (AWS, Azure, or GCP), Proficiency in Python or Go, Knowledge of GenAI and LLM security
Skills
PythonGoAWSAzureGCPGenAILLMKubernetesTerraform
About the role
Responsibilities
- Lead and grow the Product Security Core team, managing and coaching senior Product Security Engineers.
- Own the Secure SDLC program, including threat modeling, secure design, code reviews, and vulnerability remediation.
- Lead the Secure AI program, defining security patterns for AI-powered features through design reviews and red-teaming.
- Build and operate security automation and AI-enabled capabilities, such as automated threat modeling and LLM security testing.
- Scale security as a developer experience by delivering self-service tooling, APIs, and CI/CD-native controls.
- Partner with engineering, architecture, and business leaders to translate technical risk into business impact.
Requirements
- 8+ years of experience in product security, application security, or software security engineering.
- Proven experience managing or leading senior security engineers.
- Demonstrated ownership of a Secure SDLC program across a multi-product organization.
- Hands-on experience with major cloud platforms (AWS, Azure, or GCP).
- Proficiency in Python, Go, or similar programming languages.
- Working knowledge of GenAI and LLM security, including prompt injection and model integrity.
- Strong communication skills with the ability to influence senior engineering leadership.
Preferred Qualifications
- Experience securing AI/ML platforms such as Vertex AI, SageMaker, or Bedrock.
- Experience building AI security capabilities like AI red teaming or automated remediation agents.
- Knowledge of software supply chain security (SBOM, SLSA, provenance).
- Familiarity with industry frameworks such as OWASP LLM Top 10, NIST CSF, or MITRE ATLAS.
- Experience with security at scale using Kubernetes, Terraform, or CDK.
- Relevant security certifications (e.g., OSCP, AWS Security Specialty, or GCP Professional Cloud Security Engineer).
Benefits
- Hybrid work model with flexible arrangements.
- Comprehensive health and wellness benefits, including mental health support.
- Career development through "Grow My Way" programming and a skills-first approach.
- Paid volunteer days and opportunities for social impact.
- Competitive compensation and retirement savings plans.
About the Company
Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media, helping them pursue justice, truth, and transparency.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeAI Product Security Manager
Thomson Reuters · Toronto
