Talent.com
lululemon Senior Technology Manager - Vulnerability Management and Application Security
lululemon Senior Technology Manager - Vulnerability Management and Application Securitylululemon • Vancouver, British Columbia, Canada
No longer accepting applications
lululemon Senior Technology Manager - Vulnerability Management and Application Security

lululemon Senior Technology Manager - Vulnerability Management and Application Security

lululemon • Vancouver, British Columbia, Canada
30+ days ago
Job type
  • Permanent
Job description

Job Details

Description & Requirements

who we are

lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we're in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.

about this team

As the Senior Technology Manager for Vulnerability Management and Application Security, you will be a key leader within the Technology organization, responsible for shaping and executing the vision for secure, resilient, and compliant application ecosystems across a rapidly scaling global business. You will lead a team of security engineers and program managers focused on embedding vulnerability management and secure development practices into every layer of our technology stack. As the leader of this team, you will drive the development and implementation of security frameworks, controls, and tooling that support proactive risk identification, remediation, and governance across applications and infrastructure. You will partner closely with engineering, product, and compliance teams to ensure our platforms are not only innovative but also defensible and aligned with regulatory expectations.

core responsibilities:

  • Leadership & Strategy - develop, lead, and mentor a team of security engineers and PMs/scrum leads focused on identifying and prioritizing vulnerabilities in our environment, and working with application teams on remediations
  • Vulnerability Identification and Prioritization - Lead the identification, categorization, and prioritization of security vulnerabilities using CVSS scoring, business impact assessments, and threat modeling frameworks
  • Application Security Oversight - Embed secure development practices across the SDLC, including threat modeling, secure coding, and DevSecOps integration, ensuring alignment with regulatory frameworks
  • Security Strategy & Architecture - define and execute the security strategy for vulnerability management and application security aligned with enterprise risk, GRC, and business goals and objectives
  • Technical Guidance and Execution - provide hands-on technical leadership in designing and implementing security controls, scanning for vulnerabilities, guide threat modelling, vulnerability assessments, and secure designs for our cloud environments and applications
  • Governance and Compliance Alignment - collaborate with GRC and legal teams to ensure vulnerability management practices align with internal policies and external compliance requirements
  • Reporting and Metrics - produce operational reports on vulnerability status, risk exceptions, and remediation progress, providing visibility to leadership and informing strategic decisions
  • Security Tooling and Automation - scale vulnerability remediation through automation and integrations with scanning tools and lead efforts to operationalize detection and response capabilities
  • Vendor partnership & management - evaluate, onboard, and manage third-party vendors and tools related to vulnerability management and application security; ensure vendor solutions meet internal security standards and risk due diligence processes
  • Budget management - develop and manage the team's operational and project budgets, ensuring alignment with strategic priorities; track and report on budget performance identifying opportunities for cost optimization

qualifications:

  • 8-10 years of experience enabling key business priorities through the successful delivery and support of cyber programs and initiatives
  • Deep understanding of regulatory frameworks including NIST, SOX, PCI, GDPR and other global data privacy regulations with the ability to translate these into actionable technical and operational controls
  • Proven track record in identifying, assessing, and remediating vulnerabilities across complex enterprise environments, including cloud-native and hybrid architectures
  • Experience implementing secure development lifecycle practices, including threat modelling, secure coding, and automated testing (SAST/DAST)
  • 6+ years of people leadership experience, managing diverse, high-performing teams across multiple geographies and time zones
  • Demonstrated success in building and sustaining inclusive, growth-oriented teams with a strong emphasis on diversity, equity, and individual development
  • Strong analytical and stakeholder management skills, with a history of using metrics and reporting to drive prioritisation and communicate risk posture
  • Experience managing vendor relationships and overseeing CAPEX and OPEX budgets to ensure efficient investment in security tooling and services


must haves
  • Acknowledge the presence of choice in every moment and take personal responsibility for your life.
  • Possess an entrepreneurial spirit and continuously innovate to achieve great results.
  • Communicate with honesty and kindness and create the space for others to do the same.
  • Lead with courage, knowing the possibility of greatness is bigger than the fear of failure.
  • Foster connection by putting people first and building trusting relationships.
  • Integrate fun and joy as a way of being and working, aka doesn't take yourself too seriously.


additional notes

Authorization to work in Canada is required for this role.

compensation and benefits package

lululemon's compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and team performance. The typical hiring range for this position is from $158,900 - $208,500 annually ; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program, subject to program eligibility requirements.

At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:
  • Extended health and dental benefits, and mental health plans
  • Paid time off
  • Savings and retirement plan matching
  • Generous employee discount
  • Fitness & yoga classes
  • Parenthood top-up
  • Extensive catalog of development course offerings
  • People networks, mentorship programs, and leadership series (to name a few)


Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.


workplace arrangement

In-person collaboration and connection is important to our culture. Work is performed onsite, minimum 4 days per week.
Create a job alert for this search

Lululemon Senior Technology Manager - Vulnerability Management and Application Security • Vancouver, British Columbia, Canada

Similar jobs

lululemon Senior Technology Manager, Mobile

lululemonVancouver, Metro Vancouver Regional District, CA
Permanent

Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well.We owe our success...Show more

