Security Risk Program Lead

Founded in 2007, Airbnb has transformed the way people travel, connecting over 5 million hosts with more than 2 billion guests worldwide. Our platform offers unique stays and experiences, allowing travelers to immerse themselves in local cultures and communities.The Community You Will Join:At Airbnb, we prioritize trust. The Information Security team is crucial in nurturing and fortifying the confidence our users place in our platform, which enables millions to discover the world and feel at home anywhere. This team operates as a vital cross-functional entity within Airbnb, ensuring the security of our expansive ecosystem.The Impact You'll Make:As the Senior Program Manager for Information Security, you will spearhead operational initiatives, strategic planning, and efficiency enhancements within our InfoSec organization. You will collaborate with senior leadership across InfoSec and the broader company to scale security operations in alignment with our growth trajectory.A Day in Your Role:Strategic Planning: Lead biannual planning cycles, focusing on goal setting, cross-departmental collaboration, resource allocation, and budget oversight. Innovate frameworks to prioritize and distribute workloads across teams.OKR Performance Measurement: Establish and monitor Objective Key Results (OKRs) to assess the impact of strategic projects and operational processes.Project Execution: Oversee the implementation of significant organizational projects, ensuring timely delivery and fulfillment of objectives.Operational Optimization: Refine workflows to enhance efficiency, productivity, and scalability within InfoSec. Implement automation, process enhancements, and self-service solutions while leading change management efforts.Communication: Craft comprehensive InfoSec communications for the entire company, including reports and updates tailored for engineering teams.Budget Management: Manage budgetary requirements and ensure alignment with organizational goals.

Role Overview Trustly is hiring a Chief Information Security Officer (CISO) based in San Francisco, CA. This senior leader shapes the company’s approach to protecting sensitive information and meeting regulatory requirements. The CISO sets the direction for security strategy and works to maintain the integrity of Trustly’s systems. What You Will Do Develop and implement security strategies that address current and emerging threats Oversee risk assessments to identify and address vulnerabilities Ensure compliance with relevant regulations and standards Promote security awareness and best practices throughout the organization Work with teams across departments to embed security into daily business operations Collaboration and Leadership This role requires close partnership with leaders and staff across Trustly. The CISO helps build a culture where security is understood and valued at every level.

Join Our TeamFieldwire is actively seeking a talented and seasoned Director of Information Security to enhance our team. As a premier provider of Construction Software solutions, we pride ourselves on delivering top-notch security measures. This pivotal role is classified as Line of Defense 1, where you will spearhead the definition, ownership, and execution of our product security program, ensuring adherence to legal standards and regulatory frameworks. Ideal candidates will possess strategic thinking abilities, exceptional communication skills, and extensive expertise in product security protocols, technologies, and standards.Your ResponsibilitiesServe as the Product Business Information Security Officer for Fieldwire.Design, own, and execute a comprehensive product security enhancement plan.Evaluate and identify product security risks and vulnerabilities.Collaborate with management to embed security measures into our software products and business workflows.Provide security incident reports and mitigation strategies to management.Assist the Head of Construction Software Security & GRC in various cybersecurity initiatives.Engage closely with other Information Security Officers within Hilti, the Group CISO.Analyze evolving regulatory and legal changes (e.g., NIST, CRA, NIS2, EU AI data act), translating them into actionable requirements and overseeing their implementation.Independently manage projects pertaining to information and product security, from conception to implementation.Oversee specific security areas such as Cloud & AI Security or technical risk assessments within Fieldwire.Contribute to the ongoing enhancement of security architecture, ICS, and ICT & cyber risk management for Fieldwire.Maintain Fieldwire's SOC2 certification and support the Group's ISO27001 certification.Coordinate internal and external audits related to information and product security, ensuring the execution of resulting recommendations.

