Manager, Cybersecurity
Store Support Center
We are searching for an experienced
Manager, Cybersecurity
for our StoreSupport Center located at 600 Citadel Drive, Commerce, CA, 90040. SUMMARY The
Cybersecurity Manager
leads the development and execution of ourorganization's cybersecurity strategy. You will oversee the protection ofdigital assets, ensure compliance with industry standards, and mitigate risksacross IT systems, networks, and data. This role is critical to safeguardingbusiness operations, customer trust, and maintaining resilience againstevolving cyber threats. This includes the oversight of all cybersecurityarchitecture and cybersecurity engagement functions such as incident response,threat intelligence, IoT security, systems operations/engineering (SecOps),architectural support, secure design, risk analysis, vulnerability managementand threat hunting across corporate, stores and cloud environments. Theposition balances security enforcement, business continuity, warehouses andstore operations.
ESSENTIALDUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned orrequired.
Design, develop, Implement and manage cybersecurity policies, protocols, tools and incident response plans aligned with NIST Framework or ISO 27001 Oversee vulnerability scanning and remediation program. Prioritize risks based on business impact and address risks. Identify systemic security weaknesses Supervise cybersecurity SOC/MDR, consultants, SaaS providers and IT professionals, ensuring effective threat monitoring, incident response, and resource allocation. Implement and maintain security tools (firewalls, encryption, intrusion detection) and ensure timely system updates/patches Work together with Risk, Compliance and IT functions to identify, mitigate and manage security risks aligning with the organizational goals and objectives. Lead breach investigations, coordinate forensic analysis, and communicate with stakeholders during crises Monitor third-party security practices and ensure adherence to data privacy laws (e.g., CCPA) Recommend and implement security solutions or enhancements to existing security solutions to improve overall enterprise security. Overseas the administration, design, configuration, integration, and maintenance of the company's security architecture, including the following solutions:
SIEM, MDR and EDR Email security SASE platform Network Firewalls File Integrity Monitoring solution Identity Management, SSO & MFA Privileged Access Management Network Access Control Microsoft 365 Security
Be a final resource in the security incident response planning as well as the investigation of security events including being the technical lead and subject matter expert in the Security Incident Response Team (SIRT), as needed. Exercises discretion and independent judgment in evaluating challenges and limitations to determine appropriate resolutions that strengthen the organization's security posture. Performs related duties as assigned. EDUCATION and/or EXPERIENCE
Bachelor's degree in Computer Science, Cybersecurity, or related field or equivalent experience; master's degree preferred Any or all of the following certifications are preferred: CISSP, CISMP. 7 years of experience with 4+ years in Security operations leadership role, which may include information security, application security or penetration testing, network-related security roles (firewall, intrusion detection, data loss prevention, Identity Management).. OTHER KNOWLEDGE, SKILLS & ABILITIES
Strong infrastructure security skills including IDS/IPS, firewall, SIEM, server and OS hardening, malware detection, physical security, transport and at-rest encryption on file systems, DB, and other data persistence mechanisms. Excellent written and verbal communication skills - including the ability to effectively communicate security- and risk-related concepts to technical and nontechnical audiences - and strong interpersonal and collaborative skills High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity. Demonstrated experience in executing/delivering cross functional projects in a dynamic, fast-paced environment with a sophisticated ability to balance between security strategies and other priorities at the organizational level. Ability to formulate conclusions and recommend courses of action. Excellent organizational skills and adept at multi-tasking and initiating/driving projects though completion. Collaborate with IT Infrastructure team, Network team, Application teams, store operations, executives and etc. Incident management & decision-making Risk-based decision making Ability to balance security vs business disruption Vendor & stakeholder management
COMPENSATION:
The salary range for this position is$135,000.00 to $150,000.00. The actual starting pay will be determined by anumber of qualifications; including, experience and relevant skills.
Our company provides equal employment opportunities (EEO) toall employees and applicants for employment without regard to race, color,religion, sex, national origin, age, disability, or genetics.
