Product Security Manager (Hopkins, MN or Remote, US)

Digi International (Digi) is a leading global provider of mission-critical and business-critical machine-to-machine (M2M) and Internet of Things (IoT) connectivity products and services. We help our customers create next generation connected products, deploy, and manage critical communications infrastructures in demanding environments. Our embedded modules and off-the-shelf routers, gateways and network products are designed for relentless reliability and deliver unquestioned performance and security. Our cloud-based software and professional services help customers put their connected products and assets to work across a broad range of mission-critical industry applications. Founded in 1985, we have helped our customers connect over 100 million things and growing.

 

Digi International is seeking a highly skilled and motivated Product Security Manager to oversee and lead efforts to develop, deploy, and maintain robust security controls and defenses across the organization’s products and services. Digi’s Product Security Manager role is critical to ensuring our products maintain high security standards throughout the product lifecycle, meet industry standards, and protect our customers’ trust.

 

The ideal candidate will have a strong understanding of security best practices, risk management, and secure product development processes, along with a passion for driving security excellence in a collaborative environment.  The Product Security Manager will provide strategic direction, hands-on leadership, and execute to safeguard the company’s products and services against evolving security threats. 

 

• Develop and drive the overall security strategy for Digi International’s product portfolio, ensuring alignment with company goals and industry best practices.
• Conduct comprehensive threat modeling, risk assessments, and security reviews including penetration testing for products during the development lifecycle.
• Proactively identify potential cybersecurity risks and threats to Digi's products.
• Ensure products meet regulatory and industry security standards (e.g., ISO 27001, NIST, or GDPR). Maintain knowledge of emerging regulations and adapt strategies accordingly.
• Collaborate with product, engineering, and development teams to ensure adherence to security protocols.
• Lead and coordinate efforts to incorporate artificial intelligence into software development and management.
• Coordinate with incident response teams to investigate and address security vulnerabilities or incidents. Act as the point of escalation for security issues and coordinate cross-functional response efforts.
• Stay up-to-date with emerging threats and vulnerabilities, recommending new solutions or technologies as needed.
• Provide advice and training to business management, product development, and R&D teams about cybersecurity best practices and standards.
• Re-examine, improve, and modify product development and management procedures to ensure they meet the company’s security requirements.
• Define and track security KPIs and metrics to continuously evaluate and improve the security posture of Digi’s products.
• Own Digi’s product security policies, standards, monitoring and exception processes.

 

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Minimum of 8 years of experience in cybersecurity, with a focus on product security, and experience in a management or team leadership role.
• Strong understanding of cybersecurity principles, risk management, and threat mitigation.
• Ability to stay current with evolving security threats and industry trends.
• Experience with security audits, risk assessments, and penetration testing.
• Knowledge of secure system development lifecycle processes including security architectures, encryption technologies, and secure coding techniques.
• Understanding of security frameworks, compliance standards, and regulatory requirements (e.g., OWASP, ISO, PCI DSS, HIPAA, GDPR).
• Excellent communication, relationship management, strong team building skills, and the ability to collaborate across business units and functions within complex organizations.
• Experience as a team lead from design to completion (demonstrate objectives, deliverables, budgets, collaboration, management and accountability).

 

• Relevant certifications such as CISA, CISSP, CISM, or CEH.
• Experience in the IoT industry.
• Hardware or software product management.

Travel: <10% of the time.

Location: Prefer Hopkins, MN but open to fully Remote in the US.

 

 

Digi International offers a distinctive Total Rewards package including a bonus incentive program, new hire stock award, paid parental leave, open (uncapped) PTO, and hybrid work environment in addition to our competitive medical, health & wellbeing and compensation offerings.

 

The anticipated pay range for this position is $108,000 – $169,000, which includes base salary incentive bonus target.  Pay ranges are determined by role, job level and primary job location.  The range displayed reflects the reasonable range we anticipate paying for this position and reflects the cost of labor within several U.S. geographic markets. The specific salary offered within the range will depend on various factors including, but not limited to the candidate’s relevant and prior experience, education, skills, and primary work location.  It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each position. Pay ranges are typically reviewed and updated annually.

 

At Digi, we embrace diversity and inclusion among our teammates. It is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are committed to providing an environment of respect where equal employment opportunities are available to all applicants and teammates.