About SecurityScorecard:

SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, SecurityScorecard’s patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint.

Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace,” by Crain’s NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Company’s annual list of the World’s Most Innovative Companies for 2023 and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing “forward-thinking employers for their unwavering commitment to employee engagement.” SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV and Riverwood Capital.

Senior/Principal Product Manager, MAX Service Delivery Platform

About The Role

We are looking for a Senior or Principal Product Manager to own and scale the MAX Service Delivery Platform. This platform is the core solution that enables our internal practitioner teams and external service partners to deliver best-in-class, tech-enabled Third-Party Risk Management (TPRM) and Supply Chain Detection and Response (SCDR) services.

This is a high-impact, strategic role focused on three primary goals:

1. Practitioner Efficiency: Building a best-in-class workstation that makes our service delivery teams faster, smarter, and more scalable.
2. Partner Enablement: Delivering a configurable, multi-tenant solution that allows our partners to build or integrate with a managed services business.
3. End-Customer ROI: Providing a compelling, clear, and data-driven experience that proves the value and risk reduction our customers are investing in.

Reporting to the Senior Director of Product MAX, you will be responsible for defining requirements for complex, tech-enabled workflows, automating manual processes, and creating the analytics that prove the ROI of our services to end-customers.

Responsibilities

• Solution Roadmap Execution
• Develop and execute the roadmap for the practitioner workstation, focusing on automating and scaling key service delivery workflows (e.g., cross-customer risk triage, vendor escalation, and remediation tracking).
• Deeply map the end-to-end managed service lifecycle, translating manual, off-platform practitioner tasks (spreadsheets, emails) into scalable, in-platform features.
• Own the core platform capabilities for our partners, including multi-tenant management, configurable workflows, and partner-centric controls.
• End-Customer Value & ROI
• Design and own the end-customer "client portal" experience, ensuring it delivers consolidated visibility and clear, analyst-driven recommendations.
• Build the compelling dashboards, analytics, and reports that quantify the value (ROI) of the managed service, focusing on risk reduction and practitioner activity.
• Cross-Functional Collaboration
• Serve as the primary product partner for our internal delivery teams and our external service partners, working with them to co-develop, validate, and productize solutions to their most critical delivery blockers.
• Engage with end-customers to understand their TPRM and GRC program needs, translating them into requirements for both the practitioner and the customer-facing solution.
• Collaborate with Product Marketing and Sales to develop collateral, sales motions, and a "co-delivery" model for our partners.
• Technical & Market Research
• Conduct market analysis to stay ahead of emerging TPRM, GRC, and managed service trends.
• Develop a deep understanding of practitioner engagement, engineering constraints, and system limitations to make informed trade-offs.
• Continuously improve platform scalability, reliability, and security, leveraging insights from customer feedback and performance data.

Qualifications

Basic Qualifications

• 3+ years (or 5-7+ for Principal) of Product Management experience.
• Experience in, or building products for, a managed service environment. This could include working as a consultant, a professional services team member, a GRC/TPRM analyst, or as a PM for a services-oriented product.
• Deep, demonstrable understanding of Third-Party Risk Management (TPRM), GRC, or cybersecurity operations workflows. You must be able to speak the language of our practitioner users.
• Proven experience building products for multiple, distinct user personas (e.g., an expert 'practitioner' who needs efficiency and an executive 'end-customer' who needs ROI).
• Metrics-driven mindset, with experience developing OKRs/KPIs for practitioner efficiency, service scalability, and customer value realization.

Additional Qualifications (Preferred, but not required)

• Experience with multi-tenant architectures, workflow automation engines, and reporting/analytics platforms.
• Background in cybersecurity concepts and best practices.
• Exposure to data science and machine learning applications in security, compliance, or document analysis.
• Experience working with partner ecosystems or channel-based GTM models.

What Sets You Apart

• You have a practitioner-first mindset, obsessing over workflow efficiency and automating manual work.
• You excel at building a compelling, data-driven story that proves value and ROI to an executive audience.
• You understand the business model of a managed service provider and are passionate about building the tools that help them scale.
• You thrive in a fast-paced environment, balancing technical depth with strategic product thinking.
• You have a customer-first approach, ensuring platform capabilities drive real value for both internal teams and external users.

Benefits:

Specific to each country, we offer a competitive salary, stock options, Health benefits, and unlimited PTO, parental leave, tuition reimbursements, and much more!

The estimated total compensation range for this position is $150,000 - $240,000 (base plus bonus). Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications and experience, and may vary from the range. In addition to base salary, employees may also be eligible for annual performance-based incentive compensation awards and equity, among other company benefits.

SecurityScorecard is committed to Equal Employment Opportunity and embraces diversity. We believe that our team is strengthened through hiring and retaining employees with diverse backgrounds, skill sets, ideas, and perspectives. We make hiring decisions based on merit and do not discriminate based on race, color, religion, national origin, sex or gender (including pregnancy) gender identity or expression (including transgender status), sexual orientation, age, marital, veteran, disability status or any other protected category in accordance with applicable law.

We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact talentacquisitionoperations@securityscorecard.io.

Any information you submit to SecurityScorecard as part of your application will be processed in accordance with the Company’s privacy policy and applicable law.

SecurityScorecard does not accept unsolicited resumes from employment agencies. Please note that we do not provide immigration sponsorship for this position. #LI-DNI