About Lumafield: Founded in 2019, Lumafield is at the forefront of modernizing manufacturing processes. Our team of seasoned engineers, with expertise spanning the entire product development cycle, identified the challenges posed by the intricate and costly nature of contemporary manufacturing. In response, we are committed to transforming this landscape.Engineers make critical decisions daily, and they require tools that provide comprehensive insights into their products. Lumafield delivers unparalleled visibility into product development through AI-driven solutions that pinpoint issues and yield quantitative data. Our innovative approach promises to redefine the creation, manufacturing, and application of complex products across various sectors. We have pioneered the use of industrial CT scanning—a crucial yet underutilized tool that allows for rapid, non-destructive inspection of vital components.By reengineering the entire system—from X-ray capture and computer vision analysis to web-based collaboration—we're making cutting-edge manufacturing technology accessible across all industries. Our mission is to continuously enhance intelligence, autonomy, and speed, paving the way for operational excellence and profound insights. And then we'll take it to the next level.About the Role: In the role of Chief Information Security Officer (CISO), you will take charge of Lumafield's security operations, overseeing everything from cloud infrastructure and product security to safeguarding customer data and ensuring regulatory compliance. This is a unique opportunity to shape the security culture and framework of a rapidly growing company that handles some of the most sensitive intellectual property globally, including proprietary product designs and internal manufacturing processes.Your position will report directly to the CEO and involve close collaboration with Engineering, Product, Operations, and Sales teams to ensure that security measures facilitate rather than hinder business operations.

Location: Remote (U.S. or Canada) Type: US Applicants – Full-Time; Canadian Applicants – Independent Contractor About Human Agency Human Agency is on an exciting trajectory of growth, actively seeking exceptional talent across various disciplines to meet the demands of our expanding pipeline of opportunities. Our mission is to recruit individuals ranging from creative producers to technical experts and entrepreneurial leaders, all of whom will play a crucial role in driving our next chapter of innovation and growth. We pride ourselves on being a company of doers. Our leaders are hands-on, our teams collaborate closely, and every member contributes to the delivery of our projects. Here, titles do not shield us from constructive feedback; we embrace critique, learn rapidly, and continually strive for excellence. The best ideas prevail, regardless of their origin, as our clients trust us to achieve the strongest outcomes consistently. We regard our clients’ missions, products, and bottom lines as paramount. By immersing ourselves in their worlds, we become dedicated stewards of their goals and partners in addressing significant challenges. Every product, strategy, or asset we develop is crafted to be not only aesthetically pleasing but also functional, practical, and designed for real-world impact. Our most valuable resource is our people, and our growth stems from hiring individuals who propel us forward. Across strategy, engineering, design, data, and operations, we seek teammates who elevate our standards and enhance our capabilities. We collaborate with organizations of all sizes to explore, design, and implement AI strategies that are secure, scalable, and centered around human needs. We believe that AI should enhance human potential rather than replace it, and we uphold this conviction in every engagement. Our services range from advisory and tooling to implementation and education, ensuring we meet clients where they are and aid them in integrating AI in alignment with their mission and values. Our objective is to empower teams to work smarter, move faster, and unlock new possibilities through thoughtful, responsible innovation. Ultimately, we lead with purpose, love, and a sense of adventure. We engage in meaningful work with individuals we value, making the journey rewarding and enjoyable. At Human Agency, our identity and our work philosophy are inseparable. The Opportunity This is not a conventional enterprise CISO position characterized by inheriting a legacy infrastructure and overseeing a large team while maintaining the status quo. Instead, this is a hands-on, entrepreneurial role where you will be at the forefront of AI security—designing systems yet to exist, tackling problems the industry is just beginning to recognize, and viewing security not merely as a cost center but as a strategic and commercial asset. We are actively deploying AI agents at scale across client environments, developing our own AI-powered tools, and advising organizations on the safe integration of autonomous systems into mission-critical operations.

Figma is seeking a Technical Program Manager to focus on security across its products and data. This position plays a key role in organizing and driving security projects, ensuring that teams work together to address risks and maintain high standards. Key responsibilities Coordinate security initiatives with multiple teams to help safeguard Figma’s products and data. Apply technical expertise to guide projects that improve security protocols. Collaborate with engineering, product, and other groups to address and solve security challenges. Location This role is based in San Francisco, CA, New York, NY, or can be located elsewhere within the United States.

