Senior Cybersecurity Engineer – IAM

who we are

lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we’re in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.

About this team

lululemon’s technology services are modernizing, adopting leading-edge methodologies for many initiatives. The Identity and Access Management (IAM) program encompasses strategic planning, design, implementation, and continuous improvement of identity and access services across the global enterprise, including Privileged Access Management (PAM). We are currently searching for a Senior Engineer to join our team and design, build, mature, and drive our identity practice. The ideal candidate will be an improvement-driven problem-solver with a proven ability to engage and build healthy relationships between cross-functional areas to achieve continuous improvement. A passion for access governance and hardening control designs is key to the success of this role.

Core responsibilities

As a Senior Cybersecurity Engineer, you will lead complex security engineering initiatives, designing and implementing security controls, platforms, and solutions that protect critical systems at scale. You will build and operate enterprise security capabilities such as centralized authentication, security enforcement mechanisms, and security automation, while applying secure coding practices and rigorous testing and validation. You will partner closely with engineering teams to embed security into system design and delivery, drive improvements to security quality and reliability, and mentor junior engineers through hands-on technical leadership and knowledge sharing.

Select responsibilities include:

• Build enterprise security systems implementing centralized authentication, security platforms, and organization-wide controls
• Lead comprehensive threat modeling and security assessments for complex systems, evaluating attacker behaviour across integrations and influencing secure design decisions early in the development lifecycle
• Own end-to-end response for complex security incidents, driving deep root cause analysis and delivering coordinated long-term improvements to detection, prevention, and security monitoring capabilities
• Develop advanced security code, tools, and libraries including security automation platforms, scanners and detectors, security testing systems, and security SDKs
• Establish security code standards defining secure coding practices, code review requirements, and implementation quality

Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or related field; security certification strongly preferred
• 6-10 years of experience leading security engineering initiatives, establishing security standards and practices, and building security systems at scale, or equivalent
• Proven experience implementing enterprise security controls and building security infrastructure including centralized authentication, authorization services, and security policy enforcement systems at scale
• Track record of writing complex security systems including security platforms and SDKs; experience establishing security code review practices, security checklists, and security development frameworks
• Demonstrated ability to lead advanced threat modeling for complex systems, anticipating sophisticated adversarial behaviour; experience owning investigation and resolution of complex security incidents with deep root cause analysis
• Strong knowledge of Identity and Access Management/Security principles and best practices.
• Experience in Cloud Configuration and Technologies, including SAML, OIDC, Privileged Access Management (PAM/RBAC), Conditional Access, Azure Automation, Logic Apps, Group/User Management. (Cloud based Linux/Windows/ SQL Support a plus).

must haves

• Acknowledge the presence of choice in every moment and take personal responsibility for your life.
• Possess an entrepreneurial spirit and continuously innovate to achieve great results.
• Communicate with honesty and kindness and create the space for others to do the same.
• Lead with courage, knowing the possibility of greatness is bigger than the fear of failure.
• Foster connection by putting people first and building trusting relationships.
• Integrate fun and joy as a way of being and working, aka doesn’t take yourself too seriously.

additional notes

Authorization to work in Canada is required for this role.

compensation and benefits package

lululemon’s compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and team performance. The typical hiring range for this position is from $132,600 – $174,000 annually; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program, subject to program eligibility requirements.

At lululemon, investing in our people is a top priority. We believe that when life works, work works. We strive to be the place where inclusive leaders come to develop and enable all to be well. Recognizing our teams for their performance and dedication, other components of our total rewards offerings include support of career development, wellbeing, and personal growth:

• Extended health and dental benefits, and mental health plans
• Paid time off
• Savings and retirement plan matching
• Generous employee discount
• Fitness & yoga classes
• Parenthood top-up
• Extensive catalog of development course offerings
• People networks, mentorship programs, and leadership series (to name a few)

Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.

workplace arrangement

Hybrid

In-person collaboration and connection is important to our culture. Work is performed onsite, minimum 4 days per week.

#LI-AF1

Read Full Description