Manager, Information Security – IR & Insider Risk

DescriptionPosition Title: Manager, Information Security – IR & Insider RiskYour RoleThe Manager, Information Security – IR and Insider risk; leads the Information Security Incident Response team in Information Technology. Victoria’s Secret is seeking a highly skilled and collaborative leader with proven incident response handling responsibilities – with the ability to build and lead our insider risk team function. Insider risk will require collaboration across multiple business and IT partners (HR, legal, etc.). This role will be a critical part to VS&Co’s SOC and real-time monitoring efforts.This individual must bring hands-on incident response and incident commander experience, as well as a solid track record defending enterprise infrastructure and applications. The ideal candidate is a mentor by nature, passionate about uplifting team capabilities, providing round the clock protection-oriented mission, and retaining key talent by building a culture of inclusivity, trust, and technical expertise.Why You Belong HereAt Victoria’s Secret & Co, you’ll join a world-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You’ll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy.We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you’ll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real-world experience, and learn from the best in the business.Your ImpactLead the Incident Response team and coach team members through incident response and management.Be available 24/7 for on-call purposes in leading incidents that span multiple time zones.Establish and lead a dedicated insider risk team, leveraging people, process, and technology to best defend our organization from potential internal threats.Hold our incident handlers accountable to following process, documenting process, and thorough cyber investigations to protect VS&Co to its fullest potential.Ensure incident handlers have adequate knowledge of the environment they are protectingParticipate and help lead technical tabletop exercises for IT and security stakeholders, simulating real-world attack scenarios.Responsible for development of team members in both offensive and defensive security disciplines – driving alignment on technologies and platforms in use at VS&CoConduct administrative management duties including performance management, talent development and related administrative tasks.Develop, tune, and report on KPI’s for our SOC, and insider risk teams.Oversee deployment, tuning, and operational use of insider risk technologies (DLP, UEBA, CASB, IAM analytics).Click here for benefit details related to this position.Minimum Salary: $128,500.00Maximum Salary: $175,245.00VS&Co provides a range of compensation for this role as shown. Your actual salary will be determined by a number of factors, including: your specific skills and experience, geographic region, or other relevant factors.QualificationsYour Experience8+ years’ experience in Cybersecurity Technologies3–5 years of experience in incident response handling3–5 years of experience utilizing enterprise security toolsets for investigations and proactive security control enforcement (SIEM, EDR, firewall, WAF, etc.).Demonstrated hands-on expertise and impact in similar roles in fast-paced, complex environmentsStrong understanding of MITRE ATT&CK framework, threat emulation, and detection engineering.Experience utilizing telemetry of all types; including, but not limited to: DLP, UEBA, CASB, IAM toolsets, and cloud service providers (Azure, GCP, AWS). Proven leadership or mentoring experience in cybersecurity teams.Ability to communicate and engage effectively at all levels of the organization within IT and with non-IT stakeholdersPreferred QualificationsExperience in building purple team programs from the ground up.Familiarity with cyber threat intelligence and TTP development.Experience managing third parties to help deliver managed bot mitigation and WAF capabilities for web-based applicationsRelevant certifications (e.g., CISSP, GCIH, CTIP, SSCP, CISM).Experience working in or securing retail environments, including POS systems, eCommerce platforms, and distributed IT infrastructure.Bachelor’s degree in information technology or equivalent experienceWe will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: California Fair Chance Act, Los Angeles Fair Chance Initiative for Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance OrdinanceAn equal opportunity employer, we do not discriminate in hiring or terms and conditions of employment because of an individual’s race, color, religion, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, marital status or any other protected category recognized by state, federal or local laws. We only hire individuals authorized for employment in the United States.