Location: United States of America State/Province/City: Washington City: Seattle or Vancouver Business Unit: Store Support Centre (SSC) Time Type: Full-time Back Apply Description & Requirements COMPANY BACKGROUND lululemon’s purpose - we elevate human potential by helping people feel their best - is as dynamic as the company’s history and current momentum. Founded in Vancouver in 1998 with the intent to bring technical athletic fabrics to yoga, lululemon’s first office was a product design studio by day turned yoga studio at night. What was then a very practical solution to paying the rent has ultimately come to define what differentiates lululemon. What has made the company wildly successful has been its steadfast focus on empowering its stores to become community hubs for lululemon’s consumers (Guests) to live the Sweatlife—a combination of sweating, growing and connecting together—as well as participate in lululemon sweaty activities. Today, lululemon is a publicly traded (LULU) $8.1B global business with more than 30,000+ employees and over 670+ stores across four continents and 25 regions. lululemon’s products include Performance Apparel for women and men (pants, shorts, tops, jackets) for healthy activities such as yoga, running, training, and most other sweaty pursuits, On the Move Apparel (OTM) for women and men (RTW tops, bottoms, outerwear, knits and wovens), Accessories (bags, socks, underwear, yoga mats/equipment, and water bottles), and most recently, footwear. 2022 was an exceptional year from a product newness and innovation standpoint, fueled by the Science of Feel with women’s revenue increasing 30%, men’s growing 22%, and accessories up 70%, versus 2021. Our results were driven by expansion within our core categories with the launch of our Senseknit fabric technology and cold weather run styles, and we grew our Play categories with our golf, tennis, and hike capsules. And while footwear remains a test and learn for us, we’re pleased with our results and are thrilled to bring head-to-toe solutions to our guests. The power of our brand translated to growth across regions in 2022—North America grew 29% and International increased 35% compared to last year. As the impacts of COVID-19 normalize, we expect our momentum to accelerate, and we are excited for the opportunity in China in 2023 and beyond. In Q4, revenue in China increased over 30% versus the same period last year. We opened 29 new stores in 2022, our largest annual number ever in China Mainland. In the second quarter of 2023, net revenue increased 18% to $2.2 billion, gross profit increased 32% to $1.2 billion, and earnings per share increased 22% versus last year to $2.68. North American revenue increased by 11% and international by 52% both versus last year. In Q2, we gained 1.3 points of market share with gains in both men’s and women’s. We also opened our first store in Bangkok, Thailand, marketing our 100th store in APAC. At the end of Q2, we have a total of 672 stores, with presence in 25 markets around the world. Power of Three x2 / Calvin McDonald (CEO), the Senior Leadership Team (SLT) and Board remain committed to growth. We recently announced our next five-year growth plan, which builds upon the success of the Power of Three. Our plan calls for doubling our Men’s business while delivering double-digit growth in Women’s, doubling our digital business while also achieving double-digit growth in stores, and quadrupling our international business. And we intend to double our total revenue – from $6.25B to $12.5B – by the end of 2026, with an annual EPS growth greater than sales growth. Inclusion & Diversity / lululemon has made a series of commitments to ensure the company fully reflects the communities it serves and has established its IDEA team, which stands for Inclusion, Diversity, Equity and Action. The company stands with employees, ambassadors and guests around the world who have been deeply impacted by the acts of violence, xenophobia and racism. Through commitment from the senior leadership team, dedicated resources, company-wide impact, sustainable HR programs, in-depth reviews and real accountability, the organization is focused on driving positive change in its communities every day. Impact / In 2021, lululemon advanced an Impact Agenda and multi-year commitments to drive meaningful, positive change in the world, grounded in the belief that everyone has the right to be well and that the wellbeing of people and the planet are deeply interconnected. lululemon made inspiring progress across our three core pillars—Be Human, Be Well, and Be Planet—addressing pressing social and environmental issues that impact our people, communities, and the planet. Highlights from our 2022 Impact Agenda include achieving our goal of having 40% racially diverse representation within our retail stores, we reached 3 million people globally with wellbeing tools and resources which was 3 years ahead of schedule, and we procured 44% preferred materials for our products, a 6% increase year over year. TECHNOLOGY AS A DRIVER OF lululemon Our goal as a Technology team is to provide a technology experience that focuses on friction-free service, empathy centric support, speed-of-delivery and, above all, places the needs of our Educators, Employees and Guests at the center. THE HIGHER ASPIRATION of the ROLE The VP, Cybersecurity will lead & champion all North America based assurance activities related to the availability, integrity and confidentiality of guests (consumers), business partners, employees, and business information in compliance with the organization's information security policies. This person is a Business Partner to the organization, leading security architecture and engineering, vulnerability management, program management, security operations center, governance, risk, and compliance. As VP, Cybersecurity you will be overseeing the teams that support our North America business groups and are working to identify and safeguard our organization from all known and developing security threats, security weaknesses, software bugs and exploits. TITLE VP, Cybersecurity LOCATION The VP, Cybersecurity will be based in Seattle or Vancouver. REPORTING STRUCTURE Reporting + Direct Reports: The role is a direct report into our CISO and will oversee a team of 20+ FTEs. Peer Relationships: The VP, Cybersecurity will sit on the Cybersecurity Leadership Team and work closely with all of its members: Cloud and Infrastructure, Legal, Data Privacy, and Cybersecurity Architecture. OVERSIGHT AND RESPONSIBILITIES
