Director, IT Security

Corporate & Shared ServicesHybrid Remote, San Francisco, California San Ramon, California


Job Description

The Opportunity

We are looking for a leader for our IT Security Function to partner with leaders across R+F organization and lead our journey for a Security and risk program for our company. The Director, Information Technology Security will drive and support the security policies, practices, procedures, and technologies required to ensure the protection of our networks, systems, applications, data and products. S/he will ensure operational risk management efficiencies are achieved across the enterprise, and will develop, document and operate controls maximizing risk mitigation, which are compliant with target industry regulations including PCI, SOX, GDPR and CCPA.

If you are comfortable engaging and partnering with executive leaders across functions, have a good understanding of Fortune 500 companies’ capabilities and business processes you are a strong candidate for this role. You will act as a consultant and a trusted advisor to the R+F leadership team to plan the business capability roadmap while addressing the strategic and tactical business priorities. 


Implement and maintain security programs, processes, policies and procedures to ensure continuity of security controls, and collaborate with business teams to ensure protective services are enabling business and not impeding.

  • Work with other R+F TECH executives and functional business leaders to establish a vision for governance and reporting and to ensure the development of an ERM program and implementation of the operational risk framework and ensure the effective alignment with the overall organization.
  • Support the implementation and on-going management of the R+F corporate risk framework for standards and practices relative to operational risk management for designated lines of business.
  • Lead R+F security incident detection and response program.
  • Develop and publish key operational KPI’s.
  • Manage MSSP service providers to ensure SLA’s are met, scope of contracted services are delivered at or better than target performance and quality levels.
  • Drive architectural and technical service improvements to meet security goals.
  • Hold partners accountable, employing quantitative and qualitative approaches.
  • Documents and evaluates entity, general computer and application controls.
  • Demonstrates strong project management expertise, including leading and mentoring staff and reviewing deliverables.
  • Collaborates with teams to assist in designing audit procedures and monitoring solutions.
  • Build relationships with all levels of management within R+F business areas to effectively execute security operations framework.
  • Partner closely with management and the various lines of business and functional areas on the development of key risk metrics, process controls, new products, change controls, risk and control self-assessments and risk profile updates.
  • Work closely with business area and function leaders, internal audit, and compliance to enhance control and monitoring programs. 
  • Maintain a working knowledge of Federal and State regulatory requirements as well as SOX, PCI DSS, GDPR and CCPA.
  • Obtain and maintain necessary training to keep current on operational risk and compliance operations topics.
  • Other duties and projects as assigned. 


  • 10+ years of IT or business/industry work experience.
  • 5+ years of senior management experience leading a team.
  • Executive presence and influence – ability to work with senior leadership and external partners.
  • Enterprise-wide understanding of business processes, systems & data -- ideally in Fortune 500 multi-national companies, in fast-moving consumer goods & FDA-regulated food / drug industries
  • Ability to to influence and guide without direct authority
  • Effective at developing and delivering executive level updates
  • Experience and passion to work in a fast paced Agile and innovative environment
  • Knowledge of internal controls.
  • Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited information exists.
  • Ability to interpret a variety of instructions furnished in written, oral, diagram, and/or schedule form. 
  • Ability to communicate effectively through both verbal and written communication with various levels of management.
  • Strong presentation skills. 
  • Ability to use influence and to achieve goals and objectives.

Education & Training:

  • Bachelor’s Degree required in Computer Science, Computer Engineering, Computer Information Systems, Business Administration or equivalent.
  • Master’s Degree preferred.

The Company

Rodan + Fields was founded in 2000 by Stanford-trained Dermatologists Dr. Katie Rodan and Dr. Kathy Fields with a passion for giving people the best skin of their lives — and the confidence that comes with it. Today, Rodan + Fields is the #1 Skincare Brand in North America in 2018 and the #1 Skincare Brand in the US in 2016, 2017 and 2018 1! The company has grown its innovative line of products and expanded into Canada and Australia. Headquartered in San Francisco, CA, R+F now employs approximately 700 people, has more than 300,000 enrolled Independent Consultants and over two million Preferred Customers.

At Rodan + Fields, you will be challenged to make an impact, inspired to do more, and rewarded for your contributions. We are transforming skincare, and we welcome your big ideas to fuel our ambitious growth plans! If you are looking for a life-changing career opportunity, we've got your prescription. You’ll become part of a positive, passionate movement that celebrates greatness and encourages employees to be catalysts for change. We provide a creative, vibrant workplace outfitted with all of the technology, tools and training you'll need to learn, grow and thrive! We create life-changing impact in our communities through our non-profit, Prescription for Change®, the heart of Rodan + Fields. By funding empowerment programs for students, we teach them how to use their skills to make life-changing differences in their lives and the lives of others. Join us and share your talents as we develop innovative solutions for your skin and empower entrepreneurs. In addition to working arm-in-arm with industry leaders, employees at Rodan + Fields enjoy rich benefits plans and perks.

1. Source Euromonitor International Limited; Beauty and Personal Care 2019 Edition, retail value RSP terms; all channels, Skin Care includes Sets and Kits; North America defined as Canada and the United States.

2. Source Euromonitor International Limited; Beauty and Personal Care 2019 Edition, retail value RSP terms; all channels, Skincare includes Sets & Kits

*At R+F, we do not engage with Google Hangouts or other social media platforms to schedule interviews or communicate with candidates.  Please disregard any messages or notifications from Google Hangouts or other social media messenger platforms regarding interviews or job offers.