Security Analyst – Technology Risk Management

at  Lululemon

Who we are
lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we’re in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.
About this team
The lululemon Cybersecurity team enables lululemon to conduct its global operations in a secure manner and safeguard the trusted information of its guests and users. This is accomplished by understanding business risk as manifested through cybersecurity and compliance risk, and by maintaining a high degree of employee awareness of all security and compliance topics. To further enhance our team, we are looking for a Security Analyst - Cybersecurity Risk, to support our Cybersecurity Risk Management team.

QUALIFICATIONS:

• Bachelor’s degree (preferably Management Information Systems). At least one of the following professional certifications: CISA, CRISC, or ISO27001 LA
• Hands-on working experience of Service Now IRM / GRC modules
• 3+ years Technology risk management experience or a combination of Technology Risk-GRC and information security experience
• Knowledge/experience with data security and privacy regulations (e.g. NIST CSF, ISO 27001, PCI DSS, GDPR).
• Effective communication and relationship-building skills, a natural affinity for being curious and inquisitive, and an ability to work with ambiguity, analyze situations and problem solve.

Please refer the Job description for details