The latest news
Text size
aA+ aA-
Click here to print

Information Security Strategy Manager

Country : USA

State : California

County : San Francisco County


Category : Production - Quality

Contract type : Permanent

Availability : Full time

Company presentation

Our past is full of iconic moments — but our future is going to spark many more. Our brands — Gap, Banana Republic, Old Navy, Athleta, INTERMIX and Hill City — have dressed people from all walks of life and all kinds of families, all over the world, for every occasion for more than 50 years.

But we’re more than the clothes that we make. We know that business can and should be a force for good, and it’s why we work hard to make product that makes people feel good, inside and out. It’s why we’re committed to giving back to the communities where we live and work. If you're one of the super-talented who thrive on change, aren't afraid to take risks and love to make a difference, come grow with us.

Job description

GapTech Information Security (InfoSec) is the global cybersecurity division of Gap Inc. inclusive of, and across, all our brands. As the InfoSec Strategy Manager, you will be responsible for the strategic planning and measurement of the Information Security program, working closely with peers across Gap Inc. to ensure alignment of goals and objectives. We are looking for a Manager with strong collaboration and influencing skills to lead complex projects and key security initiatives across multiple lines of business, other departments and external organizations. You will design and maintain robust Information Security policies and standards to align with external regulations while ensuring requirements are consumable by business teams and engineers. You will develop creative solutions to drive security awareness and education across Gap Inc. You will work closely with the broader Information Security team to deliver service to clients, including driving review of technical security and business requirements into new products and services, while ensuring compliance with external regulations such as PCI, GDPR, etc.What you'll do
- Lead the development, implementation and evaluation of Gap Inc.’s information security program and risk minimization programs to maintain customer trust
- Define and measure Key Performance Indicators (leading conversations with InfoSec leaders and functional/operational peers) shared with CEO, CFO, Gap Inc SLT, and the Quarterly Board of Directors Security Dashboard
- Measure and monitor the maturity level of established security programs and existing controls, including conducting periodic assessments to identify gaps and opportunities for improvement
- Develop and implement a positive security awareness strategy and standardized training content for Gap Inc. employees and ensure appropriate steps are taken to ensure company wide compliance
- Participate in the annual GapTech InfoSec Strategy review (leading facilitated discussion with InfoSec Leaders and key partners), considering year in retrospective, industry and market conditions, and forward looking business goals
- Foster strong cross functional partnerships to drive business engagement and execution of security objectives and goals


- Bachelor’s degree in Computer Science, Information Technology or a related technical discipline
- 5+ years of relevant business experience in Information Security and GRC
- Strong working knowledge of Key Performance Indicators and security metrics
Ability to develop structure, advance execution, and measure performance
- within various and complex projects, teams, and environment
- Experience working with information security laws, regulations and standards (e.g. NIST, ISO 27001/27002, PCI DSS, GDPR, SSAE 16, CIS Critical Security Controls) and accepted information security principles and best practices
- Proven success in managing large and complex security programs in multi-tiered environments
- Excellent communication and influencing skills including the ability to simplify key messages, present compelling stories and promote technical and personal credibility with internal and external executives, and both technical and non-technical audiences
- Experience with forecasting and financial management
- Preferred Certifications - CISSP, CISA, CISM
Click here to print

Similar Offers

Senior Loss Prevention Manager - sf North

access_time | place San francisco

Loss Prevention Agent Market Street Rack

access_time | place San francisco

Operations Loss Prevention Associate

access_time | place San francisco

Operations Loss Prevention Associate

access_time | place San francisco

Regional Loss Prevention Manager

access_time | place San francisco

Fashion Jobs

Loss Prevention Agent - la Frontera

access_time | how_to_reg Permanent | place Round rock

Loss Prevention Agent - Sunset Valley

access_time | how_to_reg Permanent | place Sunset valley

Loss Prevention Agent - Parke

access_time | how_to_reg Permanent | place Cedar park

Luxury Retail Loss Prevention Associate

access_time | how_to_reg Permanent | place Garden city

Asset Protection/Loss Prevention Associate

access_time | how_to_reg Permanent | place Mclean

Loss Prevention Agent Market Street Rack

access_time | how_to_reg Permanent | place San francisco

Loss Prevention Agent Fig at 7th Rack

access_time | how_to_reg Permanent | place Los angeles