Head of Product Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Liberate · 12 hours ago

Head of Product Security

positionSan Francisco Bay Area
timeFull-time
remoteHybrid
seniorityDirector/Executive
date8+ years exp

Liberate is a company that builds AI agents to automate tasks in the insurance industry. The Head of Product Security will be responsible for ensuring product safety and compliance, managing security architecture, and leading compliance programs like SOC 2 while collaborating with engineering and product teams.

Information TechnologyInsurTechSaaSSoftware

Responsibilities

Own product security end to end, including threat modeling, secure design reviews, and high risk architecture decisions
Build secure SDLC practices that engineers actually follow, including security requirements, CI checks, security test coverage, and safe defaults
Drive multi tenant and data boundary safety, including secrets handling, key management patterns, and blast radius reduction
Partner with Engineering leaders to make security part of how we build, not a separate lane
Influence roadmap tradeoffs with clear risk framing and concrete mitigations
Own SOC 2 and related compliance programs end to end, including control design, implementation, and ongoing effectiveness
Ensure compliance requirements are translated into real technical controls and engineering workflows, not manual or checklist driven processes
Partner with Engineering, Product, and Ops to embed compliance controls into systems, CI pipelines, and defaults
Lead audits and external reviews with a strong internal posture, clear ownership, and minimal disruption to engineering teams
Use tools like Vanta as leverage, not as the job
Lead product security incident readiness, including playbooks, tabletop exercises, escalation paths, postmortems, and durable fixes
Run vulnerability management for the product, including triage, prioritization, remediation, pen tests, and third party reviews
Own communication and coordination during security incidents, ensuring calm execution and clear accountability
Threat modeling and secure design reviews for new agent capabilities, tools, memory, tenant isolation, and data flows
Secure SDLC, including security requirements in PRDs, security gates in CI, and security regression tests
Secrets, keys, and tenant boundary safety, with automation to reduce blast radius and prevent common footguns
SOC 2 and related compliance frameworks, including control ownership, evidence quality, and audit readiness
Mapping compliance requirements to technical controls and operational practices
Continuous compliance posture, not point in time audits
IAM, least privilege, production access, audit trails, logging, and secure defaults
Secure architecture for multi tenant services, network boundaries, data encryption, and key management
Security tooling and detection signals relevant to product risk

Qualification

Product securitySecurity architectureSOC 2 complianceCloud securityVulnerability managementCommunicationCalm under pressureTeam collaboration

Required

Deep product security background in modern cloud systems, ideally multi tenant SaaS
Strong engineering chops. You can review designs, spot systemic risk, and drive pragmatic solutions
Experience building and owning security and compliance programs in high growth environments, including shift left security, developer enablement, and security architecture decisions
Calm operator during incidents, with crisp communication and high trust with engineering teams
Comfortable being the first dedicated product security hire and defining the role in partnership with Engineering and Product leadership
8+ years in security engineering, product security, or platform security roles
4+ plus years owning security architecture or security programs for a production SaaS product
Demonstrated ownership of SOC 2 or similar compliance programs in a fast moving environment
Prior experience operating in an early stage or high growth company where security and compliance systems had to be built, not inherited

Company

Liberate

twittertwitter
company-logo
Comprehensive AI Platform for Carriers, Agencies and Brokers Liberate enables you to provide human-like conversation that offers 24/7 support and answers 100% of calls with no wait time.
dateFounded in 2022
location
Palo Alto, California, USA
people-size51-200 employees
web-link
https://www.liberateinc.com/

Funding

Current Stage
Growth Stage
Total Funding
$72M
Key Investors
Battery VenturesRedpointEclipse Ventures
2025-10-14Series B· $50M
2024-05-05Series A· $15M
2023-01-05Seed· $7M

Leadership Team

leader-logo
Amrish Singh
Co-founder and CEO
linkedin
leader-logo
Jason St Pierre
Chief Product Officer and Co-Founder at Liberate
linkedin

Recent News

GlobeNewswire
Frictionless FNOL: Aspire Wows Policyholders with Digital + Voice AI FNOL by Liberate
2026-01-22
MarketScreener
Vantage Data Centers and Liberty Energy Announce Strategic Partnership to Develop and Operate One Gigawatt of Power Solutions for Next Generation Data Centers
2026-01-05
Crunchbase News
Sector Snapshot: Insurtech Funding Is Way Down, But AI Is Still Driving Some Big Deals
2025-12-11
Company data provided by crunchbase