Engineering Manager, Language Security (TuxCare)
Apply NowTuxCare offers a portfolio of security solutions for Linux and open-source software aimed at enterprise organizations. With TuxCare, enterprises can automate live vulnerability patching, minimize downtime, keep their applications secure and compliant, and get support from a team that knows Linux security best – covering the most popular Linux distributions, end-of-life systems, programming languages, and much more. We are looking for an experienced Engineering Manager to take ownership of TuxCare's Language Security Research function — a group of four teams responsible for delivering security patches for end-of-life and non-EOL open-source language runtimes and frameworks. TuxCare's Endless Lifecycle Support (ELS) helps organizations continue using end-of-life software securely. We provide security patches for unsupported versions of Linux distributions and language ecosystems — including Java, JavaScript/Node.js, Python, PHP, Go, Spring, Angular, Django, Flask, and more. This is a manager-focused role within a technical delivery environment, where broad language ecosystem expertise and strong engineering leadership are both essential. You will manage four teams (~18 engineers) across Java, JavaScript/Go, Python, and PHP disciplines, setting the technical direction and operational standards for the entire function. Useful links: • CVE coverage: https://cve.tuxcare.com/els/cve • ELS for Languages documentation: https://docs.tuxcare.com/els-for-languages/
What You Will Own People & Teams • Lead and develop four teams (Java, JavaScript/Go, Python, PHP) totalling ~18 engineers • Build a culture of technical excellence, accountability, and continuous improvement • Define hiring plans, conduct performance reviews, and drive career development for your reports • Manage onboarding and ramp-up of new team members, projects, and libraries into the team's scope
Technical Direction • Set and enforce standards for CVE analysis, vulnerability assessment, patch backporting, and security release processes across all language ecosystems • Drive consistency in tooling and workflows across teams (CI/CD pipelines, patch delivery, release processes) • Evaluate and guide AI-assisted automation for backporting and vulnerability discovery • Serve as the final technical escalation point for complex or cross-team security issues
Delivery & Operations • Own SLA compliance across all language platforms • Align team efforts with client expectations and delivery commitments • Organise and continuously improve development workflows and engineering processes • Coordinate internal documentation and ensure it reflects the actual state of each project • Ensure smooth coordination between language teams and OS, Docker, and platform teams • Manage scope boundaries and overlap with OS and platform teams, particularly around shared dependencies and cross-ecosystem vulnerabilities