Technical Product Manager

Short facts about us:

• We are a global remote-first team of 100+ people on 4 continents and in 10+ countries.
• We have been protecting our clients since 2014.
• The company has raised over $10M in investments.
• More than 200 customers around the world, including Fortune 500, Nasdaq, and high-growth startups choose Wallarm to protect their API and web applications.
• The company passed Y Combinator, the most prestigious incubator in Silicon Valley, from which Dropbox, Stripe, Docker, etc. came out.

Our product:

Wallarm API security solutions provide proven performance to support innovative companies serving millions of users and billions of API requests per month. Hundreds of Security and DevOps teams globally use Wallarm daily to:

1. Discover. See every asset across your entire attack surface—from cloud environments to every API endpoint with auto-discovery capabilities.
2. Protect. A single suite that goes beyond OWASP Top 10 for full coverage for API specific threats, account takeover, malicious bots, L7 DDoS, and more.
3. Respond. Streamline incident response with complete visibility, smart triggers, and active threat verification.
4. Test. Automate security testing of your APIs and web assets. Prioritize remediation for every asset, in every environment.

About this opportunity:
As a Technical Product Manager, you will be responsible for developing the Wallarm products from an applied information security point of view.
In this role you will:

• Develop and maintain a detailed requirements backlog and a roadmap supported by market analysis and competitive positioning
• Work with product managers to align the technical execution of features with the product strategy.
• Launch products and onboard customers to deliver and measure the actual value of features
• Take an active role in defining the future of Wallarm products, and suggest new innovative features that can become competitive advantages
• Work closely with customers to ensure that delivered features meaningfully solve customer problems
• Collect and analyze attack/threat reports covering new threats, vulnerabilities, products, and research
• Facilitate communication and work collaboratively throughout the development process between various internal teams, including engineering, marketing, sales, customer support, and executives
• Take part in the review, quality control, and technical design of the current and further threat detection and prevention mechanisms.
• Organization of the process of analyzing actual WAB/API threats; on-time product technical reaction
• Organization and leading the complex security research

In this role you’ll need:

• Proven technical background in the security domain or DevOps/Cloud Native/SE experience;

• Understanding of various protocols and attacks on them (JWT, GraphQL, WebSockets, etc.);

• Knowledge of TCP, and UDP protocols, how each of them works, and what it is used for;

• Able to decompose technically complex tasks, formulate appropriate subtasks;

• Monitor adherence to established policies and processes;

• Experience working with developers to create and execute software requirements;

• Experience working with customers to understand their problems and design solutions;

• The ability to communicate effectively with information security practitioners at both a technical and conceptual level;

• Proficient in English.

Nice to have:

• Deep knowledge of all types of attacks on APIs (CWE, OWASP Top 10, OWASP API Top 10);

• Knowledge of what Kubernetes/helm is, an in-depth understanding of working with it and its necessity, ability to perform basic operations;

• Experience in web/api application audits;

• Participation in bug bounty (profile on https://www.hackerone.com/);

• IS certifications (OSCP, OSWE, etc.);

• Experience in Linux administration;

• Professional publications and/or speaker experience at specialized conferences;

• Proficiency in one of the programming languages ​​(ruby/python/go);

• Product Management experience.

What we offer:

• Ability to work on a product that makes the Internet safer
• Completely remote work and flexible working hours
• Competitive salary and bonuses
• Paid days off
• Medical insurance
• Working equipment
• Professional development and career growth