Listing Description

SUMMARY

The Information Security Manager maintains and improves the Information Security Program and related governance, risk, and compliance components for Nautilus.  This individual will lead a small team of cybersecurity professionals in detecting and defending against cyber-attacks.  They will have a keen sense of what initiatives maximize risk mitigation and provide structure for ongoing cyber maturity improvements.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Develop and refine security policies in connection with established security controls and relevant privacy and compliance related requirements


• Serve as an escalation resource for cyber incident management


• Manage third party vendor relationships pertaining to security services


• Partner with product engineering teams to help secure product workloads (Servers, Kubernetes, etc.) in our multi-cloud (AWS, Azure, etc.) environment


• Coordinates information security risk assessments and tracks remediation efforts


• Maintains and improves reporting of key metrics related to security controls (e.g. vulnerability management, IAM, and phishing protections)


• Build, develop, and maintain healthy cross-functional relationships to create a culture of security throughout the organization


• Mentor and guide talent development of direct reports and assist in hiring talent

QUALIFICATIONS & EXPERIENCE

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelor's Degree in relevant technical program, or equivalent experience


• Security certifications a plus


• 3+ years of security team leadership experience


• 5+ years of experience in technical areas such as security, cloud infrastructure and workloads, endpoint security, or network security


• Hands on experience implementing technical and process changes led by security initiatives

• Demonstrates a positive mindset, high levels of character and integrity, and a keen awareness of continuous improvement


• Understands how team efforts are aligned with organizational objectives and priorities


• Adjusts positively to quickly changing priorities and shifting goals


• Listens to and embraces ideas and insights from others to find better solutions

• Strong interpersonal skills to collaborate with business stakeholders


• Exceptional communication and documentation skills – both written and verbal