IT Cyber Security Manager

Exol

1d•$147,000 - $202,400

About The Position

Exol is seeking a versatile, IT Cyber Security Manager to protect assets and reduce risk across both public cloud infrastructure and our physical warehouse operations. This is a high-impact role where the digital world meets the physical supply chain. You will be responsible for securing our cloud infrastructure while simultaneously ensuring the integrity of the networks and technology powering our fulfillment centers. This role will play a key role in ensuring effective controls are implemented, adhering to SOC 2 and ISO 27001 standards. You will work closely with DevOps, IT Operations, and Warehouse Operations teams to build a security-first culture that enables speed without compromising security. Exol is pioneering warehousing-as-a-service, offering outsourced warehousing operations, and specializes in automated warehousing solutions. Our focus is on the efficient movement of goods in cases and pallets across all sectors, such as wholesale, retail, and general merchandising. Exol is an independently managed joint venture between Symbotic and Softbank.

Requirements

Bachelor’s degree in computer science or a related field.
Minimum 8 years in Information Security or Network Engineering.
Compliance Frameworks: Deep practical knowledge of SOC 2 and ISO 27001 frameworks; you have likely been through an audit before.
Network Security: Strong understanding of networking protocols (TCP/IP, VLANs, VPNs) and experience securing physical locations (branch offices or warehouses).
Cloud Fluency: Hands-on experience with major public cloud vendors, cloud security principles, and toolsets.
Operational Mindset: Ability to balance strict security requirements with the need for efficiency in a fast-paced logistics environment.

Nice To Haves

Certifications such as CISSP, CISA, CCSP, or CEH.
Experience with warehouse management systems (WMS) or supply chain logistics.
Knowledge of Zero Trust architecture principles.
Environment: Proven track record working in a fast-paced startup environment; ability to context-switch and manage competing priorities effectively.

Responsibilities

Compliance & Governance (SOC 2 / ISO 27001)
Vulnerability Management: Use cloud-native security tools to detect threats, vulnerabilities and misconfigurations. Develop effective and repeatable vulnerability management processes
Audit Readiness: Lead technical implementation of security controls required for SOC 2 Type II and ISO 27001 certification.
Policy Management: Review and promote adherence to security policies, ensuring they are practical and enforced across both cloud and warehouse environments.
Evidence Collection: Automate security control evidence for compliance/audit purposes.
Vendor Risk: Evaluate third-party software and logistics hardware vendors to ensure they meet security standards.
Warehouse & Network Security Edge Protection: Collaborate with network engineers to securing infrastructure at warehouses locations, including firewalls, SD-WAN, and wireless access points.
IoT & Device Security: Implement security protocols for warehouse technologies, including handheld scanners, label printers, robotics, and IoT devices.
Access Control: Work closely with facilities team to manage and audit physical and logical access controls for warehouse staff, ensuring "least privilege" principles are applied.
Cloud Security IAM Management: Work with the IT Operations team to oversee Identity and Access Management (IAM) to ensure secure authentication for users, apps, devices, and cloud resources.
DevSecOps: Collaborate with the DevOps team to ensure effective SAST/DAST scanning of repos and CI/CD pipelines.