We are searching for an experienced
Manager, Cybersecurity
for our StoreSupport Center located at 600 Citadel Drive, Commerce, CA, 90040. SUMMARY The
Cybersecurity Manager
leads the development and execution of ourorganization's cybersecurity strategy. You will oversee the protection ofdigital assets, ensure compliance with industry standards, and mitigate risksacross IT systems, networks, and data. This role is critical to safeguardingbusiness operations, customer trust, and maintaining resilience againstevolving cyber threats. This includes the oversight of all cybersecurityarchitecture and cybersecurity engagement functions such as incident response,threat intelligence, IoT security, systems operations/engineering (SecOps),architectural support, secure design, risk analysis, vulnerability managementand threat hunting across corporate, stores and cloud environments. Theposition balances security enforcement, business continuity, warehouses andstore operations.
ESSENTIALDUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned orrequired.
Design, develop, Implement and manage cybersecurity policies, protocols, tools and incident response plans aligned with NIST Framework or ISO 27001 Oversee vulnerability scanning and remediation program. Prioritize risks based on business impact and address risks. Identify systemic security weaknesses Supervise cybersecurity SOC/MDR, consultants, SaaS providers and IT professionals, ensuring effective threat monitoring, incident response, and resource allocation. Implement and maintain security tools (firewalls, encryption, intrusion detection) and ensure timely system updates/patches Work together with Risk, Compliance and IT functions to identify, mitigate and manage security risks aligning with the organizational goals and objectives. Lead breach investigations, coordinate forensic analysis, and communicate with stakeholders during crises Monitor third-party security practices and ensure adherence to data privacy laws (e.g., CCPA) Recommend and implement security solutions or enhancements to existing security solutions to improve overall enterprise security. Overseas the administration, design, configuration, integration, and maintenance of the company's security architecture, including the following solutions:
SIEM, MDR and EDR Email security SASE platform Network Firewalls File Integrity Monitoring solution Identity Management, SSO & MFA Privileged Access Management Network Access Control Microsoft 365 Security
Be a final resource in the security incident response planning as well as the investigation of security events including being the technical lead and subject matter expert in the Security Incident Response Team (SIRT), as needed. Exercises discretion and independent judgment in evaluating challenges and limitations to determine appropriate resolutions that strengthen the organization's security posture. Performs related duties as assigned. EDUCATION and/or EXPERIENCE
Bachelor's degree in Computer Science, Cybersecurity, or related field or equivalent experience; master's degree preferred Any or all of the following certifications are preferred: CISSP, CISMP. 7 years of experience with 4+ years in Security operations leadership role, which may include information security, application security or penetration testing, network-related security roles (firewall, intrusion detection, data loss prevention, Identity Management).. OTHER KNOWLEDGE, SKILLS & ABILITIES
Strong infrastructure security skills including IDS/IPS, firewall, SIEM, server and OS hardening, malware detection, physical security, transport and at-rest encryption on file systems, DB, and other data persistence mechanisms. Excellent written and verbal communication skills - including the ability to effectively communicate security- and risk-related concepts to technical and nontechnical audiences - and strong interpersonal and collaborative skills High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity. Demonstrated experience in executing/delivering cross functional projects in a dynamic, fast-paced environment with a sophisticated ability to balance between security strategies and other priorities at the organizational level. Ability to formulate conclusions and recommend courses of action. Excellent organizational skills and adept at multi-tasking and initiating/driving projects though completion. Collaborate with IT Infrastructure team, Network team, Application teams, store operations, executives and etc. Incident management & decision-making Risk-based decision making Ability to balance security vs business disruption Vendor & stakeholder management
COMPENSATION:
The salary range for this position is$135,000.00 to $150,000.00. The actual starting pay will be determined by anumber of qualifications; including, experience and relevant skills.
Our company provides equal employment opportunities (EEO) toall employees and applicants for employment without regard to race, color,religion, sex, national origin, age, disability, or genetics.