Description & RequirementsWho we arelululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we're in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.
About this teamThe lululemon Cybersecurity team enables lululemon to conduct its global operations in a secure manner and safeguard the trusted information of its guests and users. This is accomplished by understanding business risk as manifested through cybersecurity and compliance risk, and by maintaining a high degree of employee awareness of all security and compliance topics. To further enhance our team, we are looking for a Program Manager - Cybersecurity GRC, with demonstrated expertise in the ServiceNow Integrated Risk Management platform.
A day in the life:In this role, you will work collaboratively with the Cybersecurity GRC team along with stakeholders across the full Cybersecurity organization to manage the implementation, operationalization, and ongoing capabilities enhancements for the ServiceNow security related modules. This encompasses Integrated Risk Management (IRM), Security Incident Response (SIR), and Third-Party Risk Management (TPRM), along with other modules that may be included on the future roadmap. This is a critical platform that serves as a foundation to support our Cybersecurity processes across all pillars and is essential to continue to mature and scale our security control, risk, and incident management processes across the enterprise. Following are key areas of responsibility for this role:
- Responsible for overall delivery and effectiveness of GRC and Cybersecurity related capabilities within the ServiceNow platform
- Works collaboratively with Cybersecurity stakeholders and ServiceNow platform stakeholders to review current and future capabilities and provide guidance on process improvements to enhance efficiencies within security control and risk management functions
- Serves as product manager for ServiceNow Cybersecurity modules and provides technical insights to ensure issues, defects, or process gaps are identified and actioned
- Works with the Global Architecture and ServiceNow platform teams to understand current and future platform strategy and develop Cybersecurity product roadmap that aligns to overall strategy
- Provides expertise and support for the Cybersecurity ServiceNow Business Analyst to ensure specific project objectives, requirements and deliverables are clearly documented and executed
- Unblocks the team when required and proactively problem solves throughout the program lifecycle with guidance from product stakeholders and leadership
- Effectively identifies and solves for potential risks, issues, and development strategies to prevent realization of risks while providing transparency to the applicable stakeholders
- Provides metrics to demonstrate that the program delivers the expected outcomes and effectively supports business objectives
- Responsible for program related resource management and 3rd party vendor management pertaining to ServiceNow Cybersecurity specific program objectives
- Ensures all program and project tasks are clearly understood, assigned, and tracked.
Qualifications:- 5+ years in ServiceNow GRC/IRM platform technology with demonstrated product or program management responsibilities
- Thorough understanding of Cybersecurity Governance, Risk, and Compliance principles and regulatory and/or risk frameworks such as SOX, PCI-DSS, CIS, NIST
- Proven experience in aligning multiple stakeholders to lead the strategic path and delivery of ServiceNow Cybersecurity/GRC capabilities
- Ability to effectively manage the operational aspects of a technology program, including resource management, vendor management, capacity planning, and budgeting
- ServiceNow Certified Implementation Specialist in IRM, TPRM, or other Cybersecurity modules is a plus
- Experience in managing waterfall, hybrid & agile delivery teams
- Proven track record and experience working in a global company with technology teams in India and North America
- Passion for problem solving w/ an ability to excel in an ambiguous environment
- Demonstrated ability to function in a fast paced, multi-program environment with changing priorities
- Ability to anticipate potential problems and proactively troubleshoot to resolve issues
- Strong leadership skills, including the ability to influence and gain consensus in the absence of direct authority
- Proven results working with global and remote teams across different time zones
Must haves:- Acknowledges the presence of choice in every moment and takes personal responsibility for their life.
- Possesses an entrepreneurial spirit and continuously innovates to achieve great results.
- Communicates with honesty and kindness and creates the space for others to do the same.
- Leads with courage, knowing the possibility of greatness is bigger than the fear of failure.
- Fosters connection by putting people first and building trusting relationships.
- Integrates fun and joy as a way of being and working, aka doesn't take themselves too seriously.
Compensation and Benefits Package lululemon's compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and teamperformance. Thetypical hiring range for this position is from
$136,200 - $170,200 USD annually; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program, subject to program eligibility requirements.
At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:
- Extended health and dental benefits, and mental health plans
- Paid time off
- Savings and retirement plan matching
- Generous employee discount
- Fitness & yoga classes
- Parenthood top-up
- Extensive catalog of development course offerings
- People networks, mentorship programs, and leadership series (to name a few)
Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.
workplace arrangementThis role is classified as Hybrid under our SSC Workplace Policy:
In-person collaboration is important, and much of the role can be performed remotely. Work is performed onsite at least 3 days per week.
#LI-CM1