About The Role
In this role, you will be at the forefront of shaping our cyber security governance, risk, and compliance strategies. Your responsibilities will include leading the development and coordination of a comprehensive program that encompasses cyber risk identification, analysis, and mitigation. You will ensure compliance with internal policies and regulatory requirements, such as NIST, SOX, and PCI, while collaborating with various teams including Legal, HR, and IT.
Responsibilities
- Develop and implement a robust Governance, Risk, and Compliance (GRC) program.
- Define and align security policies, strategies, standards, and controls.
- Conduct third-party risk assessments and manage technology compliance initiatives.
- Proactively identify and address data protection, GRC, and third-party risk issues.
- Manage and mentor staff involved in vendor risk management and data protection.
- Oversee IT and Information Security Training and Awareness programs.
- Collaborate with stakeholders to drive risk mitigation and prioritize remediation efforts.
Why You'll Love This Role
Role
You will play a key role in our Information Security and IT teams, working alongside the CISO and the business community to embed security best practices. Your efforts will include:
- Developing and implementing an end-to-end IT and information security risk management program.
- Driving continuous improvement through metrics, trend analysis, and practical solutions.
- Assisting in crafting and executing a comprehensive IT and information security strategy.
- Leading efforts in business continuity planning and disaster recovery.
- Providing insightful risk reporting to senior management.
- Staying current with industry trends and regulatory changes.
Qualifications
- A Bachelor's degree in Information Technology, Risk Management, Business Administration, or a related field.
- Over 5 years of experience in risk management or a related field, with at least 2 years in a managerial role.
- In-depth knowledge of risk management frameworks and security standards (e.g., PCI, SOX, NIST CSF).
- Strong analytical, problem-solving, and decision-making skills.
- Experience with regulatory compliance, business continuity, and disaster recovery planning.
- Excellent communication skills and the ability to collaborate across departments.
Why You'll Love Working With Us
- We are a team of bright, kind individuals who embrace challenges and value integrity, innovation, and trust.
- We celebrate diverse perspectives and value every voice.
- We are committed to disrupting the future of retail with our unique blend of fashion and technology.
- We foster strong relationships, celebrate teamwork, and maintain a growth mindset.
- We prioritize equity and sustainability in everything we do.
- We offer competitive compensation packages and a comprehensive range of health and wellness benefits.
Compensation And Benefits
The anticipated salary range for this position is \(234,000—\)250,000 USD, depending on location and experience. This role is eligible for stock grants and includes a full suite of benefits, such as medical, dental, and vision coverage. For more information, please apply through our careers site.
Employment Type: Full-Time