Title: IT Senior Manager - Information Security Office Location: Saint Louis MO United States Category Technology - All Other Positions Job ID 2026-549327 Job Description: Overview Enterprise Mobility is a leading provider of mobility solutions, owning and operating the Enterprise Rent-A-Car, National Car Rental and Alamo Rent A Car brands through its integrated global network of independent regional subsidiaries. Enterprise Mobility and its affiliates offer extensive car rental, carsharing, truck rental, fleet management, retail car sales, as well as travel management and other transportation services, to make travel easier and more convenient for customers. Privately held by the Taylor family of St. Louis, Enterprise Mobility together with its affiliate Enterprise Fleet Management manages a diverse fleet of 2.4 million vehicles and accounted for nearly $39 billion in revenue through a network of more than 9,500 fully-staffed neighborhood and airport rental locations in more than 90 countries and territories. At the center of it all, our dedicated IT teams innovate, design and develop the technology that is redefining how customers rent, buy and share vehicles from our family of brands. Here, you will be part of a diverse and talented team that creates and delivers powerful technology solutions for our customers and employees across the world with the resources and support to develop in a variety of career paths. As an Enterprise Mobility team member, we offer an excellent package with market-competitive pay, comprehensive healthcare packages, 401k matching & profit sharing, schedule flexibility, work from home opportunities, paid time off, and organizational growth potential. This position offers the opportunity to work fully remote within the United States (except for Alaska and/or Hawaii). Team members who choose virtual / remote work should have an adequate space to serve as their home office, and must be able to work a schedule within U.S. Central Standard Time core business hours. This position will require employees to come on site to one of our St. Louis campus locations a few times per year for meetings/events or as needed. #LI-REMOTE Responsibilities The Information Security Office is seeking an experienced IT Senior Manager to lead our organization's internal Penetration Testing team, responsible for proactively identifying security vulnerabilities, emulating real-world threats, and strengthening the organization's cybersecurity posture. As an IT Senior Manager, you will have the opportunity to lead and grow high-performing technical professionals, oversee enterprise testing initiatives, communicate insights that inform strategic security decisions, and partner with technology and business teams to drive measurable security improvements. Candidates must have a strong cybersecurity background and understand offensive security methodologies. Success in this role is defined by the leader's ability to continuously develop the penetration testing team, drive ongoing improvement across offensive security processes, and deliver clear, actionable communication to internal and external stakeholders. The ideal candidate is detail‑oriented with strong communication, critical‑thinking, and collaboration skills; has a solid grasp of security frameworks and enterprise IT; and can interpret adversarial techniques, vulnerabilities, and threats. The successful candidate will be an influential leader who is comfortable guiding teams through change, supporting senior leadership with credible technical and security expertise, has a proven ability to achieve strategic goals, and can effectively articulate risk in ways that drive informed decisions. Additional Responsibilities: - Develop and maintain an ongoing comprehensive penetration testing strategy and roadmap aligned with departmental priorities, enterprise IT initiatives, business objectives, and the evolving threat landscape. - Define and track KPIs, identify optimization opportunities, and continuously improve team processes and methodologies. - Produce executive‑level reporting that clearly communicates trends, key risks, and overall program maturity. - Oversee penetration testing activities across EM, including project planning, execution oversight, reporting, and stakeholder communication to ensure high‑quality results and timely delivery. - Drive automation, process optimization, and tooling enhancements to continually strengthen the penetration testing program. - Stay current on security trends and provide expert guidance on emerging threats, attacker techniques, and mitigation strategies. - Lead and mentor a team of security engineers, providing technical guidance, career development, and performance management - Foster a culture of continuous learning, technical excellence, and responsible testing practices - Build strong relationships across our Global IT teams to ensure consistency, transparency, and best practices Knowledge, Skills, & Abilities: - Demonstrate exceptional communication and presentation skills, with the ability to translate technical findings into clear, actionable recommendations for diverse audiences. - Exhibit strong time‑management, organizational skills, and keen attention to detail in a fast‑paced environment. - Demonstrated ability to manage operations while driving and implementing strategic change simultaneously - Working knowledge of MITRE ATT&CK, NIST CSF, and other security frameworks - Strong understanding of network security, application security, cloud security, and authentication mechanisms. - Strong understanding of adversarial techniques, vulnerability exploitation, and modern attack vectors - Must have a demonstrated track record of successfully collaborating across the IT organization to achieve business objectives. - Superb relationship management skills, specifically related to leading change, with the ability to create a non-adversarial atmosphere and be viewed as a partner Equal Opportunity Employer/Disability/Veterans Qualifications Required: - Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future - Must reside in the United States (does not include Alaska or Hawaii) - Must be committed to incorporating security into all decisions and daily job responsibilities - 8+ years of related experience (can include a combination of experience in Information Technology, Information Security, and/or leadership) - 4+ years of experience leading cybersecurity functions within large organizations, with responsibility for team performance, strategic direction, and stakeholder engagement - 3+ years of experience of offensive security or penetration testing Preferred: - Bachelor's degree in Computer Science, Computer Information Systems, Management Information Systems, or related field preferred - Experience with common penetration test tools (e.g., Burp Suite, Metasploit, Cobalt Strike, Kali Linux, BloodHound, etc.) is preferred - Experience building or maturing an internal penetration testing or red team program - Certified Information Systems Security Professional (CISSP) or other related security certifications preferred

