The Head of Information Security and Privacy will lead REI’s information security and privacy team and partner across the co-op to identify and manage risk in our technology, data and business practices. This leader will prepare the co-op for the shift to a digital forward retailer as REI grows from a 20-million-member to 50-million-member community by 2030. As the expert advisor for choices the co-op makes to reduce risk, this person leads security architecture and engineering, vulnerability management, security portfolio and program management, security operations center, compliance and risk assessment and management, and identity and rights management. The Head of Information Security and Privacy is the champion and advocate for IT security raising awareness and understanding across technology and the co-op working closely with REI’s enterprise risk management and physical security organization.
At REI Co-op, we believe time outside is fundamental to a life well lives and exist to inspire and enable a life outside for everyone. To deliver on that promise, we are working with our 15,000 employees, 19M members and the broader outdoor community toward a reality where everyone has the opportunity to be themselves, to access opportunities and find their place in the outdoors. For us, that means:
- Investing in work that removes the barriers people and communities face to getting outside
- Delivering relevant products, experiences, and expertise to equip and inspire a new generation of outdoor stewards
- Cultivating a workforce that reflects the demographics of the markets we serve
- Leading the industry’s efforts to welcome people and communities historically underrepresented into outdoor media and culture
The Head of Information Security and Privacy contributes to REI’s success by developing, recommending and leading planning, strategies, and implementation of REI’s IT security program to ensure the IT environment (applications, infrastructure, SaaS, Cloud Services, and on-premise data centers) is secure and protected from intentional or inadvertent modification, disclosure or destruction. Leads, coordinates, and collaborates with IT leaders, managers, and staff to implement tools and processes throughout the security development lifecycle for intrusion detection and protection. This leader actively keeps abreast of new technology and IT service delivery methods to ensure REI is up to date with current IT security practices. Reporting to the Chief Technology Officer, Dan Shull, this person will lead a team of 30+ information security professionals.