Director - Cyber Security Operations

Company: Disability Solutions
Location: Seattle
Posted on: May 3, 2024

Job Description:

Description & Requirementsw ho we are lululemon is a yoga-inspired technical apparel company up to big things . The practice and philosophy of yoga informs our overall purpose to elevate the world through the power of practice. We are proud to be a growing global company with locations all around the world, from Vancouver to Shanghai, and places in between. We owe our success to our innovative product, our emphasis on our stores, our commitment to our people, and the incredible connections we get to make in every community we are in. a bout this team The lululemon cybersecurity team enables lululemon to conduct its global operations in a secure manner and safeguard the trusted information of its guests and users. This is accomplished by understanding business risk as manifested through cybersecurity and compliance risk, and by maintaining a high degree of employee awareness of all security and compliance topics. To further enhance our team, we are looking for an experienced Director of Cyber s ecurity Operations . a day in the life As the Director of Cyber s ecurity Operations , you will be providing leadership to a growing global team of analysts, engineers, threat hunters , and incident responders . You will be responsible for ensuring that your team has the right players, tools, acumen and processes to detect, defend and respond to any cyber event. This role is required to influence and enroll without authority and work with global teams from both technology and the business. You will be the face of lululemon global cyber security operations which requires a great deal of responsibility. These will include, but not be limited to, the following -

• You will lead the design of systems and processes for a global cybersecurity operation to have full visibility across the globe on cyber threats and alerting. Building a global team is critical for 24x7 visibility.
• Drive the incident response plan for the organization enrolling leadership to follow a well rehearsed plan when a cyber event occurs.
• This role will determine what to invest and divest in, determine what the goal is to be successful and how do we get there by creating a roadmap for cyber security operat ions . Work closely with security partners and peers in the industry to aid in identifying a path to success.
• Will need to interact with a wide group of disciplines across the company such as risk and compliance team, corporate communications, legal, government affairs, etc.
• Build a full functioning global cyber operations center with a reliable pipeline of talent into our program, update feeds on cyber threat intelligence, reporting capabilities and key performance metrics to share with leadership to demonstrate effectiveness of program.
• On going enhancement roadmap and future direction of team and technology closely mapped to lululemon strategy and overall technology initiatives and roadmaps .
• Developing and implementing Cloud security strategies. The Director of Cybersecurity Operations is responsible for developing comprehensive cloud security strategies aligned with the organization's overall security objectives . This involves identifying and evaluating potential risks associated with cloud services, applications, and infrastructure, and devising proactive measures to mitigate these risks effectively.
• Overseeing Cybersecurity o perations , this role is responsible with overseeing day-to-day security operations related to cloud environments, ensuring the implementation and maintenance of robust security controls and practices. This includes monitoring and analyzing security events, responding to incidents, and coordinating with internal teams and external vendors to address security vulnerabilities and threats promptly.
• The Director is responsible to ensures that cloud security operations adhere to relevant regulatory requirements, industry standards, and internal policies. This involves conducting regular audits and assessments to evaluate compliance with standards such as GDPR, HIPAA, or SOC 2, as well as implementing governance frameworks to maintain transparency and accountability in cloud security practices across lululemon . q ualifications
  • You have been in the technology industry for -10 years with a minimum of five years in a number of cyber security operations and incident response subject matter leadership roles.
  • Develop and Implement Cloud Security Policies , t he Director of Cybersecurity Operations is responsible for establishing and enforcing cloud security policies, ensuring that they align with industry standards, regulatory requirements, and lululemon 's risk tolerance.
  • Oversee Incident Response and Threat Detection , the role is responsible to lead the development and implementation of incident response plans specific to cloud and SaaS environments, coordinating responses to security incidents and ensuring timely detection and mitigation of cyber threats.
  • Extensive experience as Cybersecurity Incident Manager, leading a SOC team while liaising with technology, legal, and business teams through security incidents.
  • Experience on leveraging standards like MITRE and NIST frameworks in the develop and implementation of prevention, detection and incident response processes, standards and policies, to include the measurement of their effectiveness.
  • Manage Cloud Security Infrastructure , t his includes overseeing the deployment and maintenance of security tools and technologies specific to cloud environments, such as cloud access security brokers (CASBs), intrusion detection/prevention systems (IDS/IPS), and cloud-native security solutions.
  • Capable of developing long-term cybersecurity operations strategies aligned with business objectives and industry trends. This includes anticipating future threats and proactively implementing measures to address them.
  • Provide Security Guidance and Training , the Director provides guidance to technology and development teams on best practices for securely architecting and deploying cloud-based applications and services. They also organize and conduct training sessions to enhance awareness of cloud security risks and best practices among staff.
  • Ensure Compliance and Audit Readiness , the role is responsible for ensuring that cloud deployments comply with relevant regulatory requirements (e.g., GDPR, HIPAA) and industry standards (e.g., ISO 27001, CSA Cloud Controls Matrix). Additionally, they prepare the organization for cloud security audits and assist in remediation efforts to address any identified deficiencies.
  • The ability to lead and motivate teams, set strategic direction, and effectively communicate cybersecurity priorities to stakeholders across the organization.
  • Have built out cybersecurity operations systems and teams for global organizations. This includes logging and monitoring, alerting, SIEM infrastructure int egrating threat management seen within indu stry and other external attacks. m ust haves
    • Acknowledges the presence of choice in every moment and takes personal responsibility for their life.
    • Possesses an entrepreneurial spirit and continuously innovates to achieve great results .
    • Communicates with honesty and kindness and creates the space for others to do the same.
    • Leads with courage, knowing the possibility of greatness is bigger than the fear of failure.
    • Fosters connection by putting people first and building trusting relationships.
    • Integrates fun and joy as a way of being and working, aka doesn't take themselves too seriously. compensation and benefits package lululemon's compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and team performance. The typical hiring range for this position is from $190,400 - $249,900 annually ; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program and equity offerings, subject to program eligibility requirements. At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:
      • Extended health and dental benefits, and mental health plans
      • Paid time off
      • Savings and retirement plan matching
      • Generous employee discount
      • Fitness & yoga classes
      • Parenthood top-up
      • Extensive catalog of development course offerings
      • People networks, mentorship programs, and leadership series (to name a few) Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice. workplace arrangement This role is classified as Hybrid under our SSC Workplace Policy: Hybrid In-person collaboration is important, and much of the role can be performed remotely. Work is performed onsite at least 3 days per week. #LI-CM3 #LI-Hybrid

Keywords: Disability Solutions, Seattle Hill-Silver Firs , Director - Cyber Security Operations, Executive , Seattle, Washington