GRC Policy Lead
Job Description
Job Title: GRC Policy Lead
Reports to: Head of Governance, Risk & Compliance
Location: Los Angeles, CA
About SHEIN Technology
SHEIN Technology is a U.S. technology company. Founded in 2012, SHEIN is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN reaches consumers across more than 150 countries and regions around the world. We place a premium on choice, delivering more than 6,000 new fashion, beauty and lifestyle products daily with more than 600,000 items available. Our mission is to help people express their individuality through the latest trends that are accessible and affordable. To learn more about SHEIN, follow us at shein.com, instagram.com/sheinofficial and youtube.com/shein.
Position Summary:
SHEIN Global Security & Risk Management is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.
Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.
The GRC Policy Lead, a thought leader within our security organization, is responsible for implementing and maintaining the policy strategy, framework, lifecycle, and supporting processes. This position will be part of a team of governance, risk, and compliance experts and work with technology and legal partners and business units to meet our global policy and compliance needs.
The ideal candidate should have a deep understanding of general security technologies and best practices, industry standard compliance frameworks, and extensive experience in global data privacy laws and regulations. This role must work effectively with development, engineering, and operations counterparts as well as internal and external partners across all security and regulatory areas to develop and maintain comprehensive security policies, standards, and guidelines in accordance with regulatory requirements and industry best practice to protect SHEIN data, services, and information assets.
Core Responsibilities:
• Enhance and maintain a comprehensive policy framework, taking into account applicable legal and regulatory requirements, industry best practice and standards, new technologies, threat landscape, and SHEIN business needs.
• Manage the policy roadmap and lifecycle, including policy review, revision, publication, communication, and exceptions management.
• Establish relationships and work with relevant stakeholders across the enterprise to support the policy management lifecycle.
• Develop supporting documentation, including policy release notes, implementation guidance, and executive summaries in support of policy communication and implementation.
• Maintain a current and comprehensive understanding of relevant industry standards to incorporate into the policy strategy, roadmap, and framework.
• Manage policy documentation activities, including document version control and maintaining cross references to relevant industry standards.
• Support integration and maturation of policy, compliance, and risk frameworks
Skills and Qualifications:
• A minimum of 5 years of experience in information security, with extensive practical experience in security and privacy policy development.
• Experience in developing and deploying policy management programs, preferably with international experience in an e-commerce or technology related industry
• Possess a bachelor's degree or higher in the field of information security, engineering, computer science or equivalent advance technology field of study
• Relevant security certifications, such as CISSP, CISM, CISA are highly desired
• Strong knowledge of security and data privacy standards, regulations and guidelines such as ISO 27k, NIST, CIS, GDPR, CCPA, PCI DSS
• Strong written and verbal communication and collaboration skills, with the ability to translate complex and technical issues to all levels of personnel
• Detail oriented and highly organized, with the ability to thrive in a fast-paced environment and prioritize accordingly
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
Pay: $75,300.00 min. - $114,800.00 max annually, Bonus offered.
SHEIN Benefits and Culture:
• Healthcare (medical, dental, vision, prescription drugs)
• Health Savings Account with Employer Funding
• Flexible Spending Accounts (Healthcare and Dependent care)
• Company-Paid Basic Life/AD&D insurance
• Company-Paid Short-Term and Long-Term Disability
• Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident)
• Employee Assistance Program
• Business Travel Accident Insurance
• 401(k) savings plan with discretionary company match and access to a financial advisor
• Vacation, Paid holidays and sick days
• Employee Discounts
• Perks (HQ Location)
• Free weekly catered lunch at HQ
• Dog-Friendly office
• Free Gym Access at HQ
• Free Swag Giveaways
• Annual Holiday Party
• Invitations to pop-ups and other company events
• Complimentary daily office snacks and beverages
• Free Shuttle Service from HQ to LA Union Station
SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Reports to: Head of Governance, Risk & Compliance
Location: Los Angeles, CA
About SHEIN Technology
SHEIN Technology is a U.S. technology company. Founded in 2012, SHEIN is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN reaches consumers across more than 150 countries and regions around the world. We place a premium on choice, delivering more than 6,000 new fashion, beauty and lifestyle products daily with more than 600,000 items available. Our mission is to help people express their individuality through the latest trends that are accessible and affordable. To learn more about SHEIN, follow us at shein.com, instagram.com/sheinofficial and youtube.com/shein.
