Security Delivery Manager

Meta Meta · Big Tech · Austin, TX +1 · Remote

Meta is seeking a Security Delivery Manager to oversee the execution of security programs across its product and infrastructure. This role involves translating security requirements into delivery plans, managing cross-functional workstreams (vulnerability remediation, security reviews, compliance controls, incident response), and ensuring timely, scaled delivery of security outcomes. The manager will partner with engineering, trust and safety, legal, and product teams, define roadmaps, resolve blockers, and report on key metrics. Experience with AI tools for workflow optimization, ethical AI practices, and AI skill development is also highlighted.

What you'd actually do

  1. Define and manage delivery frameworks for security programs, including vulnerability remediation tracking, security review pipelines, and compliance-driven control implementation
  2. Partner with security engineering, trust and safety, legal, and product teams to align on security requirements, milestones, and accountability structures
  3. Develop and maintain program roadmaps for security initiatives, translating security risk priorities into actionable delivery plans with clear owners and timelines
  4. Identify and resolve blockers across security workstreams, escalating risks and dependencies to appropriate stakeholders with recommended mitigation paths
  5. Establish and report on key delivery metrics for security programs, including remediation SLA adherence, review cycle times, and control implementation progress

Skills

Required

  • Bachelor's degree in a directly related field, or equivalent practical experience
  • 6+ years of experience in program or project management with a focus on security, trust and safety, or risk and compliance domains
  • Experience managing cross-functional security programs involving engineering, legal, policy, and operations stakeholders
  • Experience defining delivery metrics and reporting frameworks for security initiatives such as vulnerability management, security reviews, or compliance control implementation
  • Experience identifying, escalating, and resolving delivery risks and dependencies in complex, multi-team security workstreams
  • Experience communicating security program status and risk posture in writing to both technical and non-technical audiences
  • Ability to obtain and maintain U.S. government security security clearance
  • Familiarity with security frameworks such as NIST, ISO 27001, SOC 2, or similar compliance and risk management standards
  • Experience building or improving security intake, triage, and remediation tracking workflows at scale

Nice to have

  • Demonstrated ability to integrate AI tools to optimize/redesign workflows and drive measurable impact (e.g., efficiency gains, quality improvements)
  • Experience adhering to and implementing responsible, ethical AI practices (e.g., risk assessment, bias mitigation, quality and accuracy reviews)
  • Demonstrated ongoing AI skill development (e.g., prompt/context engineering, agent orchestration) and staying current with emerging AI technologies
  • Background in using data and tooling to drive operational improvements in security delivery processes

What the JD emphasized

  • security programs
  • cross-functional security programs
  • security initiatives
  • security workstreams
  • security domains
  • security program status
  • security control evidence
  • security delivery function
  • security delivery processes
  • application security
  • infrastructure security
  • privacy engineering
  • security intake
  • triage
  • remediation tracking