ProdSecOps Manager

<div class="content-intro"><div><strong>About Us</strong></div> <div> <p>At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was named to Entrepreneur Magazine’s Top Company Cultures list and ranked among the World’s Most Innovative Companies by Fast Company. </p> <p><span style="font-weight: 400;">We realize people do not fit into neat boxes. We are looking for curious and empathetic individuals who are committed to developing themselves and learning new skills, and we are ready to help you do that. We cannot complete our mission without building a diverse and inclusive team. We hire the best people based on an evaluation of their potential and support them throughout their time at Cloudflare. Come join us! </span></p> </div></div><p><strong>Location(s) Available:</strong> Bangalore, India<br><br><strong>About the Team</strong></p> <p>The <strong>Product Security Operations</strong> team is the central nervous system of Cloudflare’s security posture. We manage the end-to-end lifecycle of vulnerabilities across our entire global product suite. This team bridges the gap between external security researchers, automated scanning telemetry, and our core engineering squads. As the Manager of this team, you will lead a high-performing group of engineers to ensure that security findings are not just identified, but systematically eradicated.</p> <h3><strong>About the Role / What You’ll Do</strong></h3> <p>As an Engineering Manager, you will transition from individual execution to <strong>Strategic Alignment and People Leadership</strong>. You will be responsible for the "Remediation Engine" of the company, ensuring your team has the resources, clear priorities, and technical guidance to secure Cloudflare’s CI/CD pipeline.</p> <h4><strong>1. People Leadership Mentorship</strong></h4> <ul> <li><strong>Growth Coaching:</strong> Directly manage and mentor a team of security engineers, focusing on their career progression from manual triage to security automation and architectural thinking.</li> <li><strong>Technical Stewardship:</strong> Support senior engineers in designing high-level security "Guardrails" and "Secure-by-Default" libraries, ensuring technical visions align with operational workloads.</li> <li><strong>Performance Management:</strong> Set clear KPIs for the team, focusing on signal-to-noise ratios, mean-time-to-remediate (MTTR), and researcher satisfaction.</li> </ul> <h4><strong>2. Operational Strategy</strong></h4> <ul> <li><strong>Vulnerability Pipeline Management:</strong> Oversee the global intake of findings from Bug Bounty platforms, SAST, DAST, and SCA. Ensure the team identifies patterns requiring systemic fixes rather than just "clearing tickets."</li> <li><strong>Incident Escalation:</strong> Act as the primary escalation point for critical product vulnerabilities. Partner with VPs of Engineering and the CTO to decide when to accept risk for speed versus when to mandate architectural halts.</li> <li><strong>Tooling Roadmap:</strong> Define the long-term roadmap for security automation—moving the team from manual "chasing" to automated remediation workflows and Slack/Jira integrations.</li> </ul> <h4><strong>3. Cross-Functional Influence</strong></h4> <ul> <li><strong>Stakeholder Management:</strong> Partner with Product Managers and Engineering Directors to integrate security remediation into their ... (truncated, view full listing at source)