Job Summary:
WHOOP is a company focused on product security, and they are seeking a Senior Software Engineering Manager to lead multiple engineering teams executing on their product security strategy. The role involves overseeing HIPAA compliance, defining security strategies, and fostering a culture of innovation and teamwork within the organization.
Responsibilities:
• Build, lead, and grow multiple engineering teams executing on WHOOP’s product security strategy, including member authentication, vulnerability management, cloud governance, privacy rights fulfillment, and threat modeling.
• Oversee and drive WHOOP’s engineering readiness for HIPAA compliance, coordinating technical implementation, evidence collection, and ongoing governance activities across teams.
• Define and communicate long-term security strategy, architecture, and design principles for product-facing systems.
• Partner with engineering and compliance leadership to embed security and privacy by design across the software development lifecycle.
• Establish and enforce best practices, standards, and processes for secure software development, testing, and deployment.
• Drive continuous improvement initiatives that enhance team productivity, quality, and overall business impact.
• Provide mentorship, guidance, and career development for engineering managers and individual contributors.
• Foster a culture of innovation, teamwork, psychological safety, and continuous learning within the Product Security organization.
Qualifications:
Required:
• Proven experience as a technical leader managing multiple teams or a growing security engineering organization.
• Experience growing high level individual contributor career growth at the staff level or higher.
• Demonstrated success leading security or compliance initiatives in a regulated environment, preferably HIPAA or other health data compliance frameworks.
• Deep understanding of product security principles, including vulnerability management, data privacy, threat modeling, and secure software development.
• Experience building or integrating developer security tooling to improve secure-by-default practices.
• Strong technical background in software development, testing, and deployment processes.
• Excellent communication, interpersonal, and leadership skills with the ability to influence across teams and levels.
Preferred:
• Experience with AWS cloud environments and data-driven decision-making.
• Hands-on experience with infrastructure and cloud security in containerized environments (e.g., Docker, Kubernetes).
• Background in incident response and post-mortem analysis for security events.
• Familiarity with automation frameworks for vulnerability scanning, compliance checks, or infrastructure security.
• Prior experience scaling a product security or compliance engineering organization through major regulatory transitions (e.g., SOC 2 → HIPAA, or HIPAA → HITRUST).
Company:
WHOOP provides wearable fitness technology and a subscription platform that tracks physiological data for health and performance insights. Founded in 2012, the company is headquartered in Boston, USA, with a team of 501-1000 employees. The company is currently Late Stage.