Senior Manager - Security Platform Engineering

We are seeking an experienced and strategic Senior Manager of Security Platform Engineering to lead our security platform engineering team. This role is responsible for managing and enhancing our comprehensive suite of security controls and platforms that protect Nordstrom’s enterprise environment. The ideal candidate will drive technical strategy for security tooling, optimize platform performance, and lead initiatives to consolidate, integrate and modernize our security infrastructure while building a high-performing engineering team.

• Develop and execute a strategic roadmap for security platforms across multiple domains, including endpoint protection, cloud security, data protection, email security, and logging/monitoring systems.
• Drive consolidation and modernization initiatives to simplify and streamline security tooling while enhancing protection capabilities and reducing operational overhead.
• Create multi-quarter implementation plans that align with enterprise security vision and business objectives.
• Lead the design, implementation, and lifecycle management of enterprise security platforms including EDR, AV, DLP, encryption, SIEM, CSPM, email security, and related technologies.
• Build, lead, and mentor a diverse team of security platform engineers across operational support and core engineering functions.
• Build strategic partnerships with key stakeholders across IT, engineering, and business units.

• Bachelor’s degree in Computer Science, Information Security, or related field—or equivalent practical experience.
• 8+ years of experience in information security or cybersecurity with a focus on security engineering, architecture, or operations.
• 3-5 years of experience in security management roles with a track record of leading high-performing technical teams.
• Deep understanding of enterprise security architecture and technologies, particularly in the areas of endpoint protection, data security, and monitoring.
• Experience leading complex security platform implementations, migrations, or upgrades in enterprise environments.
• Strong knowledge of security frameworks and standards (e.g., NIST CSF, ISO 27001, CIS Controls).