
Search by job, company or skills

Senior Product Manager — Fraud& Risk Platform
About the Role
We are looking for a Senior Product Manager to own the fraud & risk Platform — a critical, cross-cutting domain that spans AI-native security, fraud & risk, identity, compliance, PCI/cyber posture, data governance, and model governance. You will join a fast-moving fintech payments company and hit the ground running: learning the system with limited documentation, identifying gaps, and translating ambiguity into structured plans that engineering can execute. This is an end-to-end ownership role — from strategy and discovery through PRD authorship, user stories, and delivery — with a particular focus on Application Security and Fraud & Risk initiatives.
What You Will Own
Application Security
● Define and drive the product roadmap for AppSec capabilities — threat modeling, API security, secrets management, and vulnerability lifecycle management.
● Partner with Security Engineering to translate security findings into prioritized, sprint-ready epics and user stories.
● Own PCI-DSS, SOC 2, and cyber posture initiatives end-to-end: gap analysis → remediation roadmap → audit readiness.
● Lead discovery for AI-native security tooling (AI-assisted threat detection, LLM security guardrails, model attack surface mapping).
Fraud & Risk
● Own the full product lifecycle for fraud detection, transaction risk scoring, chargeback management, and identity verification.
● Define rules-engine and ML model requirements; work closely with Data Science to operationalize fraud signals.
● Drive discovery sessions with Operations, Compliance, and Customer teams; synthesize findings into PRDs with clear success metrics.
● Manage end-to-end delivery: business sign-off → engineering engagement → QA → launch → post-launch monitoring.
Data & Model Governance
● Establish product requirements for data lineage, retention policies, and access controls across the Trust Platform.
● Define model governance frameworks: model cards, drift monitoring, explainability, and bias detection for risk/fraud models.
● Coordinate with Legal, Privacy, and Compliance stakeholders to ensure regulatory alignment (CCPA, GDPR, FinCEN, OFAC).
Day-to-Day Responsibilities
● Immerse yourself in the existing system with limited documentation — map what exists, identify gaps, and produce clear documentation and plans.
● Write crisp PRDs, epics, and user stories that engineering teams can act on without ambiguity.
● Lead discovery: stakeholder interviews, competitive analysis, and data analysis to validate hypotheses before committing to build.
● Run sprint planning, backlog grooming, and cross-functional stand-ups for Trust Platform workstreams.
● Prepare and present business cases, roadmap updates, and delivery status to senior leadership for sign-off.
● Evaluate and recommend third-party tools and vendors across the Trust Platform stack (fraud, identity, security scanning, GRC).
● Maintain working knowledge of the regulatory and compliance landscape relevant to fintech payments.
Required Experience & Qualifications
Must-Haves
● 8+ years of product management experience, with at least 5 years in a fintech or payments processing company.
● Hands-on experience owning Application Security or Fraud & Risk product areas end-to-end (strategy through GA delivery).
● Proven ability to learn complex, under documented systems quickly and produce clear documentation.
● Deep comfort writing PRDs and user stories that technical teams can execute; strong understanding of Agile/Scrum.
● Track record of engaging engineering teams effectively post business sign-off — facilitating technical discussions, unblocking impediments, and driving to launch.
● Familiarity with PCI-DSS compliance requirements and how they translate into product/engineering work.
● Experience evaluating and selecting security, fraud, identity, and GRC tooling.
Technical Knowledge
● Fraud & Risk: fraud scoring platforms (Sift, Kount, Stripe Radar, Sardine), rules engines, chargeback workflows
● Identity: identity verification platforms (Persona, Socure, Jumio), SSO, MFA, FIDO2.
● Data & Model Governance: data catalog tools (Alation, Collibra), ML monitoring (Arize, Evidently AI, WhyLabs), model risk management frameworks.
● Compliance & GRC: CCPA, GDPR, SOC 2, NIST frameworks; GRC platforms (Vanta, Drata, Secureframe).
● AI/ML literacy: understanding of LLM security risks, prompt injection, model drift, and responsible AI principles.
Nice to Have
● Experience in card-present or card-not-present payment processing environments.
● Prior work at a payment network, acquirer, issuer, or payment facilitator.
● CISM, CRISC, CIPP, or similar certification.
● Familiarity with AI-native security tooling (Prompt Security, LakeraGuard, Protect AI).
Job ID: 151064319