Join Anchorage Digital as a key member of our Global Information & Security Team, where you will play a vital role in developing and scaling a pioneering security program. Your expertise will ensure the integrity of our data and the protection of our clients' digital assets while adhering to essential regulatory standards such as the Gramm–Leach–Bliley Act and guidelines from the Federal Financial Institutions Examination Council. You will be involved in comprehensive cybersecurity initiatives, conducting risk assessments, designing and implementing internal controls, and compiling insightful reports and metrics. As an authority in cybersecurity and IT risk management, you will lead projects independently and collaboratively across various departments. You will also assess risks to our Information Security Program, enhance controls to mitigate operational risks, and ensure the ongoing effectiveness of these controls. Your contributions will help shape the strategic direction of the Information Security Team and enrich the culture at Anchorage Digital.

CoreWeave specializes in cloud infrastructure for artificial intelligence, serving a range of clients from AI research labs to global enterprises. The company is listed on Nasdaq as CRWV. More information is available at www.coreweave.com. Role overview The Senior Data Center Security Site Evaluation Program Manager plays a key role in evaluating and managing security risks when selecting new data center sites. This position reports directly to the Senior Manager of Data Center Risk and Assurance. What you will do Lead security risk assessments for potential data center locations. Collaborate with Site Selection, Legal, and Security Design teams to ensure each site meets CoreWeave’s security and contractual requirements. Collaboration This role works closely with multiple internal teams to maintain high security standards during the expansion of CoreWeave’s data center footprint.

About StravaStrava is the premier application for active individuals. With a vibrant community of over 180 million athletes across more than 185 countries, Strava goes beyond mere workout tracking; it fosters collective progress, helping users form new habits and achieve personal bests. Regardless of your chosen sport or tracking method, Strava is your complete companion. Connect with your peers, surpass your goals, and ensure every effort counts. Embark on your journey with Strava today.Our mission is straightforward: to inspire individuals to embrace their best active lives. We harness the transformative power of movement to forge connections and propel people forward.Role OverviewWe are on the lookout for a Senior Technical Program Manager to spearhead intricate, high-priority security initiatives that intersect with Engineering, Infrastructure Product, Legal, Operations, and other cross-functional teams. This position will deliver dedicated program management support for security endeavors, ensuring transparent communication, efficient processes, and structured execution throughout the organization.The successful candidate will possess a robust background in managing complex technical programs, a thorough grasp of security principles, and the capacity to collaborate effectively with engineering and product teams to deliver secure, scalable solutions. You will excel in a dynamic, sophisticated atmosphere, overseeing programs from conception to delivery, mitigating risks, and ensuring alignment among various stakeholders.We embrace a flexible hybrid work model, which typically requires you to spend more than half your time on-site at our SF office — three days each week.Your ResponsibilitiesLead the end-to-end execution of multi-quarter security initiatives—including IAM upgrades, vulnerability management enhancements, compliance readiness projects, and security architecture modifications—from proposal to launch, operational rollout, and post-launch refinement.Facilitate collaboration among Engineering, IT, Product, Legal, and GRC, acting as the central point of alignment across time zones to eliminate ambiguity, streamline decision-making, and sustain progress.Manage program communications, creating clear status updates, designing and pulling key metrics, executive briefings, risk logs, and decision records to provide stakeholders at all levels with timely, actionable insights.Proactively identify and mitigate risks by executing structured assessments of dependencies, resources, and requirements.

