Senior Product Manager (Cloud WAF & API Security)

We are looking for a Senior Product Manager (Cloud WAF & API Security) to take end-to-end ownership of a core domain within Check Point’s cloud application security portfolio. This role sits at the heart of how modern enterprises protect internet-facing applications and APIs across cloud and hybrid environments—delivering security outcomes without slowing delivery teams.

Check Point’s security products are award-winning and industry-leading, trusted by thousands of customers worldwide. As the Product Manager for Cloud WAF and API Security, you will define the product vision and strategy end-to-end: from deeply understanding customer needs and attacker/market trends, through defining the roadmap and guiding execution, to ensuring successful adoption and long-term value.

You will work closely with engineering, UX, research, product marketing, sales, and customer success—leading complex initiatives across multiple teams. This role requires strong product judgment, the ability to lead through ambiguity, and a passion for building scalable, high-quality cloud security products that solve real customer problems.

A key success factor in this role is strong Agile/SAFe leadership, including experience driving or influencing Agile transformation to improve flow, predictability, and customer impact

Major Responsibilities

• Lead the product strategy, vision, and roadmap for Cloud WAF and API Security (WAAP) capabilities, aligned with company goals, customer outcomes, and evolving attacker techniques.
• Own customer discovery and problem validation: engage enterprise security teams, platform teams, and developers to understand workflows, constraints, and adoption blockers across cloud environments.
• Drive a roadmap that addresses key WAAP areas such as:
• Cloud WAF policy and rule management, tuning, and false-positive reduction
• API discovery and inventory (including shadow/zombie APIs)
• API behavioral anomaly detection
• Auth and abuse patterns (e.g., broken auth, BOLA, scraping, credential stuffing) in partnership with bot/abuse controls
• Integrations with CI/CD, API gateways, ingress controllers, service mesh, and cloud-native tooling
• Observability and analytics (security visibility, attack forensics, risk posture)
• Own requirements and prioritize delivery; ensure crisp execution using SAFe/Agile best practices (backlog readiness, PI planning support, dependency management, clear acceptance criteria, outcome-based prioritization).
• Contribute to or drive Agile transformation efforts across teams: improve operating cadence, delivery predictability, cross-functional alignment, and measurable outcomes.
• Work closely with UX/UI to deliver intuitive workflows for both security and platform teams (policy authoring, onboarding, triage, tuning, and incident response).
• Drive end-to-end product delivery from concept to launch: user stories, validation, beta programs, release readiness, and launch execution.
• Define success metrics and iterate post-launch using data (adoption, efficacy, performance, cost signals, support escalations, retention/expansion).
• Collaborate with product marketing on positioning, messaging, and go-to-market planning for releases and major launches.
• Engage with customers, sales, and customer success to gather feedback, address concerns, and identify growth opportunities.

Desired Background

• Bachelor’s degree in Computer Science, Engineering, Business, or related field (MBA a plus).
• 5+ years of Product Management experience in cybersecurity or adjacent cloud infrastructure domains; experience in enterprise-grade products is strongly preferred.
• Cloud WAF / API Security experience with strong understanding of modern web and API threats (e.g., OWASP Top 10 and API Top 10), and practical awareness of how protection works in production environments.
• Strong technical foundation in cloud and application delivery concepts (e.g., Kubernetes/ingress, API gateways, microservices, CI/CD, observability, identity signals).