Job Specifications
Company Overview
Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign’s Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM).
What you'll do
As a Senior Security Technical Program Manager for Platform Security, you will drive security strategy and execution across core infrastructure, cloud platforms, and developer ecosystems. You will lead cross-functional initiatives to embed security into platform design, build scalable controls, and strengthen resilience against evolving threats. Partnering with Engineering, Security, and Product teams, you will define roadmaps, track execution, and deliver programs that ensure secure, compliant, and trustworthy platforms at scale.
This position is an individual contributor role reporting to Sr. Manager, Security Product Management.
Responsibility
Own and scale product and platform security initiatives that span across engineering organizations, balancing risk reduction with innovation and business agility
Partner with senior engineering and product leaders to embed security into decision-making, roadmaps, and design principles, ensuring security is a core part of our technology strategy
Lead cross-functional security programs to embed vulnerability management, identity and access management (IAM), key management, encryption, and endpoint security into platform design and operations
Collaborate with engineering to build scalable and automated security controls across cloud platforms, infrastructure, and developer ecosystems, leveraging automation and orchestration to enhance efficiency and coverage
Oversee security monitoring, detection, and remediation programs that strengthen resilience against evolving threats, including incident response and disaster recovery planning for distributed enterprise systems
Ensure platforms and devices meet regulatory, compliance, and internal security standards (e.g., NIST, ISO 27001, SOC 2, GDPR, HIPAA) across all environments, supporting audits and continuous improvement
Drive change management programs that embed security into platform, process, and technology changes to minimize risk and ensure smooth adoption across the organization
Establish and track program roadmaps, KPIs, and reporting to provide clear visibility and actionable insights to leadership and stakeholders
Foster a culture of security innovation, encouraging the adoption of advanced technologies such as AI/ML for threat detection, and championing secure DevOps practices
Job Designation
Hybrid: Employee divides their time between in-office and remote work. Access to an office location is required. (Frequency: Minimum 2 days per week; may vary by team but will be weekly in-office expectation)
Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law.
What you bring
Basic
8+ years of experience in technical program management with focus on platform, infrastructure, or product security
Bachelors or Masters degree in Technology or Computer Science or Cybersecurity
Experience with cloud security (AWS, GCP, Azure), vulnerability management, IAM, encryption, and endpoint security
Proven ability to lead large-scale, cross-functional security initiatives
Experience with governance, risk, and compliance frameworks
Preferred
Excellent executive communication and stakeholder management skills
Strong skills in program planning, prioritization, and driving accountability across teams
Experience with enterprise IAM platforms (Okta, Azure AD), MDM solutions, and key management systems (KMS/HSM)
Familiarity with CI/CD pipelines, DevSecOps practices, and automated vulnerability detection/remediation
Strong technical acumen with ability to bridge engineering, security, and business priorities
Experience scaling platform and enterprise security programs in complex or high-growth organizations
Familiarity with regulatory and compliance frameworks (SOC 2, ISO 27001, GDPR FedRAMP, etc.)
Ability to influence at senior levels and drive adoption of security-first principles across engineering and business teams
Wage Transparency
Pay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills,
About the Company
Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives. With intelligent agreement management, Docusign unleashes business critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign IAM, companies can create, commit, and manage agreements with soluti...
Know more