Australian Competition and Consumer Commission
Staff Technical Program Manager - Security
Australian Competition and Consumer Commission, Mountain View, California, us, 94039
Staff Technical Program Manager - Security
Who we are
Aurora’s mission is to deliver the benefits of self-driving technology safely, quickly, and broadly.
The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone.
At Aurora we tackle massively complex problems alongside other passionate, intelligent individuals, growing as experts while expanding our knowledge. The mission of Aurora’s Security Technical Program Management (TPM) team is to embed security into every aspect of Aurora’s products—spanning software, hardware, and services.
You will act as a bridge between Security and Product teams, moving seamlessly between high‑level strategy and detailed execution to ensure that complex, cross‑functional security programs are successfully integrated into product development. Your ability to lead, influence, and manage large‑scale security initiatives will be essential in safeguarding Aurora’s products and ensuring they meet the highest security standards.
Job level is negotiable based on experience. Flexible work locations are available (MTV, SFO, PIT, SEA, MI) for US‑based employees. Full remote is not available for this role.
In this role you will:
Lead security integration:
Develop and execute security assurance, governance, and risk management programs, ensuring they are deeply embedded into all phases of product development and aligned with company objectives.
Collaborate with product teams:
Work closely with product management, engineering, and security teams to assess product risks, prioritize security initiatives, and implement strategic controls that protect both product integrity and user trust.
Drive external assessments:
Oversee external security assessments and penetration tests, translating findings into actionable risk mitigation strategies that enhance product security.
Manage product risk:
Lead the security risk management program with a focus on product‑related risks, ensuring alignment with enterprise risk management efforts and compliance with industry regulations.
Monitor and report:
Define and report on key performance indicators (KPIs) related to product and security risks, ensuring transparency and data‑driven decision‑making across the organization.
Required Qualifications:
10+ years of experience in Technical Program Management, with a strong focus on cybersecurity, particularly within the context of product development.
Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field, or equivalent experience.
Proven experience leading large‑scale security programs with an emphasis on integrating security into product development cycles.
Strong communication and leadership skills, with the ability to influence and collaborate with cross‑functional product teams.
Hands‑on experience managing external security assessments and penetration tests, with the ability to translate technical findings into practical security improvements for products.
Desirable Qualifications:
Advanced certifications such as CISSP, OSCP, GIAC‑PEN, CISM, or equivalent, demonstrating expertise in cybersecurity and product risk management.
Experience building and scaling security programs from the ground up, particularly in product‑focused environments.
Strong knowledge of industry security standards and regulations (e.g., ISO 27001, SOC2, NIST, GDPR), with proven experience ensuring product compliance.
Proven ability to lead organizational change, especially in implementing new security processes within product teams.
Excellent communication skills, with the ability to explain complex security concepts to both technical and non‑technical stakeholders.
The base salary range for this position is
$181,000-262,000 . Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job‑related skills, experience, qualifications, relevant education or training, and market conditions. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.
Commitment to inclusion Aurora considers candidates without regard to their race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, pregnancy status, parent or caregiver status, ancestry, political affiliation, veteran and/or military status, physical or mental disability, or any other status protected by federal or state law. Aurora considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at careersiteaccommodations@aurora.tech.
For California applicants, information collected and processed as part of your application and any job applications you choose to submit is subject to Aurora’s California Employment Privacy Policy.
#J-18808-Ljbffr
Aurora’s mission is to deliver the benefits of self-driving technology safely, quickly, and broadly.
The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone.
At Aurora we tackle massively complex problems alongside other passionate, intelligent individuals, growing as experts while expanding our knowledge. The mission of Aurora’s Security Technical Program Management (TPM) team is to embed security into every aspect of Aurora’s products—spanning software, hardware, and services.
You will act as a bridge between Security and Product teams, moving seamlessly between high‑level strategy and detailed execution to ensure that complex, cross‑functional security programs are successfully integrated into product development. Your ability to lead, influence, and manage large‑scale security initiatives will be essential in safeguarding Aurora’s products and ensuring they meet the highest security standards.
Job level is negotiable based on experience. Flexible work locations are available (MTV, SFO, PIT, SEA, MI) for US‑based employees. Full remote is not available for this role.
In this role you will:
Lead security integration:
Develop and execute security assurance, governance, and risk management programs, ensuring they are deeply embedded into all phases of product development and aligned with company objectives.
Collaborate with product teams:
Work closely with product management, engineering, and security teams to assess product risks, prioritize security initiatives, and implement strategic controls that protect both product integrity and user trust.
Drive external assessments:
Oversee external security assessments and penetration tests, translating findings into actionable risk mitigation strategies that enhance product security.
Manage product risk:
Lead the security risk management program with a focus on product‑related risks, ensuring alignment with enterprise risk management efforts and compliance with industry regulations.
Monitor and report:
Define and report on key performance indicators (KPIs) related to product and security risks, ensuring transparency and data‑driven decision‑making across the organization.
Required Qualifications:
10+ years of experience in Technical Program Management, with a strong focus on cybersecurity, particularly within the context of product development.
Bachelor’s or Master’s degree in Computer Science, Information Security, or a related technical field, or equivalent experience.
Proven experience leading large‑scale security programs with an emphasis on integrating security into product development cycles.
Strong communication and leadership skills, with the ability to influence and collaborate with cross‑functional product teams.
Hands‑on experience managing external security assessments and penetration tests, with the ability to translate technical findings into practical security improvements for products.
Desirable Qualifications:
Advanced certifications such as CISSP, OSCP, GIAC‑PEN, CISM, or equivalent, demonstrating expertise in cybersecurity and product risk management.
Experience building and scaling security programs from the ground up, particularly in product‑focused environments.
Strong knowledge of industry security standards and regulations (e.g., ISO 27001, SOC2, NIST, GDPR), with proven experience ensuring product compliance.
Proven ability to lead organizational change, especially in implementing new security processes within product teams.
Excellent communication skills, with the ability to explain complex security concepts to both technical and non‑technical stakeholders.
The base salary range for this position is
$181,000-262,000 . Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job‑related skills, experience, qualifications, relevant education or training, and market conditions. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.
Commitment to inclusion Aurora considers candidates without regard to their race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, pregnancy status, parent or caregiver status, ancestry, political affiliation, veteran and/or military status, physical or mental disability, or any other status protected by federal or state law. Aurora considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at careersiteaccommodations@aurora.tech.
For California applicants, information collected and processed as part of your application and any job applications you choose to submit is subject to Aurora’s California Employment Privacy Policy.
#J-18808-Ljbffr