Key skills
Product ManagementSecurity Operations ExpertiseAI/ML KnowledgeCustomer EngagementCybersecurity Product ExperienceAnalytical RigorCross-functional InfluenceSelf-directed ExecutionAIMLLLMRAGAgenticSalesCloud Security
About this role
Netskope is a market-leading cloud security company focused on redefining Cloud, Network, and Data Security. They are seeking a Principal Product Manager to lead product strategy for AI-powered agentic security operations, owning the vision and roadmap for autonomous AI agents that investigate threats and perform security operations tasks.
Responsibilities:
- Define the product vision and roadmap for agentic security operations, expanding from DLP incident management into risk investigation, threat hunting, policy recommendations, and autonomous response
- Gather and prioritize product requirements and user stories. Identify which security workflows are best suited for full autonomy vs. human-in-the-loop agent assistance vs. traditional automation - and draw those boundaries clearly
- Own the end-to-end product lifecycle for agentic workflows: from agent design through prompt engineering, investigation quality benchmarking, UX design, launch, and post-launch optimization
- Gather and prioritize requirements through direct customer engagement, SOC ride-alongs, field team feedback, and production agent performance data (accuracy, risk score calibration, false positive rates)
- Collaborate with UX to design the analyst-agent interaction model: how investigations are presented, how analysts provide feedback, how trust is built through transparency into agent reasoning
- Collaborate with engineering, design, and marketing teams to deliver successful product launches
- Partner with engineering to evaluate and improve agent investigation quality - running evals to improve the accuracy, reliability, and safety of agents, tuning investigation workflows, and defining quality benchmarks for risk assessments, recommended actions, and incident summaries
- Define success metrics for agent performance: accuracy, risk score precision, time-to-resolution improvements, and cost-per-investigation
- Act as the primary product voice for agentic security operations across the organization - translating complex AI/agent capabilities into customer value for sales, marketing, and executive stakeholders
- Partner with agentic platform engineering on agent infrastructure: LLM cost optimization, latency budgets, multi-tenant isolation, and scaling agent workloads across management planes
- Present product updates and strategies to stakeholders
- Monitor product performance and make data-driven decisions for improvement
Requirements:
- 10+ years of work experience in the Software/IT industry is mandatory
- 7+ years of Product Management experience is mandatory
- Demonstrated understanding of SOC workflows: alert triage, incident investigation, threat hunting, detection engineering, and incident response. You should be able to describe what an L1 analyst does differently from an L3 threat hunter
- Working knowledge of modern AI/ML agent architectures - you don't need to write code, but you should understand concepts like multi-step agent workflows, tool use, prompt engineering, RAG, and the tradeoffs between autonomous and human-in-the-loop agent designs
- Hands-on product instincts - you do UAT, run live demos, review investigation outputs, challenge prompt designs, and write detailed acceptance criteria
- Experience representing the customer: building relationships with security practitioners, running SOC ride-alongs, and translating analyst pain into product requirements
- Track record of shipping products in fast-paced environments with overlapping workstreams and ambiguity
- 5+ years of experience building or product managing cyber-security products is desirable
- Experience building AI-powered products that went to production - not prototypes or demos. You've dealt with LLM hallucination, cost management, latency constraints, and quality measurement at scale
- Familiarity with the MITRE ATT&CK framework, common detection rule formats, and how SOC teams operationalize threat intelligence
- Experience with security data pipelines: event ingestion, alert correlation, enrichment, and the data challenges of multi-tenant security platforms
- Previous experience in a technical role (security engineering, detection engineering, solution architecture, or SOC analyst) before moving into product management