Manager of Product Security

Reflection AI · NYC or SF
full-time principal Posted 16 hours ago
Apply Now Stand out: build a proof-of-work pitch →

Free GitHub-based preview. Direct apply stays one click away.

Get weekly job alerts like this →

Hiring for this role?

AI Market Demand Pack · $29 one-time

Compare this role's skills with the full AI hiring market. Get ranked demand, salary bands, leading companies, public source URLs, and a decision brief.

See the live sample →

About this role

OUR MISSION Reflection is a research lab making intelligence open and accessible for everyone to use, customize, and build on. We build open models that let anyone control their intelligence and help shape the future of AI. Our mission: make intelligence open and accessible to all. ROLE OVERVIEW The Head of Product Security is responsible for building, scaling, and operating Reflection’s security program across the full breadth of the enterprise — from physical and data center infrastructure to cloud and neocloud environments, vendor ecosystems, and strategic growth activities. This leader serves as a senior partner to the CISO, translating the company’s long-term security strategy into an operating model that can withstand hypergrowth and the unique demands of a frontier AI company. Sitting at the intersection of infrastructure security, enterprise operations, and strategic risk, this role is uniquely positioned to shape how Reflection understands and manages its security posture as it scales. The ideal candidate is both a strategic architect and a hands-on operator — equally capable of defining security standards for neocloud environments and standing up physical controls for a new data center deployment. They bring deep technical fluency across cloud, infrastructure, and AI compute environments, and the executive presence to represent Reflection’s security posture to customers, regulators, investors, and government stakeholders. This is a high-visibility, high-impact role with broad organizational reach. Success requires the ability to build security programs from scratch, scale them through periods of rapid change, and maintain operational excellence across a complex, globally distributed technology footprint. WHAT YOU'LL DO Senior CISO Partnership & Security Strategy - Help define and execute the company’s long-term security strategy and security operating model. - Support the CISO and CSO in representing security leadership with customers, auditors, investors, regulators, government officials, and executive stakeholders. - Recruit, develop, and mentor world-class security and technology professionals. - Balance strategic leadership with hands-on execution as organizational needs evolve. Data Center & Physical Security - Own security strategy for data centers, colocation facilities, and infrastructure operations globally. - Partner with infrastructure and site operations teams to embed security throughout the data center lifecycle, including site selection, design, commissioning, and operations. - Define standards for physical access controls, surveillance systems, asset protection, hardware handling, and operational resilience. Cloud & NeoCloud Security - Own the security strategy, configuration requirements, and governance for neocloud infrastructure that each facility must follow to host Reflection workloads. - Develop and enforce security design standards for third-party neocloud environments to integrate with Reflection’s corporate and engineering workflows, including incident response and vulnerability management. - Lead technical assessments of neocloud first- and third-party deployments for ongoing assurance — validating security posture, identifying gaps, and driving remediation to meet Reflection’s security guarantees and customer contractual obligations. - Own security contractual negotiations with neocloud providers to ensure all Reflection security requirements are contractually defined, enforceable, and aligned with the company’s product offerings and regulatory expectations. Mergers, Acquisitions & Strategic Growth - Partner with the CISO to lead security and technology due diligence for acquisitions, investments, and strategic partnerships. - Partner with Reflection’s Risk Leader to identify security, infrastructure, compliance, privacy, and operational risks associated with target organizations. - Drive post-acquisition security integration and modernization initiatives across enterprise security and corporate technology. Vendor Risk & Strategic Procurement - Develop and own security strategy, review processes, and approval workflows for software, SaaS, cloud services, hardware suppliers, and strategic technology purchases. - Build and operate vendor security assessment and third-party risk management programs. - Partner with Legal and Finance on contract negotiations, security requirements, privacy obligations, and risk transfer mechanisms on both buy and sell sides. WHAT WE'RE LOOKING FOR Experience & Background - 12+ years of experience across cybersecurity, infrastructure security, enterprise technology, or related fields. - Proven track record of building security programs from the ground up within startups, AI companies, cloud providers, hyperscalers, or hypergrowth technology organizations. - Demonstrated success scaling teams and organizations from 0→1 and 1→N. - Experience securing AI inf

Similar Jobs

Related searches:

On-site Jobs Principal Jobs On-site Principal Jobs Principal AI Safety & SecurityPrincipal AI Infrastructure securitycloud

Get jobs like this delivered weekly

Free AI jobs newsletter. No spam.