lululemon

who we are  

lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we're in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people. 

about this team

lululemon’s technology services are modernizing, adopting leading-edge tech that support our business and guests. The Global Security Operations Centre supports helps protect the data and assets of our collective. The key to our success is largely dependent on the stellar ability of our leadership teams. We are seeking a highly skilled and experienced Senior Manager to join our Cyber Security Operations team. In this role, you will be responsible for overseeing the day-to-day operations of our cyber security operations centre & team, ensuring the protection of our organization's information assets, and leading efforts to identify, mitigate, and respond to security threats. You will work closely with various departments to implement and maintain robust security measures and ensure compliance with industry standards and regulations.

day in the life

• Lead and manage the cyber security operations team, providing guidance, mentorship, and support to team members.
• Develop and implement comprehensive cyber security strategies, policies, and procedures to protect the organization's information assets.
• Monitor and analyze security incidents, vulnerabilities, and threats, and coordinate appropriate responses. 
• Conduct regular security assessments, audits, and penetration testing to identify and address potential security risks. 
• Collaborate with IT, legal, and compliance teams to ensure alignment with regulatory requirements and best practices. 
• Oversee the implementation and maintenance of security technologies, including our SIEM, intrusion detection systems, and similar solutions. 
• Stay up-to-date with the latest cyber security trends, threats, and technologies, and recommend improvements to enhance the organization's security posture. 
• Prepare and present regular reports on the organization's cyber security program status to senior management.

qualifications 

• Minimum of 8 years of experience in cyber security, with at least 3 years in a managerial or leadership role. 
• Experience with security frameworks and standards such as NIST, ISO 27001, MITRE ATT&CK and CIS Controls.
• Proficiency in security tools and technologies, including SIEM, IDS/IPS, firewalls, and endpoint protection. 
• Experience with threat modeling and kill-chain analysis. 
• Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams.
• Relevant certifications such as CISSP, CISM, or CISA are highly desirable. 
• Experience in security incident response and crisis management. 
• Knowledge of cloud security and experience with cloud platforms such as AWS, Azure 
• Familiarity with regulatory requirements and compliance standards in the industry.

must haves

• Acknowledges the presence of choice in every moment and takes personal responsibility for their life. 
• Possesses an entrepreneurial spirit and continuously innovates to achieve great results.  
• Communicates with honesty and kindness, and creates the space for others to do the same.  
• Leads with courage, knowing the possibility of greatness is bigger than the fear of failure.  
• Fosters connection by putting people first and building trusting relationships.  
• Integrates fun and joy as a way of being and working, aka doesn’t take themselves too seriously.  

compensation and benefits package