Staff Technical Program Manager, Security

MongoDB's mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build and run applications anywhere-on premises, or across cloud providers. With offices worldwide and over 175,000 new developers signing up to use MongoDB every month, it's no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.

You are a Staff Technical Program Manager, Security with a strong strategic mindset and program management expertise to drive impactful security assessment initiatives that enhance the trust and security posture of our products and aggressively improve our security posture. This position focuses on strategic alignment, data-driven decision-making, and holding security engineering teams and security assessment vendors accountable for execution, ensuring that security investments translate into measurable improvements in customer trust and risk reduction.

The ideal candidate will bridge the gap between security strategy and execution, leveraging program management techniques to define priorities, optimize workflows, and ensure teams deliver results. You will collaborate with engineers, product teams, and leadership to drive security initiatives that are not just delivered, but adopted and impactful. Additionally, this role includes high-visibility communication and reporting responsibilities, ensuring that security progress and risks are clearly conveyed to leadership and engineering teams.

This role can be based out of our New York City or Seattle office or remotely in the United States.

The MongoDB Security organization is a diverse collection of individuals working together to scale MongoDB's security, both security of the products themselves and the security features we offer to customers. The team is responsible for several products including the MongoDB Atlas Cloud, Ops Manager, Kubernetes Operator, and the MongoDB Server (Community and Enterprise editions).

The MongoDB Security organization works with software engineers to design, implement, and operate systems in a manner that protects customer and MongoDB data. It is a multidisciplinary organization that covers product, software, cloud, infrastructure, and operational security concerns. Our organization...

• Defines and drives an engaging, exciting security strategy for MongoDB and our customers
• Builds a developer driven security program where there is tight integration with engineering artifacts, process, and tooling
• Uses software architecture and coding patterns to reduce the impact of security issues
• Are the security subject matter experts for our tech stack and products

• Experienced in managing technical projects or programs while collaborating with Security Engineering, developers, and various engineers, employing different project management techniques and business analysis to ultimately link technical execution to business outcomes
• Experienced with 8+ years working in a technical capacity and/or in a project or program management role within the security domain
• Experienced with 5+ years working with security vendors specific to security assessments and penetration testing in large-scale SaaS and software development environments
• Capable of deep user empathy and adept at balancing product goals and engineering constraints to deliver impactful experiences
• Experienced in creating scalable and modern engagement models between security engineering and engineering teams for finding assessment and remediation
• Able to maintain a strategic view of our software engineering processes even while supporting and optimizing the operations of the team
• Inspired to innovate in areas where automation can replace manual work. The team works primarily with JIRA and Google Docs, so programming proficiency with either or both tools is a plus
• Skilled at communicating with a diverse set of engineers and leadership stakeholders
• Hyper-organized and capable of juggling all of the data associated with projects and task-tracking
• Knowledgeable of agile methodologies and experienced with implementing project management best practices
• Driven by an attuned sense of priority and urgency to ship features and achieve the right business outcomes
• Trained in working with project tracking software (e.g. JIRA, Rally, MS Project, Trello)
• Interested in learning everything about MongoDB

• A background in Business Analysis and Enterprise Architecture
• Have worked in large scale B2B SaaS technology companies
• Experience working with organizations that have or maintain open source or source available products along with closed source enterprise offerings

• Efficiently and effectively manage security assessment & penetration testing engagements with external vendors and internal stakeholders
• Execute and improve the processes and tools that inform the daily life of engineering teams specific to the security domain in areas such as vulnerability assessment and remediation
• Drive coordination between product development teams and internal stakeholders to prioritize the most impactful internal and external security assessment engagements
• Identify risks to the team's delivery, and mitigate them where possible
• Partner with security, product, and engineering leaders to define measures that demonstrate the security health of team's products and services
• Know when a project/team requires more hands-on management and know when it is time to operationalize and develop a process framework for the project and/or team(s)
• Promote a culture of continuous improvement by conducting retrospectives to help identify areas of growth and learning within and across teams
• Recognize patterns in a sea of information and take action accordingly
• Expand knowledge into new domains by consistently working to gain the requisite technical knowledge required to skillfully manage the complexities, dependencies, and risks associated with engineering projects
• On the topic of measurement:




• Conduct deep business analysis to understand security risks, trade-offs, and investment areas that improve customer trust and improve our security posture.
• Develop data-backed insights to inform security roadmaps and decision-making, leveraging analytics, customer feedback, and other relevant data
• Establish and track trust metrics that demonstrate the ROI of security initiatives to executive stakeholders




• On the topic of executive communication:




• Develop and deliver security updates, risk assessments, and trust metrics to stakeholders
• Provide regular reports on security program effectiveness, key risk areas, and strategic recommendations to drive informed decision-making
• Act as a trusted advisor to leadership, ensuring security remains a top priority and is effectively integrated into company-wide initiatives

Don't feel that you meet all of the requirements? We encourage you to apply anyway because studies have shown that some strong candidates may self-select out of the interview process prematurely. We have a diverse, inclusive, equitable, and high-performing environment at MongoDB and want to continuously improve our ability to deliver for customers.

To drive the personal growth and business impact of our employees, we're committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees' wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it's like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

REQ ID: 1263116573