Director of Product Security

About Copado

Copado is the leading DevOps platform for Salesforce. We help companies deliver faster, higher quality releases with greater control and visibility. Our mission is to empower Salesforce teams to achieve true enterprise agility. We're a fast-growing, innovative company with a global presence, and we're looking for passionate individuals to join our team and help us shape the future of DevOps.

Role Overview

The Director of Product Security defines and evolves the enterprise security architecture and engineering strategy. This leader guides the evaluation, selection, and implementation of security technologies while establishing architectural principles and engineering standards aligned with business objectives.

This role bridges strategy and execution, leading security engineering efforts across application security, cloud, infrastructure, vulnerability management, and IT operations. The Director embeds security into the software development lifecycle and enterprise platforms while developing engineering talent and driving a shift from reactive tooling to an architecture-first security model that delivers measurable risk reduction and business enablement.

Key responsibilities

Security Architecture Strategy & Governance

• Define and execute the enterprise security architecture vision and roadmap across cloud, application, infrastructure, and operational domains.
• Establish architecture principles, standards, reference patterns, and decision frameworks for enterprise-wide security initiatives.
• Align security architecture with enterprise architecture, compliance requirements, and business strategy.
• Serve as the primary architectural authority for security.

Security Engineering Leadership

• Lead evaluation, proof of concept, and implementation of security platforms and controls.
• Define measurable success criteria and ensure technologies deliver operational and business value.
• Guide secure integrations across cloud platforms, SaaS ecosystems, and hybrid environments.
• Architect scalable integrations between security tooling, automation frameworks, and AI-driven capabilities to enhance prevention, detection, and response.

Secure Software & DevSecOps Enablement

• Embed security architecture into the SDLC and CI/CD pipelines.
• Partner with engineering leaders to implement secure coding standards, automated testing, and shift-left practices.
• Advance product security maturity through secure-by-design principles.

Cross-Functional Leadership & Incident Advisory

• Partner with IT, Engineering, Infrastructure, and Compliance teams to integrate security into enterprise initiatives.
• Act as a senior escalation point during complex security incidents and drive architectural improvements from lessons learned.
• Lead and mentor security engineering managers and senior engineers, fostering architectural thinking and strategic execution.
• Drive cultural transformation toward scalable, architecture-driven security programs.

What You'll Contribute

• A unified and forward-looking security architecture vision.
• A modernized engineering ecosystem optimized for automation, scalability, and measurable risk reduction.
• Secure-by-design integration across the product lifecycle.
• Strategic integration of AI and automation within the broader security architecture.
• Executive translation of business priorities into architectural strategy.
• A mature, architecturally aligned security organization prepared for growth and regulatory expansion.

What We're Seeking

• 7+ years of relevant experience.
• Demonstrated success defining and executing enterprise security architecture strategy.
• Deep expertise in cloud security, application security, DevSecOps, vulnerability management, and modern security operations.
• Experience in developing technical resources.
• Ability to design scalable architecture patterns across complex, multi-cloud environments.
• Strategic mindset.
• Proven ability to evolve security organizations from tactical operations to architecture-first programs aligned with business goals.

Cultural Competencies

• Bias for Action: Takes full ownership of infrastructure problems and drives to solutions with urgency.
• AI-Driven Mindset: Views AI as a strategic lever for improving developer experience, automation, and infrastructure quality.
• Ownership & Accountability: Proactively solves problems and treats the platform's infrastructure as their own product.
• High Standards: Maintains exceptional attention to system reliability, scalability, and maintainability.
• Continuous Improvement: Proactively identifies opportunities to modernize legacy cloud layers and reduce technical debt.

Benefits

• Copado offers a comprehensive benefits package, which includes:
• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• 401(k) Plan
• Paid Time Off
• Wellness Perks

Copado is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Copado does not accept unsolicited headhunter and agency resumes. Copado will not pay any third-party agency or company that does not have a signed agreement with Copado.

#LI-Onsite