About AnthropicAt Anthropic, we are dedicated to developing trustworthy, interpretable, and controllable AI systems. Our vision is to ensure that AI remains safe and beneficial for our users and society. Our rapidly expanding team consists of passionate researchers, engineers, policy specialists, and business leaders collaborating to create forward-thinking AI solutions.About the RoleIn the position of Technical Program Manager for Security, focusing on Coordinated Vulnerability Disclosure (CVD), you will establish and steer the initiatives that dictate how Anthropic responsibly reveals software vulnerabilities identified by our AI-driven tools, such as Claude, Patchy, and Claude Code. These advanced tools have already uncovered genuine zero-day vulnerabilities in critical software including Firefox and the Linux kernel. The challenge now extends beyond merely identifying vulnerabilities; it encompasses managing the fallout of these discoveries at an unprecedented scale and speed.Conventional coordinated disclosure frameworks were designed for a time when a researcher might uncover a significant vulnerability every few weeks. The AI-powered discovery landscape has dramatically transformed this paradigm; for instance, Claude can identify hundreds of issues within a single codebase in just one day. Your role is crucial in guaranteeing that every finding is communicated to the appropriate maintainer, at the right speed, with the necessary context, while ensuring Anthropic adheres to its Responsible Scaling Policy (RSP) commitments.You will oversee the complete CVD lifecycle: from internal assessment and human validation of AI-generated findings to tiered disclosure timelines and external coordination with vendors, open-source maintainers, and relevant organizations. This role necessitates extensive collaboration across Security Engineering, Legal, Communications, Product, and Frontier Red Team to ensure Anthropic serves as a responsible steward of the vulnerabilities its tools reveal.Responsibilities:Lead the CVD program strategy and implementation: Define and steer the roadmap for coordinated vulnerability disclosure, from AI-generated findings to maintainer notifications, remediation tracking, and public disclosure. Ensure alignment with Anthropic’s security posture and RSP compliance requirements.Oversee internal triage and quality assurance: Establish and manage a human review process to validate all AI-generated findings before external disclosure. Set minimum confidence thresholds and deduplicate against known CVEs.

The City and County of San Francisco is seeking a Senior Information Systems Engineer with a focus on security to join our dedicated team across multiple departments citywide. This role is crucial for enhancing the security posture of our information systems, ensuring the safety and integrity of city data.The ideal candidate will possess a robust background in information systems engineering, with a strong emphasis on security protocols, risk management, and system architecture. You will be responsible for designing, implementing, and maintaining security solutions that protect sensitive information.

About UsTwitch is the largest live streaming platform globally, fostering vibrant communities around gaming, entertainment, music, sports, cooking, and more. Every day, thousands of communities unite to share their passions.We are dedicated to community collaboration. Our team members are enthusiastic about teamwork, innovation, and problem-solving. If you’re passionate about empowering live communities, we invite you to explore our initiatives on LinkedIn, X, and our Blog. Don’t forget to check out our Interviewing Guide to prepare for our hiring process.

Are you passionate about cybersecurity and eager to take on a leadership role in shaping security strategies? As the Field Chief Information Security Officer (CISO) for the Pacific Northwest region, you will drive impactful initiatives that enhance cybersecurity postures for our clients.Your role will involve collaborating with cross-functional teams to implement effective security measures, conducting risk assessments, and presenting security solutions that align with our clients' business objectives. You will be at the forefront of ensuring the highest standards of security practices.

Join the City and County of San Francisco as a Information Systems Engineer specializing in Security. In this pivotal role, you will be responsible for designing, implementing, and maintaining secure information systems across multiple city departments. You will collaborate with various stakeholders to ensure the integrity and confidentiality of sensitive data while adhering to best practices and regulatory requirements.

