Job Description
Job DescriptionFASHIONPHILE is more than just fashion — we’re revolutionizing the ultra-luxury fashion experience in order to create a sustainable alternative that extends the life cycle of products and makes them more accessible to a diverse customer base. As we strive to become the world's most sought-after brand in luxury re-commerce, we know it's our team members who make it all happen! We value diversity in our people, perspectives, and products. For us, it's the only way to cultivate the creativity and innovation essential to achieving our mission and supporting our customers. We do this both in-person and through our digital omni-channel experiences. If you're someone who embraces change, is authentic, and wants to make an impact this is the place for you.
About the Opportunity:FASHIONPHILE is looking for a Cybersecurity & Privacy Lead to build, manage, audit and continuously improve the company’s cybersecurity and privacy programs. This standalone security role is also accountable for incident response and vendor management to ensure compliance across privacy, security and contracts / renewals. Responsibilities include:
- Building and managing the cybersecurity, risk and privacy programs, including strategy, governance, policies, risk register, track metrics, and execute a prioritized roadmap aligned to the company priorities.
- Auditing access management practices, privileged access, access reviews, asset management, configuration management and onboarding/offboarding processes
- Leading incident response, including playbooks, incident coordination, communications support, exercises, and post-incident improvement tracking
- Establishing and operating a data protection program for customer and company data, including data classification, secure handling and sharing requirements, and DLP strategy and monitoring for sensitive data movement.
- Building and running third-party risk management for critical vendors, including due diligence, contract security requirements, contract renewal reviews, and ongoing issue management and escalations
What We’re Looking For:
- Bachelor’s Degree or equivalent and relevant experience
- 8+ years cybersecurity experience spanning multiple domains
- Demonstrated experience owning security and privacy outcomes in a lean or standalone security role
- Demonstrated ability to build and operate a right-sized cybersecurity and data privacy program, including governance, policy development, risk assessment, remediation tracking, and executive reporting
- Demonstrated knowledge of privacy program fundamentals such as data mapping support, retention alignment, lawful processing considerations (in partnership with Legal), and responding to customer or partner assurance requests
- Strong working knowledge of identity and access management practices (single sign-on, multi-factor authentication, privileged access, access reviews, and timely deprovisioning)
- Proven leadership in managing incident response activities, including coordination with external partners (forensics, legal, cyber insurance, and service providers) and internal communications
- Ability to translate technical risk into business impact and drive cross-functional execution without direct authority
- Familiarity with commerce security and fraud-related risk
- Retail, e-commerce, marketplaces, payments, or consumer brands, including operating security, privacy, and compliance controls in a high-volume customer environment - Preferred
- Audit readiness and compliance evidence coordination experience (for example PCI-related coordination as applicable and customer assurance requests) - Preferred
- Certifications: CISSP, CISM, CCSP, or cloud security certifications (AWS or Azure), Privacy and compliance certifications a plus (CIPP/US, CIPM, or CRISC) and/or PMP
What We Offer:
- Medical, Dental and Vision Coverage
- FSA options for Medical, Dependent Care & Commuter Benefits
- Paid Time off, Paid Sick Time, and Paid Holidays
- 401(k) with generous match program
- Free Life Insurance and AD&D
- Long Term Disability Insurance
- Employee Discount
Pay Scale: FASHIONPHILE reasonably expects the range to be $140,000-$160,000 for this position in our Downtown LA Office (Or San Diego Office) and offers an Annual Bonus Opportunity aligned to our Lead Level. Offered compensation will vary based on (a) location; (b) individual candidate qualifications; and (c) individual candidate experience. This post may be updated as new market data becomes available and is accurate as of the date of this posting. FASHIONPHILE reserves the right to modify this information at any time, subject to applicable law.