Senior Product Manager, Security & Infra

CoreWeave is The Essential Cloud for AI™. Built for pioneers by pioneers, CoreWeave delivers a platform of technology, tools, and teams that enables innovators to build and scale AI with confidence. Trusted by leading AI labs, startups, and global enterprises, CoreWeave combines superior infrastructure performance with deep technical expertise to accelerate breakthroughs and turn compute into capability. Founded in 2017, CoreWeave became a publicly traded company (Nasdaq: CRWV) in March 2025. Learn more at www.coreweave.com. What You’ll Do: We are seeking a Product Manager, Security & Identity to own the roadmap and delivery of CoreWeave’s workforce security and identity platforms across IT Infrastructure and Operations. In this role, you will focus on identity and access management, secure collaboration, endpoint/VDI, and SaaS governance. You will partner closely with IT Engineering, Security, People, and Compliance to make access secure by default, reduce friction in onboarding and offboarding, and improve the overall employee experience. About the role: You will translate requirements from Security, Compliance, IT, and business stakeholders into clear product outcomes across platforms such as Okta, Opal, VDI, MDM, Google Workspace, Slack, Zoom, and other SaaS applications. You will help convert the existing Staff IT Systems Engineer responsibilities into scalable, measurable product capabilities that align with the IT Infra and Ops charter.Own the product vision, strategy, and roadmap for IAM and security-aligned IT infrastructure, including Okta, access governance, endpoint management, and VDI, aligned to IT Infra and Ops priorities. Act as a primary product partner and escalation point for Engineering and Security on identity, access, and secure remote access, helping prioritize and resolve high-impact issues. Define and improve end-to-end joiner, mover, and leaver flows, ensuring user provisioning, de-provisioning, and access changes are secure, automated, and reliable. Establish standards for SSO integrations and app onboarding and offboarding in Okta, working with engineers to onboard new applications, deprecate legacy patterns, and maintain a consistent SSO experience. Design and roll out access policies, baseline RBAC, and Just-in-Time and time-bound access patterns in partnership with Security, Compliance, and IT Engineering, with clear controls and auditability. Own the VDI and secure remote access experience as a product surface, partnering with engineering on performance, reliability, and hardening, and defining SLIs, SLOs, and incident playbooks. Collaborate with Security, People, and IT to define automated onboarding and offboarding processes that cover identity, devices, collaboration tools, and privileged access. Define requirements for automation, policies, and scripts using vendor APIs to manage company devices and SaaS services such as Google Workspace, Slack, Zoom, and MDM tools. Partner with IT Infra and Ops and Finance to support asset and SaaS lifecycle management, including inventory visibility, licensing utilization, and access governance for endpoints and applications. Ensure documentation, runbooks, and training material for IAM, VDI, and related security and IT processes are accurate, accessible, and kept up to date for internal employees and IT staff. Build strong relationships with IT Engineering, Security, Compliance, People, and business stakeholders, with clear intake, prioritization, and communication around roadmap, tradeoffs, and delivery. Define and track key metrics such as time-to-access for new hires, reduction in access-related tickets, SSO coverage, QAR completion, and control failures, and use these metrics to drive prioritization. Who You Are: 7+ years of experience in IT product management, technical program management, or systems engineering roles focused on SaaS, identity, security, or endpoint platforms. Practical experience with administration or close partnership on platforms such as Okta (Identity Engine and Identity Governance), Google Workspace, Slack, Zoom, MDM or endpoint management tools, and VDI solutions. Strong understanding of identity and access management concepts and practices, including SSO, federation, RBAC, joiner and leaver lifecycle, privileged access, and quarterly access reviews. Experience collaborating with or supporting Microsoft, Linux, and Mac user environments, especially for secure access, device management, and productivity tooling. Demonstrated experience defining and driving automation workflows and integrations that remove manual IT and security tasks, such as access provisioning, group management, and device or SaaS lifecycle actions. Familiarity with CI or CD tools and Git, and the ability to work closely with engineers on configuration, releases, and environment management. Comfort working with at least one programming or scripting language, such as Python or Go, at a level sufficient to understand implementation options and tradeoffs. Experience partnering with Security and Compliance on access controls, ITGCs, and IT application controls for frameworks such as SOX or SOC 2, including control design and evidence collection. Strong written and verbal communication skills, with the ability to translate technical and security concepts into clear product narratives and decisions for both technical and non-technical audiences. Preferred: Experience in high-growth, cloud-native, or security-sensitive environments where identity, access, and endpoint posture are tightly linked to customer and compliance expectations. Prior ownership of IAM or security products such as Okta, Opal, CyberArk, VDI, or device management platforms as a product manager or TPM. Familiarity with automation and infrastructure-as-code tooling such as Terraform, Ansible, Chef, Intune, Jamf, or similar technologies. Experience contributing to or leading M&A-related migrations involving identity consolidation, SSO rationalization