Waymo is at the forefront of autonomous driving technology, dedicated to becoming the world's most trusted driver. Originating from the Google Self-Driving Car Project in 2009, our focus has been on developing the Waymo Driver—The World’s Most Experienced Driver™—aimed at enhancing mobility access and significantly reducing traffic-related fatalities. The Waymo Driver is the backbone of our fully autonomous ride-hailing service and can be adapted for various vehicle platforms and applications. With over ten million rider-only trips and a remarkable experience of over 100 million miles driven autonomously on public roads, alongside extensive simulation across more than 15 U.S. states, we are poised for the future.Waymo’s Technical Program Managers are pivotal in executing our roadmap through strategic cross-functional planning, clarity, and proactive risk management. We thrive in navigating complex technical and operational challenges without predefined guidelines, acting with thoughtful urgency to drive meaningful conversations and outcomes. Our team collaborates intimately with all facets of Waymo to structure, oversee, and propel the work necessary for real-world deployments of the Waymo Driver across diverse platforms and regions.This position follows a hybrid work model and reports directly to the Director of Technical Program Management.Your Responsibilities:Lead the management of international expansion programs, establishing strong and scalable frameworks to introduce Waymo in new countries.Advance the new market framework to support future growth into additional regions.Own and drive critical cross-functional activities necessary for market entry and launch in new countries, focusing on vehicle, software, regulatory, compliance, policy, external engagement, and partner readiness.Coordinate deliverables across both internal and external teams, optimizing workflows and processes as necessary.Proactively identify and mitigate business-critical risks and dependencies.Keep stakeholders informed and aligned, representing programs to senior leadership and escalating issues as needed to eliminate obstacles.Your Qualifications:Over 10 years of experience managing intricate cross-functional programs.Proven track record in driving international expansion initiatives with a comprehensive understanding of market-entry functions (e.g., Product, Engineering, Legal, External Engagement).Exceptional leadership capabilities, with strong communication skills and the ability to inspire and align teams.

Fastly is seeking a Senior Program Manager for Executive Planning & Operations. This position is available in Denver, CO, New York City, NY, or San Francisco, CA. The Senior Program Manager will play a central role in driving product development and engineering programs, working with leaders across Program Management, Product, Engineering, Marketing, Customer Success, Sales, and other departments to support business objectives. Key Responsibilities Lead the execution of major product and engineering initiatives that shape Fastly's edge cloud platform. Collaborate with cross-functional teams to develop project plans and guide them toward successful outcomes. Support teams in building strategies, coordinating workflows, and meeting commitments. Oversee multiple projects simultaneously, maintaining transparency and providing progress updates to management. Apply data to inform prioritization and identify risks or obstacles early. Enable teams to enhance Fastly’s products, platform, and tools to deliver greater value for customers. Ensure that project outcomes clearly benefit customers and contribute to business results. Collaboration and Reporting This role involves close coordination with a range of teams and reports directly to the Director of Program Management. Team Environment Fastly supports a global, distributed team culture that values learning, growth, and humility. Team members are encouraged to collaborate openly and focus on building services that meet high industry standards for customers. Application Timeline Posting Open Date: 3/9/26 Anticipated Posting Close Date: 6/9/26 The job posting may close early if applicant volume is high.

The City and County of San Francisco is seeking a dynamic and experienced Principal Information Systems Engineer with a specialization in Security. This role spans multiple departments citywide, providing the opportunity to make a significant impact on the security posture of our information systems.In this position, you will lead initiatives to enhance cybersecurity measures, implement best practices, and ensure compliance with industry standards. You will collaborate with various stakeholders to identify risks and develop strategies to mitigate them. Your expertise will be crucial in safeguarding sensitive data and maintaining the integrity of our systems.

Role overview Pano AI seeks a Senior Technical Program Manager - Operations to join the team in San Francisco, California. This position plays a key role in shaping operational strategies and guiding cross-functional teams to deliver impactful projects. The focus is on refining processes and driving greater efficiency across the organization. What you will do Coordinate and lead teams from different departments to achieve project objectives Manage operational projects from initial planning stages through to completion Spot opportunities to streamline workflows and enhance efficiency Use technical program management skills to address operational challenges Requirements Background in managing technical programs within operational settings Strong collaboration skills with diverse stakeholders Demonstrated success in delivering projects and improving processes

Join the City and County of San Francisco as an Assistant Information Systems Engineer specializing in Security. This entry-level position offers a unique opportunity to work across multiple departments citywide, contributing to the enhancement of our IT security infrastructure.Your role will involve assisting in the design, implementation, and maintenance of information security systems, ensuring data integrity and protection against cyber threats. If you are passionate about technology and eager to develop your skills in a supportive environment, we encourage you to apply!