Product Security Manager

Svitla Systems Inc. is looking for a Product Security Manager for a full-time position (40 hours per week) in Europe. Our client is a multinational corporation specializing in security products, primarily including entrance control and secure storage. 

You'll be responsible for ensuring that all software products comply with certifications and security governance requirements. This role focuses on ensuring alignment with regulatory frameworks, establishing structured processes, and leading cross-functional initiatives to achieve and maintain required certifications. 

The business trips are required (the client will fully cover travel expenses). 

Requirements:

• 8+ years of experience in software security, security compliance, or governance roles.

• Strong hands-on experience with certification and compliance frameworks (e.g., ISO 27001, CRA, EN standards, GDPR).

• Expertise in defining and implementing security policies, controls, and governance models.

• Structured thinking and a strong ownership mindset.

• Bachelor’s degree in Computer Science, Information Security, or related field.

Responsibilities:

• Own and drive the certification roadmap for software products, including Cyber Resilience Act (CRA) and applicable EN standards.

• Define, implement, and continuously improve security governance, policies, and compliance processes.

• Lead certification readiness initiatives, including gap assessments, audits, and remediation planning.

• Act as the primary point of contact for external auditors and certification bodies.

• Ensure alignment with key frameworks and standards, including ISO 27001, GDPR, and relevant product security regulations.

• Establish and enforce structured, repeatable security processes across the SDLC.

• Collaborate with product, engineering, and security teams to translate compliance requirements into practical implementation plans.

• Drive risk management practices, ensuring traceability between risks, controls, and remediation actions.

• Monitor regulatory changes and proactively adapt internal processes to maintain compliance.

• Provide leadership and direction to ensure execution of the compliance and certification roadmap.

Preferred Certifications:

• CISSP (Certified Information Systems Security Professional).

• CSSLP (Certified Secure Software Lifecycle Professional).

• ISO 27001 Lead Implementer.

• ISO 27001 Lead Auditor.

We offer:

• US and EU projects based on advanced technologies.

• Competitive compensation based on skills and experience.

• Regular performance appraisals to support your growth.

• Flexibility in workspace, either remote or our welcoming office.

• Bonuses for article writing, public talks, and other activities.

• Generous time off, including vacation, national holidays, sick leaves, and family days.

• Personalized learning programs tailored to your interests and skill development.

• Free tech webinars and meetups organized by Svitla.

• Regular corporate online activities.

• Awesome team and a friendly, supportive community!