 • Promoted

Senior Manager of Technology Vendor Partnerships

AutodeskVancouver, Metro Vancouver Regional District, CA
Full-time

Manage vital technology vendor partnerships as a Senior Manager.Implement innovative strategies for compliance and cost optimization while enhancing supplier relationships across AI and cloud.As a ...Show more

 • Promoted

Manager for Campus Engagement and Safety

Discovery Community CollegeSurrey, Metro Vancouver Regional District, CA
Full-time

Serve as Regional Campus Manager, enhancing student experiences at the Surrey and Maple Ridge campuses.Ensure operational excellence and safety while promoting community engagement.This full-time m...Show more

 • Promoted

Manager, Information Technology Asset Management

MarqetaVancouver, Metro Vancouver Regional District, CA
Full-time

We are seeking an experienced Manager, Asset Management to lead enterprise‑wide technology asset governance and lifecycle management programs.This role will establish comprehensive asset management...Show more

 • Promoted

Senior Manager, Vulnerability Management

Phreesia, Inc.Vancouver, Metro Vancouver Regional District, CA
Full-time

Senior Manager, Vulnerability Management page is loaded## Senior Manager, Vulnerability Managementlocations: Remote Canadatime type: Full timeposted on: Posted 5 Days Agojob requisition id: R4755**...Show more

 • Promoted

L3- AppSec-VM

KTek Resourcingrichmond, bc, ca
Full-time

SAST (Static Application Security Testing), SCA (Software Composition Analysis).Vulnerability Management lifecycle.Risk Assessment & Prioritization.Ability to assess vulnerabilities based on risk, ...Show more

 • Promoted • New!

Cybersecurity Services Director - Remote Leadership & Delivery

ThorensVancouver, Metro Vancouver Regional District, CA
Remote
Full-time

A leading technology firm in Laval, Quebec is seeking a Director of Professional Services to lead teams in delivering innovative cybersecurity solutions.This role requires over 10 years of manageme...Show more

 • Promoted

Senior Manager, IAM Design & Controls (Global Security)

RBCVancouver, Metro Vancouver Regional District, CA
Full-time

The Senior Manager, IAM Design & Controls will work towards design and control assessment of applications to RBC’s Identity and Access Management solutions in accordance with the IAM strategy and I...Show more

 • Promoted

Senior Technical Implementations Lead

SRA GroupVancouver, Metro Vancouver Regional District, CA
Permanent

Technical Implementations Lead.Healthcare Technology / Software.SRA Staffing is hiring a full-time.Technical Implementations Lead.This role plays a key part in customer success and technical delive...Show more

 • Promoted

Senior Technology Vendor Manager

Autodesk, Inc.Vancouver
Full-time

Senior Technology Vendor Manager page is loaded## Senior Technology Vendor Managerlocations: Vancouver, BC, CANtime type: Full timeposted on: Posted Todayjob requisition id: 26WD97193**Job Requisit...Show more

 • Promoted

Senior Specialist in Application Security Vulnerability Management

HCLTechVancouver, Metro Vancouver Regional District, CA
Full-time

Step into a challenging role as a Senior Vulnerability Management Specialist, overseeing critical application security projects.Implement SAST, DAST, and SCA tools to prioritize and mitigate risks ...Show more

 • Promoted

Senior Product Manager - Greenspace Health

Greenspace Healthrichmond, bc, ca
Full-time

Senior Product Manager, Clinical Solution.Vancouver, Toronto, Kelowna, or Remote (Canada).Greenspace Mental Health is on a mission to empower mental health systems, providers, and individuals in ca...Show more

 • Promoted

Senior Technical Manager in Cloud and Product Security Leadership

TempoVancouver, Metro Vancouver Regional District, CA
Full-time

Elevate product and cloud security as a Senior Technical Manager in this dynamic role.Engage in hands-on cloud security initiatives while leading a dedicated security team to foster innovation.Your...Show more

 • Promoted

Senior Product Manager, Access Management

VantaVancouver, Metro Vancouver Regional District, CA
Full-time

At Vanta, our mission is to help businesses earn and prove trust.We believe that security should be monitored and verified continuously, and we empower companies to practice better security and pro...Show more

 • Promoted

Senior Device Program Manager HW/SW/Cloud Lead (Equity)

Arlo Technologies, Inc.Richmond, Metro Vancouver Regional District, CA
Full-time

A leading provider of home security solutions is looking for a Staff Device Program Manager to oversee the development of cutting-edge IoT devices in Richmond, Canada.This full-time role involves m...Show more

 • Promoted

Senior Business Analyst - US Tech Solutions

US Tech Solutionsrichmond, bc, ca
Full-time

Under the direction of the Assistant Director, Cyber Security Operations.Support the Project Manager throughout the planning and execution of initiatives by translating business needs and cyber req...Show more

 • Promoted • New!

Lead Product Manager, AI-Powered Security Ops (Remote)

Motorola SolutionsVancouver, Metro Vancouver Regional District, CA
Remote
Full-time

A leading technology company is seeking a Principal Product Manager for AI-Powered Security Operations in Vancouver.In this role, you'll own the product lifecycle from strategy to execution, drivin...Show more

 • Promoted

Senior Product Manager - TEM Security (Remote)

FlareVancouver, Metro Vancouver Regional District, CA
Remote
Full-time

A leading Threat Exposure Management firm in Canada is seeking a dedicated Senior Product Manager to lead product vision and collaborate with cross-functional teams.In this full-time role, you will...Show more