Staff Product Manager, Security

Who Are We?

Postman is the world’s leading API platform, used by more than 40 million developers and 500,000 organizations, including 98% of the Fortune 500. Postman is helping developers and professionals across the globe build the API-first world by simplifying each step of the API lifecycle and streamlining collaboration—enabling users to create better APIs, faster.

The company is headquartered in San Francisco and has an office in Bangalore, where it was founded. Postman is privately held, with funding from Battery Ventures, BOND, Coatue, CRV, Insight Partners, and Nexus Venture Partners. Learn more at postman.com or connect with Postman on X via @getpostman.

P.S: We highly recommend reading The "API-First World" graphic novel to understand the bigger picture and our vision at Postman.

The Opportunity

Postman is seeking a Staff Product Manager, Security to lead the vision, strategy, and execution of in-product security capabilities that scale from individual developers to global enterprises. As APIs are the foundation of modern software, secure and compliant development is a must-have—not a nice-to-have.

Reporting to the Head of Product - Enterprise, Security & Administration, you’ll define and deliver security features that protect sensitive data, support cloud architectures, and meet the needs of customers across all segments—with a focus on enterprise and regulated industries. You’ll work at the intersection of security, usability, productivity, and collaboration, enabling trusted growth at scale and unlocking expansion ARR.

Success in this role demands deep customer communication, strong technical intuition, data-driven judgment, and the ability to execute in ambiguity. At Postman, great PMs prototype fast, communicate clearly, and take initiative—pushing work forward even without perfect specs, plans, or resources.

What You’ll Do

• Own the product strategy and roadmap for in-product data protection and compliance, with a focus on Enterprise customers, regulated industries, hybrid architectures, and the Advanced Security Add-On.

• Deliver secure-by-default experiences and enterprise-grade capabilities like encryption, BYOK, sensitive information protection, and auditability that reduce friction and build trust.

• Drive adoption and ARR growth by increasing attach rates, enabling seamless upgrade paths, and supporting scale from individual users to enterprise-wide collaboration.

• Collaborate across functions—Engineering, Design, Sales, Legal, and Customer Success—to execute quickly, unblock deals, and deliver with quality.

• Measure what matters and move fast—define KPIs, stay ahead of compliance trends, and prototype ideas to align teams and keep momentum.

About You

• 8+ years of PM experience, including 3+ in security, compliance, or developer-focused SaaS; background in enterprise and regulated industries preferred.

• Deep expertise in data protection such as DLP/CASB, compliance, privacy and secure cloud architectures; engineering background a plus.

• Proven ability to ship enterprise-grade security features that reduce friction, support compliance, and scale across customer segments.

• Technically fluent in APIs, developer workflows, and cloud infrastructure, with strong collaboration skills across Engineering, InfoSec, and GTM teams.

• Data-driven and action-oriented, with clear communication, strong systems thinking, and the ability to prototype and move fast under ambiguity.

The reasonably estimated base salary for this role ranges from  $240,000 to $300,000, plus a competitive equity package. Actual compensation is based on the candidate's skills, qualifications, and experience. 

What Else?

In addition to Postman's pay-on-performance philosophy, and a flexible schedule working with a fun, collaborative team, Postman offers a comprehensive set of benefits, including full medical coverage, flexible PTO, wellness reimbursement, and a monthly lunch stipend. Along with that, our wellness programs will help you stay in the best of your physical and mental health. Our frequent and fascinating team-building events will keep you connected, while our donation-matching program can support the causes you care about. We’re building a long-term company with an inclusive culture where everyone can be the best version of themselves. 

At Postman, we embrace a hybrid work model. For all roles based out of San Francisco Bay Area, Boston, Bangalore, Hyderabad, and New York, employees are expected to come into the office 3-days a week. We were thoughtful in our approach which is based on balancing flexibility and collaboration and grounded in feedback from our workforce, leadership team, and peers. The benefits of our hybrid office model will be shared knowledge, brainstorming sessions, communication, and building trust in-person that cannot be replicated via zoom.

Our Values

At Postman, we create with the same curiosity that we see in our users. We value transparency and honest communication about not only successes, but also failures. In our work, we focus on specific goals that add up to a larger vision. Our inclusive work culture ensures that everyone is valued equally as important pieces of our final product. We are dedicated to delivering the best products we can.

Equal opportunity

Postman is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this website or directly to managers. Postman does not accept unsolicited headhunter and agency resumes. Postman will not pay fees to any third-party agency or company that does not have a signed agreement with Postman.