Information Security Manager

About Bobsled

Our goal at Bobsled is to transform the way data is shared across organizations, clouds, and data platforms. Our cross-cloud platform enables enterprises to share data quickly and securely through one unified control plane that manages all aspects of data sharing, including replication, updates, versioning, entitlements, telemetry, and more. 

By solving these problems we will: 

• Remove barriers to collaboration between organizations
• Facilitate and democratize the use of data to enable better decision making

We believe that by using data collaboratively, we can enable better solutions to the world’s hardest problems.

The Role

We are looking for an Information Security Manager to develop and implement Bobsled’s InfoSec policies, processes and standards. The ideal candidate will have a strong background in cloud-native security engineering, knowledge of security best practices and control frameworks, and solid communication skills. 

This is a critical role and your work will be pivotal in our effort to build a highly secure and resilient platform as well as a security-minded culture.  

Key Responsibilities

• Develop and implement information security policies, procedures, and standards to protect the company's information assets and comply with regulatory requirements
• Manage incident response efforts, including identifying and containing security breaches, and coordinating post-incident activities such as reporting and recovery
• Conduct regular security assessments and audits to identify vulnerabilities and risk areas, and recommend and implement appropriate controls
• Stay current on emerging security threats and technologies, and ensure the security of the company's IT infrastructure, including networks, systems, and applications
• Educate employees on information security best practices and ensure they are aware of and comply with security policies and procedures
• Work with external security vendors and partners to provide necessary support and services
• Collaborate with other departments, such as legal, compliance, and risk management, to ensure alignment on security-related matters

Preferred Qualifications

• 4+ years experience in a Security Engineering, Security Operations or Risk-focused role
• Strong security engineering fundamentals background, especially in the field of infrastructure security, cloud-native identity, controls in GCP, AWS, and Azure 
• Relevant information security certifications (e.g., CISSP, CISM, CISA, CRISC, CCSP, Azure) 
• Proven experience in operational security practices in a cloud-first environment, especially incident response, vulnerability assessment, and privileged access management
• Knowledge of security best practices and control frameworks (e.g., ISO 27001, GDPR, NIST, CISA, NCSC) 
• Solid analytical and problem-solving skills
• Solid communication skills, to effectively communicate security risks and solutions to stakeholders at all levels of the organization.

Compensation

• US Salary Range: 130-160K
• Outside the US salaries are adjusted to account for differences in payroll taxes, cost of providing benefits, and foreign exchange risk
• We also offer competitive equity compensation. #LI-Remote

Benefits

• Health Insurance (for US employees): Medical (100% paid), dental and vision benefits for you and your family
• Generous PTO policy (for US employees) and parental leave
• Fully upgraded Apple MacBook and 4K monitor
• Home office setup reimbursement program (up to $1K)
• Flexible work hours in fully-remote work environment
• Fully-sponsored individual coaching for all employees to help foster a culture of personal reflection and growth (optional though encouraged)

We understand that no candidate is perfectly qualified for any job. Experience comes in different forms; many skills are transferable; and passion goes a long way. Even more important than your resume is a clear demonstration of skill, dedication, and the ability to thrive in a fluid and collaborative environment. We want you to learn new things in this role. We’re hiring at multiple levels of seniority, so we encourage you to apply if your experience is close to what we’re looking for.

We are committed to fostering and empowering an inclusive community within our organization. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, national origin, citizenship, age, marital status, veteran status, disability status, or any other characteristic protected by law.  #LI-Remote