Position Summary:
SHEIN Global Security & Risk Management is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.
Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.
The GRC Policy Lead, a thought leader within our security organization, is responsible for implementing and maintaining the policy strategy, framework, lifecycle, and supporting processes. This position will be part of a team of governance, risk, and compliance experts and work with technology and legal partners and business units to meet our global policy and compliance needs.
The ideal candidate should have a deep understanding of general security technologies and best practices, industry standard compliance frameworks, and extensive experience in global data privacy laws and regulations. This role must work effectively with development, engineering, and operations counterparts as well as internal and external partners across all security and regulatory areas to develop and maintain comprehensive security policies, standards, and guidelines in accordance with regulatory requirements and industry best practice to protect SHEIN data, services, and information assets.
Core Responsibilities:
• Enhance and maintain a comprehensive policy framework, taking into account applicable legal and regulatory requirements, industry best practice and standards, new technologies, threat landscape, and SHEIN business needs.
• Manage the policy roadmap and lifecycle, including policy review, revision, publication, communication, and exceptions management.
• Establish relationships and work with relevant stakeholders across the enterprise to support the policy management lifecycle.
• Develop supporting documentation, including policy release notes, implementation guidance, and executive summaries in support of policy communication and implementation.
• Maintain a current and comprehensive understanding of relevant industry standards to incorporate into the policy strategy, roadmap, and framework.
• Manage policy documentation activities, including document version control and maintaining cross references to relevant industry standards.
• Support integration and maturation of policy, compliance, and risk frameworks
Skills and Qualifications:
• A minimum of 5 years of experience in information security, with extensive practical experience in security and privacy policy development.
• Experience in developing and deploying policy management programs, preferably with international experience in an e-commerce or technology related industry
• Possess a bachelor's degree or higher in the field of information security, engineering, computer science or equivalent advance technology field of study
• Relevant security certifications, such as CISSP, CISM, CISA are highly desired
• Strong knowledge of security and data privacy standards, regulations and guidelines such as ISO 27k, NIST, CIS, GDPR, CCPA, PCI DSS
• Strong written and verbal communication and collaboration skills, with the ability to translate complex and technical issues to all levels of personnel
• Detail oriented and highly organized, with the ability to thrive in a fast-paced environment and prioritize accordingly
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
Pay: $75,300.00 min. - $114,800.00 max annually, Bonus offered.
SHEIN Benefits and Culture:
• Healthcare (medical, dental, vision, prescription drugs)
• Health Savings Account with Employer Funding
• Flexible Spending Accounts (Healthcare and Dependent care)
• Company-Paid Basic Life/AD&D insurance
• Company-Paid Short-Term and Long-Term Disability
• Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident)
• Employee Assistance Program
• Business Travel Accident Insurance
• 401(k) savings plan with discretionary company match and access to a financial advisor
• Vacation, Paid holidays and sick days
• Employee Discounts
• Perks (HQ Location)
• Free weekly catered lunch at HQ
• Dog-Friendly office
• Free Gym Access at HQ
• Free Swag Giveaways
• Annual Holiday Party
• Invitations to pop-ups and other company events
• Complimentary daily office snacks and beverages
• Free Shuttle Service from HQ to LA Union Station
SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Apply Now
Back to Job Listings
Add To Job List
Company Profile
View Company Reviews
Date Posted
06/14/2023
Views
8
Positive
Subjectivity Score: 0.9
Similar Jobs
Product Marketing Manager - Wearables, Connectivity - Meta
Views in the last 30 days - 0
View Details