- Lead the company’s cybersecurity strategic execution of a risk-based cybersecurity program to protect lululemon’s information assets and brand reputation.
- Lead enterprise cybersecurity teams and people development. Responsible for leading inclusively, coaching, mentoring, retaining, developing and attracting top security talent.
- Defend the company's data security and information against threats in North America.
- Develop organization-wide cybersecurity communications, including to senior leaders. Create appropriate awareness of relevant threats, best practices and roadmap to mitigate these risks.
- Prepare the company as a whole for potential breaches, so that we are ready and capable of handling incidents that may occur.
- Lead incident responses with appropriate executive communication, peer collaboration, and transparency to end the company in the best possible outcome.
- Ensure cybersecurity leadership team is appropriately apprised of trends, new risks, and strategies.
- Lead security operations to assure real-time threats and triaging.
- Drive sponsorship/alignment/approval of security investments needed to support the organization.
- Partner across technology leaders and business leaders to support organizational enrollment and executive of security programs.
- Partner with enterprise asset protection to build a holistic strategy around implementing modern cloud-based asset protection capabilities in support of protecting all assets in stores, DC’s, and corporate offices (Store Support Center’s (SSC)).
- Partner with enterprise privacy group and legal to ensure all data privacy laws and regulations such as CCPA, GDPR and MLPS are fully adhered and implemented.
- Leads and be responsible for establishing a comprehensive technology resiliency program aimed at providing business continuity during crisis and catastrophic failures.
- Plan budget allocations and associated financial forecasts relating to information security. The VP, Cybersecurity will not be responsible for, but will actively partner with those who oversee:
- International Cybersecurity
- Network Operations
- Retail Technology YEAR ONE DELIVERABLESDesired achievements in first 12-months in the role. (in priority) Onboard Thoughtfully. Listen + Learn from lululemon’s culture. Build relationships within Technology and with cross-functional partners. Understand the why behind our current operations to inform our future. Educate Organizational Leaders towards Security as a Business Need. After a year, our leaders across the organizational have a depth of understanding in managing security as a business priority, not a compliance requirement. Our leaders in Digital and Retail are leaders within the organization that have a strong understanding of the business criticality of security. Elevate the Incident Response Capability as a Technology Function that supports a high degree of agility and risk mitigation. Collaborate with the team, and cross functionally to create best-in-class capabilities that support the growth of our business. Enable a Strategic Workforce in Cybersecurity. Develop a point of view towards our needs of the organization across full-time employees & contractors. Look to build short and long terms resourcing strategies that align to our growth and mitigate risk. Have Driven Strong Engagement & Development Within Your Team. Within the first year you have strong engagement within your team. You are connected to the growth pathways of your team & are in support of their development. Development and implementation of a comprehensive cybersecurity strategy. Conducting a thorough risk assessment to identify and prioritize potential threats and vulnerabilities specific to the organization. Improve company security framework. Enhancing lululemon’s cybersecurity framework that aligns with industry best practices and regulatory requirements. Maintaining and improving company incident response plan to effectively address and mitigate security incidents, updated to reflect new threats and company landscape. Stakeholder Communication: Establishing clear lines of communication with key stakeholders to ensure understanding and support for cybersecurity initiatives. By accomplishing these milestones, the VP of Cybersecurity lays the foundation for a strong and proactive cybersecurity posture within the organization. CANDIDATE CRITERIA – “Must-Haves” Proven track record and in-depth experience as a Cybersecurity Leader. You have experience leading a Cybersecurity team. You have significant experience (5+) as a Cybersecurity leader working closely with Senior Leaders on communicating & understanding cybersecurity risks, industry trends. A Modern Experienced Information Security Professional. Minimum of 8+ years' experience with a combination of risk management, information security and Technology roles. Notable experience with:
- Information security management frameworks, such as ISO/IEC 27001, NIST, Cloud Security, Zero Trust Security model, and other applicable security frameworks.
