Manager, Cybersecurity

Manager, Cybersecurity
Store Support Center

We are searching for an experienced Manager, Cybersecurity for our Store Support Center located at 600 Citadel Drive, Commerce, CA, 90040.

SUMMARY
The Cybersecurity Manager leads the development and execution of our organization’s cybersecurity strategy. You will oversee the protection of digital assets, ensure compliance with industry standards, and mitigate risks across IT systems, networks, and data. This role is critical to safeguarding business operations, customer trust, and maintaining resilience against evolving cyber threats. This includes the oversight of all cybersecurity architecture and cybersecurity engagement functions such as incident response, threat intelligence, IoT security, systems operations/engineering (SecOps), architectural support, secure design, risk analysis, vulnerability management and threat hunting across corporate, stores and cloud environments.
The position balances security enforcement, business continuity, warehouses and store operations.

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned or required.

• Design, develop, Implement and manage cybersecurity policies, protocols, tools and incident response plans aligned with NIST Framework or ISO 27001
• Oversee vulnerability scanning and remediation program. Prioritize risks based on business impact and address risks. Identify systemic security weaknesses
• Supervise cybersecurity SOC/MDR, consultants, SaaS providers and IT professionals, ensuring effective threat monitoring, incident response, and resource allocation.
• Implement and maintain security tools (firewalls, encryption, intrusion detection) and ensure timely system updates/patches
• Work together with Risk, Compliance and IT functions to identify, mitigate and manage security risks aligning with the organizational goals and objectives.
• Lead breach investigations, coordinate forensic analysis, and communicate with stakeholders during crises
• Monitor third-party security practices and ensure adherence to data privacy laws (e.g., CCPA)
• Recommend and implement security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Overseas the administration, design, configuration, integration, and maintenance of the company’s security architecture, including the following solutions:
  • SIEM, MDR and EDR
  • Email security
  • SASE platform
  • Network Firewalls
  • File Integrity Monitoring solution
  • Identity Management, SSO & MFA
  • Privileged Access Management
  • Network Access Control
  • Microsoft 365 Security
• Be a final resource in the security incident response planning as well as the investigation of security events including being the technical lead and subject matter expert in the Security Incident Response Team (SIRT), as needed.
• Exercises discretion and independent judgment in evaluating challenges and limitations to determine appropriate resolutions that strengthen the organization’s security posture.
• Performs related duties as assigned.

EDUCATION and/or EXPERIENCE

• Bachelor’s degree in Computer Science, Cybersecurity, or related field or equivalent experience; master’s degree preferred Any or all of the following certifications are preferred: CISSP, CISMP.
• 7 years of experience with 4+ years in Security operations leadership role, which may include information security, application security or penetration testing, network-related security roles (firewall, intrusion detection, data loss prevention, Identity Management)..

OTHER KNOWLEDGE, SKILLS & ABILITIES

• Strong infrastructure security skills including IDS/IPS, firewall, SIEM, server and OS hardening, malware detection, physical security, transport and at-rest encryption on file systems, DB, and other data persistence mechanisms.
• Excellent written and verbal communication skills - including the ability to effectively communicate security- and risk-related concepts to technical and nontechnical audiences - and strong interpersonal and collaborative skills
• High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity.
• Demonstrated experience in executing/delivering cross functional projects in a dynamic, fast-paced environment with a sophisticated ability to balance between security strategies and other priorities at the organizational level.
• Ability to formulate conclusions and recommend courses of action.
• Excellent organizational skills and adept at multi-tasking and initiating/driving projects though completion.
• Collaborate with IT Infrastructure team, Network team, Application teams, store operations, executives and etc.
• Incident management & decision-making
• Risk-based decision making
• Ability to balance security vs business disruption
• Vendor & stakeholder management

COMPENSATION: The salary range for this position is $135,000.00 to $150,000.00. The actual starting pay will be determined by a number of qualifications; including, experience and relevant skills.

Our company provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics.