Manager, Product Security Technical Managed Services (IoT)

TL;DR

Manager, Product Security Technical Managed Services (IoT): Leading the operational delivery and team management of product security managed services for connected devices with an accent on firmware analysis, vulnerability management, and regulatory compliance. Focus on scaling PSIRT-as-a-Service offerings, driving team performance, and ensuring high-quality technical outcomes for strategic customers.

Location: Must be based in the United States or Canada

Salary: $190,000–$215,000 (Tiered by location)

Company

hirify.global provides a platform for product security teams to gain transparency into connected devices and supply chains, helping manufacturers mitigate risk and ensure compliance.

What you will do

• Manage the end-to-end delivery of managed technical services, including binary analysis, penetration testing, and vulnerability response.
• Lead and mentor a multi-disciplinary team of product security engineers and analysts.
• Design and operationalize new service offerings such as PSIRT-as-a-Service and EU Cyber Resilience Act compliance.
• Own engagement quality, schedule adherence, and customer satisfaction for strategic accounts.
• Partner with Product and Engineering teams to integrate field experience into the automation platform roadmap.
• Manage financial performance, including capacity planning, utilization, and ARR targets.

Requirements

• Minimum 8 years of experience in product security, embedded/connected device security, or offensive security.
• Minimum 4 years of direct people management experience.
• Hands-on technical depth in firmware analysis, penetration testing, or vulnerability management.
• Strong understanding of SBOM standards, vulnerability disclosure models, and regulatory frameworks like EU CRA or IEC 62443.
• Must be based in the United States or Canada for this fully remote role.
• One or more required certifications: CISSP, CSSLP, CCSP, GIAC (GPEN/GXPN/GREM/GICSP), or OSCP.

Nice to have

• Experience standing up new managed service offerings or productizing technical capabilities.
• Familiarity with AI-assisted vulnerability triage and agentic AI platforms.
• Additional certifications such as CISM, CRISC, or PMP.

Culture & Benefits

• Fully remote, distributed work culture.
• Mission-driven environment focused on securing critical connected infrastructure.
• Competitive base salary with equity and comprehensive benefits.
• Emphasis on transparency, ownership, and continuous learning.