×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Senior Principal Product Manager - Software Supply Chain

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: Red Hat, Inc.
Full Time position
Listed on 2026-01-08
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 150000 - 200000 USD Yearly USD 150000.00 200000.00 YEAR
Job Description & How to Apply Below
Position: Senior Principal Product Manager - Trusted Software Supply Chain

About the Job

Are you ready to lead the future of secure cloud-native software delivery?

We are seeking a Senior Principal Product Manager to drive the alignment and commercialization of our internal software build system, Konflux, as the core technology powering the Red Hat Advanced Developer Suite (RHADS) secure software supply chain. This is a strategic role critical to Red Hat's success.

Red Hat’s internal build system, Konflux, has transformed the way Red Hat delivers software by ensuring security is built-in, not bolted on. You will be responsible for bringing this proven security foundation to the market.

This position is at the intersection of Red Hat's most critical strategic growth areas:
Application Platform, Secure Software Supply Chain, and Developer Experience. By focusing on the strategic alignment of Konflux and RHADS, you will be instrumental in ensuring Red Hat's continued leadership position as the platform for the future.

Your mission is to ensure that all work done within Konflux is executed with shipping Konflux as RHADS in mind, solving critical market problems simultaneously.

What You Will Do Drive Strategic Product Leadership and Alignment
  • Drive Full Alignment:
    Lead the effort for the full alignment of Konflux and RHADS.
  • Go-to-Market Execution:
    Position RHADS as a leading solution for improving security posture, aligning with the broader GTM strategy.
  • Market Defense:
    Strategize and execute product plans to defend against competitive threats.
Secure Delivery System Architecture
  • Enforce Security by Policy:
    Define product requirements that leverage Konflux's foundation, where security is enforced through policy rather than documentation. Ensure the system embeds Secure SDLC activities directly into build and release pipelines, making security automatic rather than an external gate.
  • Scalable CI/CD:
    Utilize Konflux’s design, which uses dedicated clusters to replace traditional concurrency limits, enabling heavy‑duty teams to deliver faster and allowing for enough scale for ambitious goals, such as daily releases for supported product versions.
  • Traceability and Artifact Management:
    Lead enhancements in Pipelines and Git Ops to enable full traceability from Git commit, to build and image artifacts, and to supply chain security artifacts (sig, sbom, etc.). The system must be capable of generating accurate SBOMs and monitoring product releases with precision.
Feature Delivery and Innovation
  • Commercializing Upstream:
    Manage the delivery of a key 2026 milestone: ensuring Konflux is Deployable and Consumable Upstream for customers and community members to self‑install and start using as a secure build system.
  • Trusted Artifacts:
    Drive the successful delivery of trusted content, which uses SLSA Level 3 Konflux to build popular software packages.
  • AI Integration:
    Determine the productization plan for bringing applied AI to Konflux as a build system and to market via RHADS.
  • Component Strategy:
    Define the evolution of related supply chain products, such as incorporating Red Hat Trusted Profile Analyzer (NIST based assessment for regulatory compliance) and supporting the extension of Red Hat Trusted Artifact Signer (including Post Quantum Crypto support).
What You Will Bring
  • 10+ years of enterprise software industry experience in product management, technical marketing, or a similar technical product or customer‑facing role, specifically focused on developer tools, Dev Ops, or secure/trusted software supply chain solutions
  • Deep understanding of the software development lifecycle (SDLC), particularly in large, complex enterprise environments, and a passion for improving the developer experience
  • Expert‑level knowledge of developer tooling and build systems, with direct experience or familiarity with the concepts and challenges involved in operating an internal build and dependency system (like the one that will become RHADS)
  • Extensive knowledge of trusted software supply chain concepts, including security standards, best practices (e.g., SLSA), dependency management, vulnerability scanning, signing, provenance, and the use of tools like Tekton, Jenkins, or similar CI/CD pipelines
  • Direct experience with Red…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search