Trek Bicycle · 8 hours ago
Director, IT Security
Waterloo, WI
Full-time
Onsite
Director/Executive
10+ years expTrek Bicycle is a leading company in the cycling industry dedicated to providing exceptional products and hospitality to customers. The Director of IT Security will lead the global information security program, developing a multi-year security strategy while managing a talented team to ensure the safety of the company's retail, ecommerce, manufacturing, distribution, and corporate environments.
ManufacturingProduct DesignSporting Goods
Responsibilities
Define and maintain a multi-year security strategy and roadmap (including Zero Trust and measurable outcomes)
Own security governance: policies, standards, risk decisions, and the policy exception process (including expiration and renewal)
Lead security operations (monitoring, triage, incident response, and post-incident learning) and ensure effective on-call and service queue coverage
Oversee centralized logging, correlation, and alerting; continuously tune detections and automate response with SOAR where appropriate
Drive risk-based vulnerability management oversight in partnership with Infrastructure and Application Development; prioritize remediation based on business impact
Own identity and access management governance, including Conditional Access and privileged access controls
Oversee application security practices and tooling integration (SAST/DAST and secure delivery guardrails) with Application Development and QA teams
Lead vendor and third-party security assessment governance in collaboration with IT Procurement and business owners; track remediation and risk acceptance
Partner with Internal Audit and stakeholders to ensure audit-ready evidence for key security controls (UARs, vendor assessments, IR, exceptions)
Define security architecture patterns and guardrails for on-prem and cloud services; influence design reviews and operational readiness
Manage security tooling strategy and lifecycle planning, maximizing value from platforms and licenses
Coach and develop security staff; establish operating rhythms, metrics, and executive reporting
Perform other duties as assigned
Qualification
Required
10+ years in IT and/or cybersecurity with progressive responsibility, including leading enterprise security initiatives
Demonstrated experience owning an information security program (strategy, governance, operations, metrics, and reporting)
Strong technical fluency across identity, endpoint, network, SaaS, and cloud security controls, plus incident response practices
Holds two or more relevant certifications (e.g., CISSP, CCSP, CISM, SANS GSTRT or equivalent)
Experience with risk assessment, audit support, evidence collection, and communicating risk to technical and executive stakeholders
Experience with third-party/vendor security assessments and risk-based decision-making
Benefits
Flexible and fun company culture
Competitive health care
PPO & HDHP medical plan options, Dental insurance, Vision insurance
Flexible Spending Accounts (FSA)
Free life insurance & optional term life insurance
Competitive vacation package
401(k) with match and Employee Stock Ownership Plans (ESOP)
12 weeks of maternity leave with 100% pay
Flexible holiday schedule – 10 company holidays
Tuition Reimbursement up to $15,000! (Undergraduate & Masters programs)
Employee discounts on all product
Deep partner retail discounts
Company
Trek Bicycle
Trek Bicycle is a bicycle design and manufacturing organization.
5001-10000 employees
H1B Sponsorship
Trek Bicycle has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (4)
2024 (5)
2023 (7)
2022 (11)
2021 (8)
2020 (10)
Funding
Current Stage
Late StageLeadership Team
J
Joe Siefkes
CFO
Recent News
Company data provided by crunchbase