Manager Technology, Security Compliance
Listed on 2026-07-11
-
IT/Tech
Cybersecurity, Information Security
Manager, Security Compliance
The Manager, Security Compliance leads the team and is responsible for setting strategy, establishing standards, and ensuring effective execution across the Security Compliance function.
Reporting to the CISO, this leader manages a team of security compliance professionals and contractors, with accountability for program outcomes, team performance, and enterprise risk visibility. The role partners closely with Technology, Legal, Internal Audit, and business stakeholders to ensure a scalable, risk-aligned control environment.
This position plays a critical role in maintaining audit readiness, strengthening the company's control framework, and providing clear, actionable insight into compliance posture, risks, and remediation progress to executive leadership and the Board.
Responsibilities include:
- Leading and evolving the Security Compliance function, managing a high-performing team and driving consistent, high-quality execution across all program areas
- Owning and governing the enterprise security compliance and control framework, ensuring alignment with regulatory requirements and industry standards (PCI DSS, NIST, GDPR, CPRA, SOX) and driving continuous improvement
- Overseeing key compliance programs, including PCI, SOX, and privacy, ensuring audit readiness, effective control operation, and successful assessments
- Leading the Third-Party Risk Management program, establishing scalable, risk-based processes for vendor assessment, monitoring, and governance, and providing clear visibility into third-party risk exposure
- Driving the enterprise cybersecurity risk management program, ensuring risks are identified, prioritized, and remediated with clear accountability and executive visibility
- Partnering cross-functionally with Technology, Legal, Internal Audit, and business teams to embed security and compliance into operations and decision-making
- Owning audit and regulatory engagement, serving as the primary liaison with Internal Audit and ensuring efficient, well-coordinated audit execution
- Providing clear, actionable reporting to executive leadership and the Board, translating complex risk and compliance topics into meaningful insights
- Shaping and maturing the security awareness program, measurably improving human risk outcomes and strengthening the company's overall security posture
- Success in this role is defined by the effectiveness of the control environment, clarity of risk visibility, and the organization's ability to sustain audit readiness and compliance at scale
Criteria include:
- Minimum of 6+ years of related experiences (information security, risk, or compliance), including people management experience driving results, creating solutions and achieving as one team
- Bachelor's degree in Risk Management, or related fields, or equivalent work experience
- Deep expertise in SOX, privacy regulations, and third-party risk management, and strong working knowledge of PCI DSS
- Strong decision-making, conflict resolution skills and experience leading teams and scaling enterprise compliance and risk programs
- Effective at driving accountability across both direct reports and cross-functional stakeholders
- Comfortable engaging with executive leadership and board-level audiences
- Ability to translate complex regulatory requirements into practical, business-aligned control strategies
- Strong risk-based mindset, balancing compliance obligations with operational effectiveness
- Relevant certifications such as CISSP, CISM, CISA, CRISC, or PCI ISA/QSA are preferred
- This role requires being onsite in the Rocklin, CA office, Monday through Thursday and Friday as optional in the office
- Technical competencies include:
- Deep understanding of security and compliance frameworks (PCI DSS, NIST, ISO 27001, SOX)
- Experience with third-party risk management methodologies and tools
- Experience with GRC platforms and compliance automation
- Strong risk assessment and control evaluation knowledge
- Excellent written and verbal communication skills
- Strong program leadership and prioritization capabilities
- Experience working within the retail sector
Our Culture & Values
We believe that taking care of our people is vital to our success and we strive to offer equitable and transparent practices for all. We prioritize connection, growth, and wellbeing.
People First
Putting People First means investing in overall well-being and opportunities to grow and advance within the organization. Depending on the position and location, here are a few highlights of what benefits may be available:
Benefits
- A generous discount on all WSI brands
- A 401(k) plan and other investment opportunities
- Paid vacations, holidays, and time off to volunteer
- Health benefits, dental and vision insurance, including same-sex domestic partner benefits
- Tax-free commuter benefits
- A wellness program that supports your physical, financial and emotional health
Continued Learning
- In-person and online learning opportunities through WSI University
- Cross-brand and cross-function career opportunities
- Resources for…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).