We use cookies to improve your experience on our site. To find out more, read our privacy policy.

Gap Inc. Jobs

Mobile gap-inc Logo
Home View All Jobs (4,596)

Job Information

Gap Inc. Director, Information Security Compliance and Governance in San Francisco, California

About Gap Inc.

Our brands bridge the gaps we see in the world. Old Navy democratizes style to ensure everyone has access to quality fashion at every price point. Athleta unleashes the potential of every woman, regardless of body size, age or ethnicity. Banana Republic believes in sustainable luxury for all. And Gap inspires the world to bring individuality to modern, responsibly made essentials.    

This simple idea—that we all deserve to belong, and on our own terms—is core to who we are as a company and how we make decisions. Our team is made up of thousands of people across the globe who take risks, think big, and do good for our customers, communities, and the planet. Ready to  learn fast, create with audacity and lead boldly? Join our team.

About the Role

In this pivotal role, you will spearhead the development of a forward-looking 24-36 month security strategy and lead the charge in implementing robust security enhancements. Your mandate will also encompass driving Information Security Compliance and Governance, including conducting comprehensive IT Security Risk Assessments to fortify GapTech for both internal and external audits. Additionally, you will be entrusted with the crucial task of ensuring unwavering compliance with Sarbanes-Oxley (SOX), overseeing Third Party Risk Audits, and managing Findings and Risk Management with authority and precision.

What You'll Do

You will lead strategic collaboration, align security with business objectives, manage data security and compliance, oversee budget control, ensure regulatory compliance, advocate for security investments, manage relationships with partners, and influence the strategy for the team.

  • Collaborate with the CISO and senior leadership to define the overall security vision and roadmap.

  • Align security initiatives with business objectives and risk tolerance.

  • Build and lead a Data security strategy and technology direction.

  • Budget management and control, work with Procurement to ensure budget control.

  • Prepare and present reports on security posture and trends.

  • Ensure compliance with industry standards (such as ISO 27001 and NIST) and regulatory requirements.

  • Advocate for security investments and resource allocation.

  • Test and validate controls for continued regulatory compliance.

  • Build and manage relationship with the current MSP

  • Manage the team and MSP partner to review and collect evidence for control testing performance; remediate findings from various IT audits through completion.

  • Build cross functional partnerships and collaboration with boarder teams.

  • Influence strategy for area/team

Who You Are

  • Ability to assess complex situations and analyze data to make judgments and recommend solutions.

  • Effective communication skills and experience translating complex information and presenting to leadership.

  • Strong strategic understanding of Information Security and ability to articulate clearly and to all levels of leadership.

  • Leverage knowledge of laws directives, guidance and PCI regulations governing data and computer assets, to ensure we maintain our compliance.

  • Competence and experience with Information Security Compliance and Governance methodologies, procedures, tools and practices

  • Sound knowledge of concepts and procedures specific to own subject area and an understanding of the procedures in other relevant security areas.

  • Experience in preparing reports and leading a team of exempt level employees

  • Manage the outsource partners to ensure that all key metrics and projects are met.

Benefits at Gap Inc.

  • Merchandise discount for our brands: 50% off regular-priced merchandise at Old Navy, Gap, Banana Republic and Athleta, and 30% off at Outlet for all employees.

  • One of the most competitive Paid Time Off plans in the industry.*

  • Employees can take up to five “on the clock” hours each month to volunteer at a charity of their choice.*

  • Extensive 401(k) plan with company matching for contributions up to four percent of an employee’s base pay.*

  • Employee stock purchase plan.*

  • Medical, dental, vision and life insurance.*

  • See more (https://corporate.gapinc.com/en-us/careers/gap-inc-careers/gap-inc-benefits) of the benefits we offer.

*For eligible employees

Gap Inc. is an equal-opportunity employer and is committed to providing a workplace free from harassment and discrimination. We are committed to recruiting, hiring, training and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We have received numerous awards for our long-held commitment to equality and will continue to foster a diverse and inclusive environment of belonging. In 2022, we were recognized by Forbes as one of the World's Best Employers and one of the Best Employers for Diversity.

Salary Range: $196,800 - $260,800 USD

Employee pay will vary based on factors such as qualifications, experience, skill level, competencies and work location. We will meet minimum wage or minimum of the pay range (whichever is higher) based on city, county and state requirements.

US Candidates

Please note that effective, June 30, 2022, Gap Inc. will no longer require any of its employees to wear face masks or require proof of COVID vaccination, unless required by local or state/provincial mandates or as part of Gap Inc’s quarantine guidelines after being exposed to or testing positive for COVID. Therefore, please disregard any language in any job posting that refers to Gap Inc.’s face mask and proof of vaccination policy as said policy is no longer effective.

DirectEmployers