Product Security Manager

Driven by transformative digital technologies and trends, we are RIB and we’ve made it our purpose to propel the industry forward and make engineering and construction more efficient and sustainable. Built on deep industry expertise and best practice, and with our people at the heart of everything we do, we deliver the world's leading end-to-end lifecycle solutions that empower our industry to build better.

With a steadfast commitment to innovation and a keen eye on the future, RIB comprises over 2,500 talented individuals who extend our software’s reach to over 100 countries worldwide. We are experienced experts and professionals from different cultures and backgrounds and we collaborate closely to provide transformative software products, innovative thinking and professional services to our global market. Our strong teams across the globe enable sustainable product investment and enhancements, to keep our clients at the cutting-edge of engineering, infrastructure and construction technology.

We know our people are our success – join us to be part of a global force that uses innovation to enhance the way the world builds.

Find out more at RIB Careers.

Job Title: Product Security Manager

Location: India

Job Type: Full-time

Driven by transformative digital technologies and trends, here at RIB we’ve made it our primary purpose to propel the industry forward and make engineering and construction more efficient and sustainable.

Managing the entire building lifecycle from planning to construction, the development of our powerful portfolio of software solutions is driven by industry expertise, best practice and a passion to remain at the cutting edge of technology. Ultimately, connecting people, processes and data in innovative ways to ensure customers always complete projects within budget, on time and to quality, while reducing their carbon footprint.

RIB Software is a proud member of Schneider Electric.

Job Summary

As a Product Security Manager you will own operational security for assigned RIB Software products, executing secure development lifecycle (SDL) requirements and ensuring compliance through coordinated security reviews and assessments. Serves as the primary security point of contact for product teams while collecting evidence required for compliance.

This role requires a blend of hands-on technical expertise, security leadership, and the ability to work collaboratively across multidisciplinary teams including Security Architects, Product Owners, Developers, Quality Engineers, DevOps, Security Operations, and Governance. You will be a key driver in our mission to embed security into every stage of our products’ lifecycles, from initial design through to decommissioning and end-of-life.

Key Responsibilities

• Execute SDL requirements across the full product development lifecycle.
• Drive regular threat modelling, security reviews, and risk assessments for assigned products.
• Track and manage product-specific security issues through resolution, communicating status to leadership.
• Manage supply chain security risks for externally provided components used within the product.
• Collect and maintain compliance evidence for compliance requirements.
• Coordinate security activities with development teams through Security Architects and Product Owners in collaboration with our Vulnerability Assessment and Penetration Testing team.
• Identify and refine security requirements applicable to the product across its lifecycle.
• Serve as primary contact for customer security discussions, assessments, and vulnerability disclosure.
• Support security training and assessment initiatives to ensure product teams have demonstrated security expertise.
• Mentor assigned Product Security Engineers through collaborative review and guidance (when PSE support is available).
• Contribute to the security architecture and roadmap by advising on evolving threats and new technologies.
  
  

Qualifications And Experience

• 5+ years experience in product security or application security.
• Strong understanding of SDL processes and security compliance frameworks.
• Proven ability to conduct security testing using SAST, DAST, and SCA tools.
• Familiarity with one or more of C#, Typescript, Java, JavaScript, Dart, C++, Python, and/or Delphi
• Experience with vulnerability management and risk assessment.
• Excellent communication skills for technical and business stakeholders.
• Project management experience with cross-functional teams.
• Ability to drive improvements in security culture.
• Demonstrated ability to work independently and provide guidance to technical colleagues.
• Bachelor's degree in Computer Science, Cybersecurity, or related field, or equivalent professional experience.
  
  

Preferred Qualifications

• CSSLP or similar secure development certification
• Familiarity with cloud security best practices (preferably Azure)
• Experience with enterprise software security frameworks (SOC 2, ISO 27001)
• Experience with product or cloud security architecture
• Background in SaaS or enterprise software environments
  
  

Reports To: Product Security Lead

We offer a competitive salary and benefits package, as well as opportunities for professional growth and development. If you are a motivated self-starter with a passion for application security, we encourage you to apply for this exciting opportunity.

RIB may require all successful applicants to undergo and pass a comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third party personal data may involve additional background check criteria.

RIB is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business.

Come and join RIB to create the transformative technology that enables our customers to build a better world.