×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant IT Project Manager Information Security

Senior Technology Manager - Vulnerability Management and Application Security

Job in Vancouver, BC, Canada
Listing for: Lululemon Athletica
Full Time position
Listed on 2026-02-28
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, IT Project Manager, Information Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 CAD Yearly CAD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Senior Technology Manager - Vulnerability Management and Application Security who we are

lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we're in.

As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.

about this team

As the Senior Technology Manager for Vulnerability Management and Application Security, you will be a key leader within the Technology organization, responsible for shaping and executing the vision for secure, resilient, and compliant application ecosystems across a rapidly scaling global business. You will lead a team of security engineers and program managers focused on embedding vulnerability management and secure development practices into every layer of our technology stack.

As the leader of this team, you will drive the development and implementation of security frameworks, controls, and tooling that support proactive risk identification, remediation, and governance across applications and infrastructure. You will partner closely with engineering, product, and compliance teams to ensure our platforms are not only innovative but also defensible and aligned with regulatory expectations.

core responsibilities:
  • Leadership & Strategy – develop, lead, and mentor a team of security engineers and PMs/scrum leads focused on identifying and prioritizing vulnerabilities in our environment, and working with application teams on remediations
  • Vulnerability Identification and Prioritization – Lead the identification, categorization, and prioritization of security vulnerabilities using CVSS scoring, business impact assessments, and threat modeling frameworks
  • Application Security Oversight – Embed secure development practices across the SDLC, including threat modeling, secure coding, and Dev Sec Ops  integration, ensuring alignment with regulatory frameworks
  • Security Strategy & Architecture – define and execute the security strategy for vulnerability management and application security aligned with enterprise risk, GRC, and business goals and objectives
  • Technical Guidance and Execution – provide hands‑on technical leadership in designing and implementing security controls, scanning for vulnerabilities, guide threat modelling, vulnerability assessments, and secure designs for our cloud environments and applications
  • Governance and Compliance Alignment – collaborate with GRC and legal teams to ensure vulnerability management practices align with internal policies and external compliance requirements
  • Reporting and Metrics – produce operational reports on vulnerability status, risk exceptions, and remediation progress, providing visibility to leadership and informing strategic decisions
  • Security Tooling and Automation – scale vulnerability remediation through automation and integrations with scanning tools and lead efforts to operationalize detection and response capabilities
  • Vendor partnership & management – evaluate, onboard, and manage third‑party vendors and tools related to vulnerability management and application security; ensure vendor solutions meet internal security standards and risk due diligence processes
  • Budget management – develop and manage the team’s operational and project budgets, ensuring alignment with strategic priorities; track and report on budget performance identifying opportunities for cost optimization
qualifications:
  • 8-10 years of experience enabling key business priorities through the successful delivery and support of cyber programs and initiatives
  • Deep understanding of regulatory frameworks including NIST, SOX, PCI, GDPR and other global data privacy regulations with the ability to translate these into actionable technical and operational controls
  • Pr…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search