Head of Cybersecurity & IT Risk Management

Wayfair is looking for an experienced Technology Leader to own the vision, strategy and execution of Wayfair’s global Cloud Security and IT Risk Management roadmap across all of our retail brands (Wayfair, Perigold, AllModern, Joss & Main, Birch Lane) and geographies (currently 5 countries - US, CAN, UK, GER, IE). In 2021, Wayfair processed ~$14 billion in net revenue which at our $800+ billion (and growing) total addressable market means we are just getting started.

This team’s mission is to enable and secure our enterprise business through world-class Cloud Security, aiming to create a delightful experience for our customers, employees, and suppliers while managing any cybersecurity risks.

This role empowers a cross-functional team of engineering, product management, program management, and analytics. We’re in the midst of our global cloud migration journey and rapidly expanding our use of GCP to meet customer demand with a focus on efficiency, scalability, and profitability, with real-time impact on the entire business. 

What You’ll Do:

• Create and drive a world-class Cloud Security roadmap, devising a strategy that will delight our customers and enable our business. 
• Focus a broad, cross-functional team (~55 people) on business outcomes (ie increasing security), developing solutions to real customer problems.
• Collaborate effectively with senior partners (Legal, Employee Technology, Cloud Infrastructure) and C-Suite to ensure cross-Wayfair alignment and support for the cloud security strategy and vision. 
• Be a technology decision maker by aligning business objectives with product orientation. 
• Foster a team culture of high accountability, trust, collaboration, and empowerment. 
• Leverage data to understand risk, impact, scope, and priorities of our business objectives, and enable the team to drive results.
• Contribute meaningfully to the development of software engineering or product fundamentals and execution of technology at large.
• Research the rapidly changing cloud security and IT risk management industries and driving alternate solutions.

What You’ll Need:

• 10+ years of Cybersecurity leadership experience. 
• Deep Cloud Security domain experience and a passion for driving a customer-centric experience. Public Cloud experience required (GCP, AWS, Azure). GCP experience would be great! 
• Intellectual curiosity about how we can enable the security of our customers, employees, and suppliers via:
• Technical security components including, but not limited to, penetration testing, vulnerability scanning, patch management, security incident management. 
• Technical mapping of prioritized compliance and privacy standards, including but not limited to SOC2, CCPA, GDPR. 
• Internal security processes and enforcement including warehouse cybersecurity, laptop/mobile security.  
• Quarterly tabletop incident response exercises for the executive team, as well as partners with the tech talent team to develop Security training modules for all of Wayfair. 
• Track record of delivering on key cloud security KPIs and customer wins. 
• Demonstrated ability to grow a technology team, enabling a culture focused on customer happiness, trust, and ownership. 
• Communication skills with demonstrated ability to navigate a complex organization, rally people around an exciting vision, and generate buy-in for ideas and plans.
• Strong technical background and ability to partner closely with business, experience design, and analytics.

About Wayfair Inc.

Wayfair is one of the world’s largest online destinations for the home. Whether you work in our global headquarters in Boston or Berlin, or in our warehouses or offices throughout the world, we’re reinventing the way people shop for their homes. Through our commitment to industry-leading technology and creative problem-solving, we are confident that Wayfair will be home to the most rewarding work of your career. If you’re looking for rapid growth, constant learning, and dynamic challenges, then you’ll find that amazing career opportunities are knocking.

No matter who you are, Wayfair is a place you can call home. We’re a community of innovators, risk-takers, and trailblazers who celebrate our differences, and know that our unique perspectives make us stronger, smarter, and well-positioned for success. We value and rely on the collective voices of our employees, customers, community, and suppliers to help guide us as we build a better Wayfair – and world – for all. Every voice, every perspective matters. That’s why we’re proud to be an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, or genetic information.

We are interested in retaining your data for a period of 12 months to consider you for suitable positions within Wayfair. Your personal data is processed in accordance with our Candidate Privacy Notice (which can found here). If you have any questions regarding our processing of your personal data, please contact us at dataprotectionofficer@wayfair.com. If you would rather not have us retain your data please contact us anytime at dataprotectionofficer@wayfair.com.