Security Program Manager Jobs in Detroit, MI
Security Program Manager jobs in Detroit are concentrated in the New Center, Downtown, and Midtown corridors, driven by demand in defense contracting, automotive technology, financial services, and healthcare. Employers hiring right now include Allied Universal, Aurora Innovation, and Kastle Systems. See the openings below and apply to the ones that match your experience.
Find Security Program Manager JobsOverview
Showing 5 of 38+ Security Program Manager jobs











Job Description
We are seeking a Security Software Engineer to build and harden software systems supporting DoD programs operating under CMMC/NIST 800-171/FedRAMP compliance requirements. You will embed security across the SDLC—from design and code review through CI/CD and cloud deployment—working alongside engineering, DevSecOps, and IT teams in a regulated, cloud-native environment (AWS Commercial and GovCloud, Azure GCC High).
Responsibilities
Core Engineering & Secure Development:
- Design and develop secure software with a security-first mindset baked into every phase of the SDLC.
- Apply secure coding standards, threat modeling, and vulnerability mitigation aligned to NIST 800-53 and CMMC Level 2/3 controls.
- Conduct architecture reviews and code hardening to address OWASP Top 10 and DoD STIGs.
- Automate security gates in CI/CD pipelines (SAST, DAST, dependency scanning, secrets detection).
Security Architecture & Controls:
- Design secure system and API architectures for multi-tenant cloud environments, including GCC High and FedRAMP-authorized platforms.
- Implement IAM controls, JIT provisioning, SSO/SAML/OIDC flows, and least-privilege authorization frameworks (e.g., Cognito, Azure AD).
- Instrument applications with security logging and monitoring that satisfies audit and continuous monitoring requirements (AU/SI control families).
Vulnerability Management & Response:
- Lead code reviews, SAST/DAST scans, and targeted penetration testing; document findings against control frameworks.
- Triage and remediate vulnerabilities within POA&M timelines; maintain artifact evidence for compliance assessments.
- Support incident response for application-layer events; contribute to after-action reports and corrective action plans.
Cross-functional Collaboration:
- Serve as the embedded security champion for engineering squads, raising the security bar through mentorship and code review culture.
- Develop and deliver security training and runbooks tailored to engineering and DevOps team members.
- Collaborate with DevOps/SRE to enforce secure IaC, WAF rules, network controls, and runtime monitoring across AWS and Azure environments.
Required Qualifications
- Bachelor’s degree in Computer Science, Engineering, or related field—or equivalent experience.
- 3+ years of software engineering experience with a strong focus on security.
- Proficiency in one or more programming languages (e.g., JavaScript/TypeScript, Python, Go, C#).
- Experience with secure coding practices and frameworks.
- Strong understanding of application security principles, including:
- OWASP Top 10
- Secure API/REST design
- Cryptography fundamentals
- Authentication/authorization patterns
- Experience with code scanning tools (SAST/DAST), threat modeling, and penetration testing.
- Familiarity with NIST 800-171, CMMC, or FedRAMP security control requirements and evidence collection.
- Hands-on experience with AWS and/or Azure security services (IAM, WAF, Security Hub, Defender, Sentinel); GCC High or GovCloud experience a plus.
Preferred Qualifications
- Experience with container security (Docker, ECS).
- Working knowledge of Zero Trust Architecture principles.
- Experience building DevSecOps pipelines in regulated environments; familiarity with tools like Prisma, Checkov, Snyk, or Aqua.
- Relevant certifications (any of the following):
- CISSP, CSSLP, or CASP+
- OSCP
- CEH
- GIAC (GWAPT, GSEC, GWEB) or CCP/CCA (UK Cyber Essentials equivalent)
- Experience securing microservices or event-driven architectures on ECS; background in federal or cleared environments preferred.
See All 38 Security Program Manager Jobs in Detroit
Find roles in Detroit that match your experience and apply in just a few clicks.
Find Security Program Manager JobsSecurity Program Manager Job Market in Detroit
Who's Hiring



Top Industries Hiring
- Technology & Software
- Science & Research
- Construction & Real Estate
- Electronics & Hardware
- Healthcare & Medical Services
Security Program Manager Jobs in Detroit: Frequently Asked Questions
How do I get a security program manager job in Detroit?
Focus your search on Detroit's defense contractors, automotive OEMs and suppliers, large regional health systems, and financial institutions, which consistently drive local hiring. Jobs concentrate Downtown, in the New Center area, and in suburban corridors like Dearborn and Troy. Candidates with a PMP or CISSP certification, experience managing cross-functional security programs, and familiarity with regulated industry compliance frameworks stand out in this market.
Which companies hire security program managers in Detroit?
Employers hiring security program managers in Detroit right now include Allied Universal, Aurora Innovation, and Kastle Systems, based on current listings on Migrate Mate as of July 2026. Detroit's hiring mix leans heavily toward automotive and mobility firms, defense and government contractors, large health networks, and regional financial institutions, reflecting the city's industrial and institutional employer base.
Are there remote security program manager jobs in Detroit?
Yes, though with limits: security program manager roles that involve hands-on infrastructure oversight or classified environments tend to require on-site presence, while policy, risk, and vendor management functions are more remote-compatible. About 47% of security program manager openings tied to Detroit are remote or hybrid as of July 2026. Program governance, compliance reporting, and third-party risk work are the functions most commonly offered in a remote or hybrid arrangement locally.
How can I get a security program manager job in Detroit with little or no experience?
The most realistic entry path in Detroit is through a security analyst or IT project coordinator role at one of the region's large automotive suppliers, health systems, or government contractors, many of which promote internally into program management. Pursuing a CompTIA Security+ and a foundational project management credential sharpens your profile. Detroit employers in regulated sectors also value candidates who have supported audits, managed vendor relationships, or led small security initiatives, even in adjacent roles.
Which industries hire the most security program managers in Detroit?
The sectors hiring the most security program managers in Detroit are Technology & Software, Science & Research, and Construction & Real Estate, based on current listings on Migrate Mate as of July 2026. Detroit's concentration of automotive OEMs, Tier 1 suppliers, defense contractors, and large health networks creates sustained demand for security program managers who can navigate complex, regulated operating environments.
Related Jobs in Michigan
See All 38 Security Program Manager Jobs in Detroit
Find roles in Detroit that match your experience and apply in just a few clicks.
Find Security Program Manager Jobs