Staff Product Manager, Security Configuration Management

About the Role:

Dragos is seeking a staff-level Product Manager to join the Product team building OT/ICS cybersecurity products, with a focus on security configuration management across extended operational technology (xOT) environments, which span traditional OT and ICS control systems, industrial IoT devices, and the enterprise-connected IT infrastructure that supports and influences physical operations. You will work closely with the product team, leadership, internal stakeholders, and customers to drive an effective product roadmap using product discovery, customer requests, internal requirements, use case validation, prioritization, definition, and execution for assigned products.

Responsibilities

• Ownand evolvethe product vision and strategy forSecurity Configuration Management (SCM) within the Dragos Platform, focused on securingthe fullxOTenvironment, spanning traditionalOT/ICScontrol systems, industrialIoTdevices, and the IT assets that influence operational outcomes.

• Translate customer needs, compliance mandates, and market trends into a clear quarter-over-quarter SCMroadmap.

• Drive the development and management of coreSCM capabilities, includingconfiguration hardening and remediation, continuous drift detection, and compliance reporting acrossthe fullxOTenvironment.

• Defineandevolve the configuration policy engine, including logic for evaluating device configurations against security baselines and industry frameworks such as IEC 62443, CIS Benchmarks, NIST SP 800-82, NIS2, and NERC CIP, along with the compliance reportingworkflows thatsupport customer audit readiness.

• Partner withasset intelligence and data collection teams to ensure the SCM product hasaccuratedevice profiles, firmware intelligence, and vulnerability contextrequiredfor high-fidelity configuration assessments.

• Define requirements for device data normalization, configuration baseline management, and enrichment pipelines that ensure consistent andaccuratedrift detection and policy evaluation across diverse device types and manufacturers.

• Engage directly with customers andcustomer-facingteams todiscover andvalidateuse cases, gather feedback, and iterate on product direction.

• Develop a deep understanding ofxOTdevice security posture, hardening methodologies, and the threat landscape associated with device misconfigurations, default credentials, unpatched firmware, and unmanageddevicerisk.

• Represent Dragos's perspective onsecurity configuration management capabilities, device hardening best practices, and compliance readinessto customers, analysts, and industry groups.

• Collaborate with internal stakeholders toidentifybusiness opportunities, clearly communicating solutions, costs, and business case justifications.

• Make decisionsregardingprioritization,trade-offs in features, timelines, resources, and quality, ensuring alignment with business goals.

• Communicate product requirements with a clear business rationale to Engineering teams.

• Independently measure, track, anddevelopplans to improve product KPIs.

• Support Sales with product insights for POCs,competitivepositioning within thexOTsecurity market, and technical guidance that connects SCM capabilities to customers' compliance, resilience, and operational continuity requirements.

• Play a key role in shaping the go-to-market strategyfor SCM, positioning the product within Dragos's broaderxOTsecurityarchitectureanddevelopingcompelling narrativesthat connect configuration management to operational resilience and compliance outcomesforcustomers.

Qualifications

• 8+ years of Product Managementexperiencebuilding ormaintainingenterprise security products in cybersecurity,device security,configuration management,endpoint security, or adjacent security domains.

• Strong understanding of security configuration management concepts, including device hardening methodologies, configuration baseline and drift management, automated remediation workflows, and the policy evaluation approaches that enable organizations to enforce andmaintainsecure device configurations at scale across diverse device types.

• Experience with active device profiling and discovery methods, including protocol-level fingerprinting, agentless assessment approaches, and the data collection techniques needed to accurately characterizediversexOTdevicetypes acrossindustrialand enterprise-connected environments,without disrupting operations.

• Understanding of how configuration policy engines evaluate device state against security frameworks, how policy violations and drift events are prioritized and surfaced for operator action, and how remediation evidence is captured to support compliance reporting against frameworks such as IEC 62443, NERC CIP,NIS2,and NIST SP 800-82.

• Exceptional analytical skills with the ability to extract valuable insights from complex data.

• Technical fluency with APIs, data models, asset graphs, and backend workflows to effectively partner withEngineering.

Compensation:

• Salary: 200,000.00

• Competitive Equity Package

• Comprehensive Benefits Plan

#LI-JF1 #LI-REMOTE