Role Description The Lead Security Engineer drives Nerdy’s enterprise security and infrastructure strategy to ensure scalable, secure, and reliable systems in an AWS first environment. This role combines strategic leadership and hands-on operational oversight to protect company assets, ensure compliance, and support high-growth business objectives. Responsibilities - Define and execute enterprise security strategy - Partner closely with leaders to cover compliance, automation, and security best practices across the organization - Lead business continuity and disaster recovery planning - Identify and address security gaps created by the rapid adoption of new tools and platforms - Oversee threat detection, incident response, and vulnerability management - Ensure regulatory, privacy, and data protection compliance - Use AI-powered tools (e.g., Cursor, Claude Code, or equivalent) to implement security guardrails, automate checks, and accelerate security workflows - Mentor other engineers and collaborate with peers to strengthen the team's collective knowledge - Design secure, scalable, and resilient architecture - Embed security controls across Engineering, Product, Legal, and People teams - Manage vendors, security tools, and IT systems - Report security posture and risk metrics to executives Qualifications - 7+ years in Security Engineering, IT, or Infrastructure leadership - Experience leading enterprise security in AWS-first environments - Hands-on experience with AWS security (IAM, security groups, logging, monitoring) - Strong knowledge of cybersecurity frameworks, risk, and compliance - Experience leading threat detection, vulnerability management, and incident response - Demonstrated ability to influence, driving security adoption across engineering and product teams - Expertise in cloud infrastructure, IAM, endpoint and network security - Explicit mentoring of senior-level engineers regularly - Ability to align security strategy with business goals - Strong executive communication and stakeholder management skills - Experience using AI tools for security purposes with tools like Cursor, GitHub Copilot, Claude, or similar - Bachelor’s in CS, Information Security, or related field (advanced degree/certs preferred) - Nice to have: Familiarity with NIST 800-171 and/or CMMC Level 2 compliance frameworks Benefits - Market-leading salary paired with clear promotion pathways and equity (RSUs) - become an owner in our success. - 401(k) plan with company match and immediate vesting. - We embrace flexibility across time zones and working styles to attract top talent and meet learners where they are. - Recharge on your terms, ensuring maximum productivity. - Access an all-inclusive learning membership for you and your household, including 1:1 tutoring hours, unlimited on-demand classes, and our full suite of learning products and services. - Leverage cutting-edge AI tools to accelerate your workflow. - Medical, dental, vision, life, STD & LTD plans plus strong maternity, paternity, and adoption leaves - numerous options for you and your family.

• Design and implement Filigran's first CSIRT and Security Operations (SecOps) framework. • Define processes for incident detection, response, containment, and recovery. • Manage relationships with external Managed SOC providers for hybrid Level 1 monitoring. • Act as primary incident commander for security events and data breaches. • Build and maintain incident playbooks and escalation paths. • Drive post-incident reviews and lessons learned. • Ensure timely breach notification to supervisory authorities in coordination with the General Counsel. • Leverage Filigran's own products (OpenCTI, OpenBAS/OpenAEV) to run advanced threat intelligence analysis and attack simulations. • Continuously evaluate threats relevant to Filigran and its ecosystem. • Provide actionable intelligence to leadership and engineering teams. • Establish the Filigran-CERT (F-CERT) and position it as the trusted security function for the company. • Build and maintain an ISMS aligned with ISO 27001, SOC 2, or equivalent standards. • Lead security certification efforts and manage external audits. • Own the vendor security assessment process and third-party risk management program. • Hold the formal Data Protection Officer mandate under GDPR, serving as the official point of contact for supervisory authorities (e.g. CNIL). • Act as the internal gatekeeper ensuring that AI initiatives, data processing activities, and security controls meet applicable regulatory requirements. • Collaborate closely with the General Counsel to translate legal and policy obligations into operational controls. • Monitor evolving regulation (GDPR, AI Act, ePrivacy, NIS2) and assess operational impact in coordination with Legal. • Handle or coordinate responses to data subject requests (DSARs) and regulatory enquiries. • Act as a player-coach, balancing hands-on work with preparation for team growth. • Define future roles and responsibilities for SecOps. • Mentor and onboard new hires as the team scales.

Summary Job Description: Baptist Health is looking for a Manager, Information Security to join our team! This is a remote work position that requires residency in KY or IN The Information Security Manager is responsible for activities and programs related to Information Security including to any of the following, but not limited to Information Security operations, engineering and architecture, governance, auditing, risk management, compliance and enterprise security. This role performs two core functions for the enterprise. The first is overseeing the operations of the enterprise’s security solutions through management of the organization’s Information Security workforce. The second is establishing an enterprise security stance through policy, architecture, risk management, compliance and training processes. Secondary tasks will include the selection of appropriate security solutions, and oversight of any vulnerability audits and assessments. The Information Security Manager is expected to interface with peers in IT departments as well as with the leaders of the business units to both share the information security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation. The Information Security Manager assigns personnel to various security projects and directs their activities; reviews and evaluates their work and prepares performance evaluations. They also confer with and advise staff on administrative policies and procedures, technical problems, priorities, and methods. Incumbent is responsible for all aspects of personnel management including interviewing, assigning work, directing employee’s daily activities, review and evaluates their work, prepares and presents performance evaluation to employees. They also make decisions on personnel actions (hiring, terminations, promotions, etc.), prepare annual operating and capital budgets and manage expenditures/variances according to budget plan and are responsible for meeting budget goals and objectives assigned to the department. Qualifications: - Bachelor’s degree OR 5 years of full-time experience in information security management role in lieu of degree. - Experiencing managing deployments and/or teams using security tools such as CrowdStrike Falcon, Splunk, Nexpose, CyberArk, Ordr, Fidelis, Cisco Umbrella, Duo, and Cloudflare preferred. - Firewall management, IT, IoT, IoMT vulnerability and asset management preferred. - Enterprise server, endpoint, identity management, mail or other system administration experience preferred. - Security certifications preferred but not required such as: CISSP, CISM, CRISC, CISA, GIAC certifications. Work Experience Relevant Work ExperienceEducation If you would like to be part of a growing family focused on supporting clinical excellence, teamwork and innovation, we urge you to apply now! Baptist Health is an Equal Employment Opportunity employer.

• Monitor and triage security alerts generated by SIEM, EDR, and security monitoring tools • Investigate security incidents including phishing, malware, endpoint compromise, and unauthorized access • Perform root-cause analysis and document incident findings and remediation actions • Tune SIEM detection rules, alerts, and dashboards to reduce false positives and improve fidelity • Conduct threat hunting activities using logs from endpoints, networks, cloud platforms, and identity providers • Respond to security incidents in accordance with established incident response playbooks and SLAs • Escalate complex or high-risk incidents to Level 3 or Incident Response teams with detailed context and evidence • Assist with vulnerability management findings and validation of remediation • Support log ingestion, parsing, normalization, and retention requirements for SIEM platforms • Maintain accurate case notes, incident reports, and security documentation • Collaborate with IT, engineering, and security teams to improve overall security posture