- Strong ability to align cybersecurity initiatives with overall business objectives, foresee evolving threats, and develop a proactive cybersecurity strategy.
- A deep understanding of both cybersecurity and retail industries.
- Profound understanding of cybersecurity principles, technologies, and emerging threats to effectively safeguard lululemon's information assets.
- Proficiency in risk assessment and management is crucial for a VP of Cybersecurity. This involves identifying, evaluating, quantifying, and prioritizing potential risks to make informed decisions on security measures.
- Strong leadership skills are essential for guiding and managing a cybersecurity team. Effective communication is key, both in conveying complex security concepts to non-technical stakeholders and fostering collaboration within the organization, facilitating informed decision-making at executive and board levels.
- Stay abreast of relevant laws and regulations pertaining to data security and privacy. Ensuring compliance helps protect the organization from legal consequences and reputational damage.
- Strong ability to respond quickly and effectively to security incidents. VPs of Cybersecurity should be adept at developing, maturing, and implementing incident response plans to minimize the impact of security threats.
- Implementing and automating security tools (SecDevOps) to enable secured SDLC and CI/CD pipelines.
- Candidates should have a specialized focus on cybersecurity, encompassing a deep understanding of threat landscapes, security technologies, and risk management specific to protecting digital assets.
- Candidates need a strong grasp of diverse and evolving cybersecurity regulations, ensuring the organization remains compliant and avoids legal pitfalls.
- Be a champion of security awareness, promoting a culture of cybersecurity throughout the organization by educating employees about potential threats and best practices.
- Experience with contract and vendor negotiations and management including managed services. “Nice-to-Have Certifications”
- CISSP (Certified Information Systems Security Professional)
- CISM (Certified Information Security Manager)
- CISA (Certified Information Systems Auditor)
- CRISC (Certified in Risk and Information Systems Control) “Good-to-Have Certifications”
- AWS Certified Security – Specialty or other Cloud Security Certifications
- PMP (Project Management Professional)
- ITIL (Information Technology Infrastructure Library)
- Certifications in Privacy (e.g., CIPP, CIPT) Who Wins with Others. You are skilled at building relationships. You connect easily with people, are authentic and action results you are committed to. You have an ability to explain complex programs in simple terms. You connect with your team, internal & external stakeholders naturally. You effectively and concisely communicate up, identifying opportunities, risks, and solutions. You have strong collaboration skills and have the ability to find common ground. Exposure to High Growth Organizations. In experiencing this high growth, you were required to adapt as a leader to evolve the team & processes. Exposure either as part of organization or group that experienced significant growth. COMPENSATION lululemon’s compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and team performance. The typical hiring range for this position is from $220,000 - $330,000 USD annually; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program and equity offerings, subject to program eligibility requirements. At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:
- Extended health and dental benefits, and mental health plans
- Paid time off
- Savings and retirement plan matching
- Generous employee discount
- Fitness & yoga classes
- Parenthood top-up
- Extensive catalog of development course offeringsPeople networks, mentorship programs, and leadership series (to name a few)Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.
Apply Now