Technical Product Manager, DevSecOps
Job Description
- Background in software engineering, DevOps, or cybersecurity is a plus.
- A collaborative mindset and a passion for improving developer and security workflows.
- Solid understanding of DevSecOps principles, including secure CI/CD, shift-left security, and automated compliance.
- Familiarity with cloud platforms (AWS, Azure, GCP) and their security services.
- Experience with CI/CD tools (e.g., GitHub Actions, Jenkins, GitLab), containerization (Docker, Kubernetes), and infrastructure as code (Terraform, CloudFormation).
- Exposure to security tooling such as SAST, DAST, dependency scanning, and secrets management.
- Ability to read and understand code (e.g., Python, YAML, JavaScript).
- Strong communication and stakeholder engagement skills.
- Experience with Agile methodologies and tools like Jira, Confluence, or Aha!.
- 5–8 years of product management experience, with at least 3–5 years in a technical or security-focused role.
- Define and maintain the roadmap for secure development tooling, automation, and governance.
- Partner with engineering, security, and infrastructure teams to identify pain points and deliver secure, scalable solutions.
- Translate developer and security needs into actionable platform features and enhancements.
- Manage the delivery and evolution of DevSecOps capabilities-from ideation to rollout and continuous improvement.
- Define KPIs for security coverage, developer adoption, and platform reliability; use insights to drive improvements.
- Welcoming and energetic environment that encourages collaboration and innovation.
- Opportunity to hone current skills and build new capabilities.
- Hybrid position with regular virtual and in-person work.
What We'll Bring:
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation - we’re consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
As a Technical Product Manager for DevSecOps, you will help shape and deliver secure, scalable, and automated development and deployment capabilities across the organization. You’ll work closely with engineering, security, and infrastructure teams to build tools and processes that integrate security into every phase of the software development lifecycle. This role is ideal for someone with strong technical foundations and a passion for enabling secure development practices.
What You'll Bring:
- Solid understanding of DevSecOps principles, including secure CI/CD, shift-left security, and automated compliance
- Familiarity with cloud platforms (AWS, Azure, GCP) and their security services
- Experience with CI/CD tools (e.g., GitHub Actions, Jenkins, GitLab), containerization (Docker, Kubernetes), and infrastructure as code (Terraform, CloudFormation)
- Exposure to security tooling such as SAST, DAST, dependency scanning, and secrets management
- Ability to read and understand code (e.g., Python, YAML, JavaScript)
- Strong communication and stakeholder engagement skills
- Experience with Agile methodologies and tools like Jira, Confluence, or Aha!
- 5–8 years of product management experience, with at least 3–5 years in a technical or security-focused role
- Background in software engineering, DevOps, or cybersecurity is a plus
- A collaborative mindset and a passion for improving developer and security workflows
Impact You'll Make:
- DevSecOps Strategy & Roadmap: Define and maintain the roadmap for secure development tooling, automation, and governance
- Cross-Team Collaboration: Partner with engineering, security, and infrastructure teams to identify pain points and deliver secure, scalable solutions
- Requirements Gathering: Translate developer and security needs into actionable platform features and enhancements
- Lifecycle Management: Manage the delivery and evolution of DevSecOps capabilities-from ideation to rollout and continuous improvement
- Metrics & Feedback: Define KPIs for security coverage, developer adoption, and platform reliability; use insights to drive improvements
This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week.
