Wallarm is an API security platform that focuses on protecting AI-driven innovation, modern applications, and cloud infrastructures. APIs, being the primary attack vector for cybercriminals, often face vulnerabilities that existing tools can't address effectively. Many API security solutions today only offer observability without the ability to prevent attacks, requiring complex deployments and significant human involvement.

Wallarm stands out by offering the fastest, easiest, and most effective way to stop API attacks. The platform provides a comprehensive inventory of APIs, patented AI/ML-based abuse detection, real-time blocking, and an API Security Operations Center (SOC)-as-a-service. Unlike traditional solutions that simply alert on suspicious behavior, Wallarm proactively works to fix API security issues, not just identify them. The platform can be easily deployed inline to block attacks, and its expert API SOC team ensures continuous protection 24/7/365.

Headquartered in San Francisco, California, Wallarm is supported by investors like Toba Capital, Y Combinator, Partech, and others.

More short facts about Wallarm:

• Global remote-first team of 100+ people on 4 continents and in 10+ countries.

• They have been protecting clients since 2014.

• The company has raised over $10M in investments.

• More than 200 customers around the world, including Fortune 500, Nasdaq, and high-growth startups choose Wallarm to protect their API and web applications.

• The company passed Y Combinator, the most prestigious incubator in Silicon Valley, from which Dropbox, Stripe, Docker, etc. came out.

About the role:

As a Security Product Manager for Wallarm’s Security Testing Product, you will play a key role in shaping the future of API security testing. You will be responsible for driving the product roadmap, collaborating with cross-functional teams, and ensuring that our solutions meet the ever-changing landscape of security challenges. This role demands a mix of technical expertise, market insight, and customer empathy to create innovative features that strengthen the security posture of our clients.

Key Responsibilities:

• Product Ownership: Develop and maintain a technical roadmap for the security testing product, based on market trends, customer feedback, and competitive analysis.
  

• Collaboration: Work closely with engineering, UX, marketing, and customer success teams to deliver impactful features that align with business goals.
  

• Security Expertise: Integrate application security best practices (e.g., OWASP Top 10) into the design and development of the product.
  

• Innovation: Propose and validate new testing capabilities (e.g., automated vulnerability scanning, API-specific threat detection) to ensure competitive differentiation.
  

• Market Research: Continuously analyze industry trends, emerging threats, and competitor offerings to identify growth opportunities.
  

• Security Research Leadership: Collaborate with developers to define technical requirements and oversee the implementation of complex features.
  
  

Job Requirements

Must-have skills:

• Proven experience as a Product Manager, Technical Product Manager, or Product Owner in the security domain or related fields (e.g., SAST/DAST, vulnerability management, DevOps tools, or cloud-native products).
  

• Strong understanding of API protocols such as JSON-API, GraphQL, XML-RPC, JSON-RPC, OData, gRPC, WebSocket, SOAP, and others.
  

• Expertise in application security concepts (e.g., OWASP Top 10, OWASP API Top 10) and vulnerability management.
  

• Ability to break down business needs into actionable technical projects.
  

• Experience working closely with developers to execute software requirements.
  

• Excellent communication skills, capable of translating technical concepts for diverse stakeholders.
  
  

Nice to have:

• Expertise in API-specific attacks (e.g., OWASP API Top 10) or participation in vulnerability assessments (e.g., bug bounty programs).
  
  

• Knowledge of building a Secure Software Development Lifecycle (SSDLC) and integrating security solutions in CI/CD pipelines.
  
  

• Hands-on experience with Kubernetes/Helm or Linux system administration.

• Familiarity with MLOps practices or AI-driven approaches to threat detection.

• Certifications such as OSCP, OSWE.

• Background in programming languages like Python, Go, or Ruby.
  
  

What we offer:

• The opportunity to work on a product that enhances Internet security.
  

• Fully remote work with flexible working hours.
  

• Competitive salary and performance-based bonuses.
  

• Unlimited Paid Days off, which can be used for annual vacation, sick leaves, and other time offs (after 3 months from the contract’s start date);
• Compensation of Medical insurance in an amount not higher than $1000 per year (after 3 months from the contract’s start date);
• Compensation for the Laptop purchase in an amount not higher than $2500 (after 6 months from the contract’s start date);
• Compensation pool of $500 per year (after 3 months from the contract’s start date), which can be spent on:
  - Education (trainings, conferences, books, etc.).
  - Sport (Fitness, sports sections, equipment, etc.)
  - Paid medicine (including psychologists).
  - Vacation (tickets, hotels, tours, etc.).
  - Leisure (tickets to the theater or cinema).
  - One-time compensation of $500 for workplace equipment: monitor, table, chair, etc. (after 3 months from the contract’s start date).

________________________________________________________________

Hire5 provides aspiring talents worldwide with remote opportunities to enhance their careers in Silicon Valley startups and other US-based companies.

Interested in joining one of the most promising US startups?

Press here to apply now or click “connect” on career.hire5.co to subscribe for future opportunities in your desired profession!