• Lead, coach, and develop the Infrastructure Security team, ensuring clear ownership, accountability, and strong execution • Define and drive the Infrastructure Security strategy, roadmap, standards, and operating model. • Prioritize team initiatives based on security risk, business impact, engineering capacity, and regulatory requirements • Guide security across infrastructure environments, including cloud platforms, Kubernetes, endpoints, privileged access management, remote access, and vulnerability management • Build scalable processes for risk prioritization, remediation tracking, and cross-functional collaboration • Partner with Engineering, Product, Infrastructure, and Security teams to integrate security early and improve execution • Communicate infrastructure security risks, priorities, trade-offs, and progress clearly to technical teams and leadership

Role Description We are hiring a Field CISO to be the public voice of HeroDevs in the AppSec and security-leadership community. - Lead the category conversation externally - Speak at major events such as RSA, Black Hat, BSides, OWASP Global, and regional CISO summits. - Publish original thought leadership: essays, research-backed reports, points of view. - Convene a CISO and AppSec advisory council and host an in-person dinner program in top metros. - Sell from the front by partnering with AEs and CRO on strategic accounts. - Translate value for prospects connecting EOL OSS exposure to metrics their boards track. - Pressure-test our positioning and product with insights from the buyer's perspective. - Coach the field by training AEs, SEs, and CSMs on engaging with security leaders. Qualifications - An AppSec or security leader with experience in application security, product security, or a significant portion of a security program. - Active voice in the community with an audience of practitioners. - Operator credibility from having done the work. - Commercially fluent, able to hold executive conversations. - Builder’s temperament, energized by ambiguity and willing to define a category. Requirements - Recent experience in a respected company, likely as CISO, Deputy CISO, VP or Head of AppSec, or VP or Head of Product Security. - Comfortable being the named, attributable face of a point of view. - Authority comes from practical experience. - Ability to partner cleanly with a sales team. Benefits - Executive-level base plus meaningful equity. - No quota; measures include category leadership, influenced pipeline, and internal leverage. Logistics - Reports to: CEO - Location: Remote, US-based with 30 to 40 percent travel for events, customer meetings, and team offsites. How to apply Send a short note. Skip the cover letter. Tell us why this problem is worth your attention right now. Include a link or two to something you have published or a talk you have given that you are proud of. We read everything. We move fast on the right people. At HeroDevs, we believe in the power of diversity, equity, and inclusion to drive innovation, creativity, and success. We are committed to creating a workplace that embraces and celebrates individual differences. We encourage people of all backgrounds and experiences to apply.

• Drive new business development by prospecting and selling Virtual Perimeter Guard to commercial businesses. • Execute a high-volume, high-activity sales process including outbound calls, field visits, and product demonstrations. • Build rapport and win new customer opportunities quickly. • Deliver persuasive presentations and articulate clear business cases for adopting Interface’s Virtual Perimeter Guard solution. • Collaborate with Marketing, Product, and Revenue Operations teams to align sales efforts with product launches and campaigns. • Track and analyze key metrics including pipeline health, activity levels, win/loss rates, and quota attainment. • Consistently achieve or exceed monthly, quarterly, and annual sales targets.