×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Manager Technology, Security

Job in San Francisco, San Francisco County, California, 94118, USA
Listing for: Williams-Sonoma, Inc.
Full Time position
Listed on 2026-06-28
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below
About the Team

The Security Compliance Team is responsible for Williams-Sonoma, Inc.'s enterprise security compliance, third-party risk, and cybersecurity risk management programs. The team is comprised of subject matter experts who partner with the business to deliver compliance solutions in a dynamic environment.

Founded in 1956, Williams-Sonoma, Inc. is the premier specialty retailer of high-quality products for the kitchen and home in the United States. Our family of brands are Williams-Sonoma, Pottery Barn, Pottery Barn Kids, PBteen, West Elm, Williams-Sonoma Home, Rejuvenation, Mark and Graham and Green Row. We're a multi-brand, multi-channel, global enterprise supported by state-of-the-art technology and some of the most talented teams in retailing - and we're always looking for new energy and ideas.

About the Role

The Manager, Security Compliance leads the team and is responsible for setting strategy, establishing standards, and ensuring effective execution across the Security Compliance function.

Reporting to the CISO, this leader manages a team of security compliance professionals and contractors, with accountability for program outcomes, team performance, and enterprise risk visibility. The role partners closely with Technology, Legal, Internal Audit, and business stakeholders to ensure a scalable, risk-aligned control environment.

This position plays a critical role in maintaining audit readiness, strengthening the company's control framework, and providing clear, actionable insight into compliance posture, risks, and remediation progress to executive leadership and the Board.

Responsibilities

* Lead and evolve the Security Compliance function, managing a high-performing team and driving consistent, high-quality execution across all program areas

* Own and govern the enterprise security compliance and control framework, ensuring alignment with regulatory requirements and industry standards (PCI DSS, NIST, GDPR, CPRA, SOX) and driving continuous improvement

* Oversee key compliance programs, including PCI, SOX, and privacy, ensuring audit readiness, effective control operation, and successful assessments

* Lead the Third-Party Risk Management program, establishing scalable, risk-based processes for vendor assessment, monitoring, and governance, and providing clear visibility into third-party risk exposure

* Drive the enterprise cybersecurity risk management program, ensuring risks are identified, prioritized, and remediated with clear accountability and executive visibility

* Partner cross-functionally with Technology, Legal, Internal Audit, and business teams to embed security and compliance into operations and decision-making

* Own audit and regulatory engagement, serving as the primary liaison with Internal Audit and ensuring efficient, well-coordinated audit execution

* Provide clear, actionable reporting to executive leadership and the Board, translating complex risk and compliance topics into meaningful insights

* Shape and mature the security awareness program, measurably improving human risk outcomes and strengthening the company's overall security posture

* Success in this role is defined by the effectiveness of the control environment, clarity of risk visibility, and the organization's ability to sustain audit readiness and compliance at scale

Criteria

* You have minimum of 6 + years of related experiences (information security, risk, or compliance), including people management experience driving results, creating solutions and achieving as one team

* Bachelor's degree in Risk Management, or related fields, or equivalent work experience

* You have deep expertise in SOX, privacy regulations, and third-party risk management, and strong working knowledge of PCI DSS

* You have strong decision-making, conflict resolution skills and experience leading teams and scaling enterprise compliance and risk programs

* You are effective at driving accountability across both direct reports and cross-functional stakeholders

* You are comfortable engaging with executive leadership and board-level audiences

* You can translate complex regulatory requirements into practical, business-aligned control strategies

*…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search