Cavender's
Join to apply for the
Security Manager
role at
Cavender's
The Security Manager is responsible for leading the monitoring, protection, and continuous improvement of Cavender’s information security environment. This role manages security operations, policies, and initiatives to safeguard company systems, data, and infrastructure. The Security Manager partners closely with IT leadership to identify and mitigate risks, ensure compliance, and oversee security tools and processes. This position plays a key role in advancing the maturity of Cavender’s cybersecurity program while ensuring secure collaboration across on‑site and remote teams.
Duties and Responsibilities
Support the “Cavender’s Culture” and drive the Mission, Vision and Values
Lead daily monitoring and review of corporate infrastructure (network, hardware, and cloud) for security risks and performance trends.
Manage vulnerability assessments and penetration testing (internal and external), producing actionable reports and remediation plans.
Review compliance scans (e.g., Nessus) and validate remediation of findings and system patches.
Oversee implementation of security controls, policies, and best practices across IT systems.
Coordinate with third‑party vendors to ensure compliance with Cavender’s security standards.
Collaborate with IT leadership to identify, evaluate, and respond to emerging security threats.
Lead SOX compliance initiatives by ensuring proper IT controls and documentation.
Maintain security configurations for cloud infrastructure, enforcing and auditing conditional access policies.
Plan and execute quarterly attack simulations and phishing tests to assess readiness and improve response strategies.
Leverage SIEM, MDR, and endpoint control tools (e.g., Huntress, ThreatLocker) to enhance detection and response capabilities.
Develop and maintain incident response and disaster recovery plans; lead response efforts when required.
Prepare quarterly security summaries and present findings or recommendations.
Identify opportunities for automation of manual monitoring or reporting tasks.
Partner with IT and business leaders on projects impacting system and data security.
Facilitate IT General Controls for Digital and Enterprise IT and respond to Internal and External Audit inquiries.
Coordinate annual reviews of IT controls, narratives, and process flows.
Manage PCI‑DSS annual assessment with external QSA vendors and maintain documentation repository.
Lead annual penetration tests for retail and corporate systems, ensuring remediation of findings.
Duties may change and associates may be required to perform other duties as assigned.
Qualifications and Requirements
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field.
4–6 years of progressive experience in information security, infrastructure, or related technology roles.
Demonstrated experience managing or leading security operations or initiatives.
Relevant certifications such as CISSP, CySA+, CEH, or CISM preferred.
Strong understanding of network and cloud infrastructure risk management and controls.
Knowledge of frameworks such as NIST and ISO 27001.
Excellent analytical, problem‑solving, and communication skills.
Ability to collaborate effectively with both technical and nontechnical teams.
Highly organized and able to manage multiple priorities in a fast‑paced environment.
Must maintain confidentiality and handle sensitive information responsibly.
Preferred Skills
Experience utilizing SIEM, MDR, and vulnerability scanning tools to detect and respond to threats.
Experience leading or supporting large‑scale IT or security projects.
Strong attention to detail and adaptability during times of change.
Excellent documentation and reporting capabilities.
Familiarity with security automation tools and monitoring platforms.
Proficient in tools such as Nessus, Huntress, and ThreatLocker to strengthen cybersecurity posture.
Cavender’s is an Equal Opportunity Employer. We do not discriminate based on race, religion, color, military status, national origin, sex, ancestry, age, sexual orientation, pregnancy, disability, genetic information, or any other personal characteristic protected under federal, state, or local law.
Cavender’s will provide reasonable accommodations for persons with a disability upon request. If you have a disability and need assistance completing the application, please call Customer Service at (888) 361 – 2555 or visit your nearest Cavender’s store.
Referrals increase your chances of interviewing at Cavender's by 2x
#J-18808-Ljbffr
Security Manager
role at
Cavender's
The Security Manager is responsible for leading the monitoring, protection, and continuous improvement of Cavender’s information security environment. This role manages security operations, policies, and initiatives to safeguard company systems, data, and infrastructure. The Security Manager partners closely with IT leadership to identify and mitigate risks, ensure compliance, and oversee security tools and processes. This position plays a key role in advancing the maturity of Cavender’s cybersecurity program while ensuring secure collaboration across on‑site and remote teams.
Duties and Responsibilities
Support the “Cavender’s Culture” and drive the Mission, Vision and Values
Lead daily monitoring and review of corporate infrastructure (network, hardware, and cloud) for security risks and performance trends.
Manage vulnerability assessments and penetration testing (internal and external), producing actionable reports and remediation plans.
Review compliance scans (e.g., Nessus) and validate remediation of findings and system patches.
Oversee implementation of security controls, policies, and best practices across IT systems.
Coordinate with third‑party vendors to ensure compliance with Cavender’s security standards.
Collaborate with IT leadership to identify, evaluate, and respond to emerging security threats.
Lead SOX compliance initiatives by ensuring proper IT controls and documentation.
Maintain security configurations for cloud infrastructure, enforcing and auditing conditional access policies.
Plan and execute quarterly attack simulations and phishing tests to assess readiness and improve response strategies.
Leverage SIEM, MDR, and endpoint control tools (e.g., Huntress, ThreatLocker) to enhance detection and response capabilities.
Develop and maintain incident response and disaster recovery plans; lead response efforts when required.
Prepare quarterly security summaries and present findings or recommendations.
Identify opportunities for automation of manual monitoring or reporting tasks.
Partner with IT and business leaders on projects impacting system and data security.
Facilitate IT General Controls for Digital and Enterprise IT and respond to Internal and External Audit inquiries.
Coordinate annual reviews of IT controls, narratives, and process flows.
Manage PCI‑DSS annual assessment with external QSA vendors and maintain documentation repository.
Lead annual penetration tests for retail and corporate systems, ensuring remediation of findings.
Duties may change and associates may be required to perform other duties as assigned.
Qualifications and Requirements
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field.
4–6 years of progressive experience in information security, infrastructure, or related technology roles.
Demonstrated experience managing or leading security operations or initiatives.
Relevant certifications such as CISSP, CySA+, CEH, or CISM preferred.
Strong understanding of network and cloud infrastructure risk management and controls.
Knowledge of frameworks such as NIST and ISO 27001.
Excellent analytical, problem‑solving, and communication skills.
Ability to collaborate effectively with both technical and nontechnical teams.
Highly organized and able to manage multiple priorities in a fast‑paced environment.
Must maintain confidentiality and handle sensitive information responsibly.
Preferred Skills
Experience utilizing SIEM, MDR, and vulnerability scanning tools to detect and respond to threats.
Experience leading or supporting large‑scale IT or security projects.
Strong attention to detail and adaptability during times of change.
Excellent documentation and reporting capabilities.
Familiarity with security automation tools and monitoring platforms.
Proficient in tools such as Nessus, Huntress, and ThreatLocker to strengthen cybersecurity posture.
Cavender’s is an Equal Opportunity Employer. We do not discriminate based on race, religion, color, military status, national origin, sex, ancestry, age, sexual orientation, pregnancy, disability, genetic information, or any other personal characteristic protected under federal, state, or local law.
Cavender’s will provide reasonable accommodations for persons with a disability upon request. If you have a disability and need assistance completing the application, please call Customer Service at (888) 361 – 2555 or visit your nearest Cavender’s store.
Referrals increase your chances of interviewing at Cavender's by 2x
#J-18808-Ljbffr