Product Manager

At echo, we’re fixing a broken system. Vulnerability management isn't working – it’s reactive, noisy, and unsustainable. Instead of chasing CVEs, we’re eliminating them at the source.

Our AI-powered platform produces vulnerability-free base images that integrate cleanly into existing workflows, helping security and platform teams eliminate patching overhead without slowing down developers. Backed by top-tier investors and led by second-time founders who previously built the first software supply chain security company, which was later acquired by Aqua Security, we’ve gone from stealth to serving global enterprise customers in under six months.

We’re looking for a Product Manager to own Echo’s internal CVE-handling and patch automation engine. You’ll design the systems and workflows that detect, triage, and resolve vulnerabilities automatically across all images.

What you’ll do

• Define and lead the roadmap for Echo’s CVE-handling and patch automation engine.
• Design and prioritize systems that detect, classify, and remediate vulnerabilities across all image types and sources.
• Work with engineering to develop and optimize patching mechanisms - from version bumps and backports to AI-assisted custom patches.
• Leverage AI and data-driven approaches to improve detection, triage, and patch automation.
• Use data to identify coverage and process gaps, diagnose root causes, and drive solutions end to end.
• Collaborate with backend, security, and low-level engineers to increase automation and meet patching SLAs.
• Track and report key metrics - coverage, automation rate, SLA compliance - and deliver measurable improvement over time.

• 3+ years as a Security Researcher / Security Analyst / Security Engineer, or DevSecOps, with deep understanding of CVEs, scanners, EPSS, CVSS, and patching workflows.
• Previous experience in vulnerability management, from triage and reproduction, to applying patches and confirming resolution.
• Data-driven and systematic - skilled at analyzing vulnerability datasets, spotting patterns, and defining logic to improve automation accuracy.
• Proficient in applying data and ML techniques to enrich vulnerability data, improve detection, and automate patching decisions.
• Ready to move into product and apply deep security expertise to build scalable, automated systems

Why echo?

We're a fast-growing team composed of some of the coolest and most passionate people you'll meet, solving hard problems that really make a difference. You’ll have real ownership and a clear mission: to make cloud-native infrastructure secure by design.