Easy Apply
Easy Apply
Lead Product Security and Security Engineering strategy, scale shift-left security, architect authentication/authorization/encryption services, secure LLM/AI product integrations, build/red-team/PSIRT functions, and drive vulnerability remediation across engineering and product teams.
Navan is looking for a visionary Director of Security Engineering to lead the charge in protecting our customer-facing products and internal tools. As we pivot toward a future defined by AI-driven natural language interfaces, you will be the primary architect of a security strategy that balances rapid innovation with world-class defense-in-depth.
Reporting directly to the CISO, you will oversee two critical pillars of our defense: Product Security (S-SDLC, Threat Modeling, Pentesting) and Security Software Engineering (Core AuthN/AuthZ, Encryption Services). Your mission is to ensure that security is not a bottleneck, but a built-in feature of everything Navan builds.
What You’ll Do- Strategic Leadership: Own the overall strategy and roadmap for the Product Security and Security Engineering programs.
- Scale the Function: Develop and scale a "shift left" security culture by integrating automated security tooling and "Security as Code" solutions directly into the IDE / CI.
- Architect Core Services: Oversee the design and implementation of highly scalable security frameworks for authentication, authorization, and encryption, including cutting-edge transitions to Passkeys.
- AI & Emerging Tech: Secure the next generation of Navan products, specifically focusing on the security implications of LLM-integrated natural language interfaces and AI-driven workflows.
- Cross-Functional Partnership: Act as a key liaison between Security, Engineering, and Product teams to drive risk remediation and ensure "Security by Design".
- Team Building: Recruit, mentor, and manage high-performing teams, including the development of Red Team and PSIRT functions.
- Operational Excellence: Drive visibility into application vulnerabilities and technical debt, ensuring clear prioritization and pragmatic remediation.
- Experience: 12+ years in Security Engineering or Software Engineering, with at least 5 years in a senior leadership role managing technical teams.
- Technical Breadth: Deep expertise across the full stack, including Java Spring Framework, Cloud Infrastructure (AWS), and containerization.
- Identity & Access Specialist: In-depth knowledge of modern authentication (SAML, JWT, OIDC, Passkeys) and complex multi-tenant authorization frameworks.
- Security Domain Expertise: Proven track record in threat modeling, architecture reviews, and application penetration testing in high-risk environments (e.g., Fintech or Healthcare)
- Tooling Mastery: Hands-on experience with S-SDLC automation, including SAST, DAST, IAST, and SCA integration.
- Regulatory Knowledge: Familiarity with global compliance standards such as PCI DSS, SOC2, HIPAA, and FedRAMP.
- Communication & Influence: The ability to translate complex security risks into business impact for executive stakeholders while maintaining deep technical credibility with engineers.
Top Skills
Authn
Authz
AWS
Containerization
Dast
Encryption
Fedramp
Hipaa
Iast
Java
Jwt
Llm
Oidc
Passkeys
Pci Dss
Penetration Testing
S-Sdlc
SAML
Sast
Sca
Soc2
Spring Framework
Threat Modeling
Navan Austin, Texas, USA Office
501 Congress, 5th floor, Austin, TX, United States, 78701
Similar Jobs at Navan
.png)
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
Lead Product Security and Security Engineering, define strategy and roadmap, integrate security tooling into SDLC, architect auth/encryption services, secure LLM-driven products, build Red Team and PSIRT, and drive vulnerability remediation across products.
Top Skills:
AuthenticationAuthorizationAWSContainerizationDastEncryptionIastJavaJwtLlmOidcPasskeysSAMLSastScaSpring Framework
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
The Integrations Manager will guide customers in implementing Navan's integrations, troubleshoot issues, collaborate with internal teams, and improve documentation and training for better customer outcomes.
Top Skills:
APIsErp SystemsSftpSQL
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
The Email Marketing Manager will lead email strategy, optimize performance, manage campaigns, and ensure effective customer engagement through creative email content and data analysis.
Top Skills:
MarketoSalesforce
What you need to know about the Austin Tech Scene
Austin has a diverse and thriving tech ecosystem thanks to home-grown companies like Dell and major campuses for IBM, AMD and Apple. The state’s flagship university, the University of Texas at Austin, is known for its engineering school, and the city is known for its annual South by Southwest tech and media conference. Austin’s tech scene spans many verticals, but it’s particularly known for hardware, including semiconductors, as well as AI, biotechnology and cloud computing. And its food and music scene, low taxes and favorable climate has made the city a destination for tech workers from across the country.
Key Facts About Austin Tech
- Number of Tech Workers: 180,500; 13.7% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Dell, IBM, AMD, Apple, Alphabet
- Key Industries: Artificial intelligence, hardware, cloud computing, software, healthtech
- Funding Landscape: $4.5 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Live Oak Ventures, Austin Ventures, Hinge Capital, Gigafund, KdT Ventures, Next Coast Ventures, Silverton Partners
- Research Centers and Universities: University of Texas, Southwestern University, Texas State University, Center for Complex Quantum Systems, Oden Institute for Computational Engineering and Sciences, Texas Advanced Computing Center
