Cybersecurity and Compliance Manager
Indianapolis, IN, US, 46278
About Our Company
Lids Sports Group is the largest licensed sports retailer in North America, selling fan and fashion-oriented headwear and apparel across the US and abroad. Operating out of Indianapolis, IN, our retail stores offer officially licensed headwear and apparel from collegiate and professional sports teams, plus top brands like Nike, New Era, Lululemon, and Mitchell & Ness. In addition to our wide assortment, we are the industry leader in on demand customization.
We currently operate 1,300+ brick and mortar locations, including specialty concept stores for the NBA, NHL, Paris Saint-Germain, and the two largest MLB franchises, via our Yankees & Dodgers Clubhouse stores. Lids has built partnerships and collaborations with iconic global brands including Marvel/Disney, Playboy, Travis Scott’s Cactus Jack, and Post Malone, creating a community where fans, fashion, and culture collide.
Job Summary
The Cybersecurity and Compliance Manager will play a critical role in ensuring the organization's IT systems and control processes comply with relevant regulations, industry standards, and internal policies regarding Sarbanes-Oxley (SOX)
Compliance, as well as PII, PCI, and GDPR compliance. This role will be responsible for monitoring the effectiveness of IT controls, evaluating risks, drafting policies and maintaining compliance.
Key Responsibilities
-
Execute IT SOX compliance strategic objectives and help drive and mature the IT SOX compliance program over time.
-
Formalize internal control documentation and testing procedures, coordinate and manage SOX processes and testing efforts with management
-
Lead the cybersecurity team in the reprovisioning of security roles across technology platforms to meet SOX compliance requirements
-
Document policies and compensating controls, ensuring adherence to the CAB process for code deployments and updates
-
Facilitate ongoing security awareness training using KnowBe4 and conduct regular analysis of technology architecture
-
Manage disaster recovery and business continuity plans, ensuring daily backups and effective security measures
-
Collaborate with the ITGCs team to perform specific control validations and ensure compliance with SOX requirements
-
Conduct job monitoring, report job failures, and provide evidence of ticket resolutions and branch protection settings
Qualifications
-
Bachelor’s degree in information technology, Computer Science, or a related field.
-
Minimum of 5 years of experience in IT compliance, cybersecurity, or a related field.
-
Strong knowledge of SOX compliance, PII, PCI, and GDPR regulations.
-
Deep understanding of NIST standards.
-
Experience in the retail industry is highly preferred.
-
Certifications such as CISSP, CISA, or CRISC are a plus.
Skills
-
Excellent understanding of IT compliance management and cybersecurity architecture.
-
Strong risk assessment and mitigation skills.
-
Ability to lead cross-functional teams and implement robust security measures.
-
Proficient in policy documentation and control testing.
-
Strong communication and interpersonal skills.
Professional Affiliations
-
Member of the Information Systems Audit and Control Association (ISACA).
-
Member of the International Information System Security Certification Consortium (ISC).
EEO Statement:
Hat World, Inc., Lids Holdings, Inc., dba Lids and subsidiaries is an Equal Opportunity Employer and is committed to complying with all federal, state, and local EEO laws. Hat World, Inc., prohibits discrimination against employees and applicants for employment based on the individual's race or color, religion or creed, national origin, alienage or citizenship status, marital status, sex, pregnancy status, age, military status, disability, or any other protected characteristic or class protected by law. Hat World, Inc. provides reasonable accommodation for disabilities in accordance with applicable laws.
Notice to Applicants:
In connection with your application, we collect information that identifies, reasonably relates to or describes you (“Personal Information”). The categories of Personal Information that we collect include your name, government issued identification number(s), email address, mailing address, other contact information, emergency contact information, employment history, educational history, criminal record, and demographic information. We collect and use those categories of Personal Information about you for human resources and other business management purposes, including identifying and evaluating you as a candidate for potential or future employment or future contract positions, recordkeeping in relation to recruiting and hiring, conducting criminal background checks as permitted by law, conducting analytics, and ensuring compliance with applicable legal requirements and Company policies.
Need accessibility assistance to apply?
Applicants who require accessibility assistance to submit an employment application, please email us at onboardingsupport@lids.com. A member of our Talent team will respond as soon as reasonably possible. This email address and is only for individuals seeking accommodation when applying for a career at Lids.
Req ID: 21212
Location: Corporate Office
Nearest Major Market: Indianapolis