Director, Cybersecurity

About Lovesac

We are a young-at-heart fast-growing furniture company dedicated to helping people fill their homes with Total Comfort. We do this by designing and innovating furniture solutions that are adaptable washable expandable and delivered right-to-your-door-able allowing our customers to live the life they want to live.

Our Designed for Life mission started with Sacs a seat so much better than your classic beanbag made with repurposed Durafoam and designed to reduce environmental impact while providing unimaginable cloud-like comfort. From there we expanded the possibility for sustainable furniture with Sactionals a customizable modular sectional that can be endlessly rearranged to evolve with you. Our product line has grown a lot since our Sacs days but our goal will always remain the same to create truly adaptable comfortable furniture that can be with you for life.

About our Culture

At Lovesac we strive to be an employer of choice by embodying a culture that encourages team members to think and dream big. We call this Top Ambition. We aim to not only excel within our industry but also make a meaningful impact on the world. Above all else were driven by love (because it matters) and are dedicated to promoting love and happiness in all aspects of our work. Its about success of course but its also about making a positive impact on everyone our business touches.

About the Role

As the Director Cybersecurity you will lead the vision strategy and execution of the organizations cybersecurity program. This executive role is responsible for safeguarding IT systems infrastructure and data against cyber threats ensuring compliance and driving a culture of security across the enterprise. You will collaborate with senior leadership business units and external partners to align cybersecurity initiatives with organizational goals.

This position is remote and will report into Lovesac Corporate HUB based in Stamford must fully reside in the United States at all times during employment and should have the ability to travel as needed.

What Youll Do

Strategy & Leadership

• Develop and execute a comprehensive cybersecurity strategy aligned with business objectives and regulatory requirements.
• Communicate the cybersecurity vision and strategy across the organization; motivate teams to achieve high standards of security and compliance.
• Lead mentor and develop a high-performing cybersecurity team; foster a culture of innovation accountability and continuous learning.
• Provide regular updates to executive leadership and the Board on cybersecurity posture risks and mitigation strategies.

Risk Management & Compliance

• Oversee risk assessments incident response and vulnerability management programs.
• Ensure operational compliance with relevant external regulations (e.g. GDPR CCPA SOX) and internal policies.
• Lead the development and implementation of cybersecurity policies procedures and guidelines.
• Oversee third-party/vendor risk management and supply chain security.
• Ensure alignment with industry standards such as NIST CSF and PCI DSS.

Technical Oversight

• Manage and maintain cybersecurity systems infrastructure and tools to protect against cyberattacks intrusions malware and data breaches.
• Horizon scanning: Identify emerging threats technologies and trends; evaluate their impact and recommend proactive measures.
• Oversee security architecture network security endpoint protection and identity management.
• Lead adoption of cloud security best practices and zero trust principles.
• Drive integration of security into digital transformation initiatives and secure software development lifecycle (SDLC).

Business Partnership & Stakeholder Engagement

• Collaborate with IT business units and executive leadership to integrate cybersecurity into digital transformation initiatives.
• Engage with stakeholders to understand needs communicate risks and drive adoption of security best practices.
• Lead cross-functional teams in incident response crisis management and business continuity planning.
• Serve as executive lead during major security incidents; oversee root cause analysis and lessons learned.

Performance & Financial Management

• Set and monitor performance objectives for the cybersecurity team and vendors; report on key metrics and outcomes.
• Manage departmental budgets resource allocation and vendor relationships.
• Continuously assess and improve organizational capability readiness and maturity in cybersecurity.
• Establish and track KPIs KRIs and maturity models to measure program effectiveness and ROI on security investments.

Who you Are:

Core Values: Top Ambition We All Win Together Conscious Operations Do Less and Do Best Love Matters
Table-Stake Values: Willing to Sweep Floors Grit Positive Self-Aware Self-Starting Insatiable Learners Transparency Customer-Centric

Our Lovesac Core Competencies: Builds Customer Centricity Drives Remark-able Results Collaborates Effectively Makes Good Decisions Demonstrates Self-Awareness

Requirements

• Strategic vision and leadership in cybersecurity.
• Advanced knowledge of information security frameworks risk management and regulatory compliance.
• Strong analytical problem-solving and decision-making skills.
• Excellent verbal and written communication; ability to present complex concepts to diverse audiences.
• Adaptive mindset; ability to thrive in dynamic fast-paced environments.
• Stakeholder engagement and cross-functional collaboration.
• Experience with policy development gap analysis and change management.
• Masters degree in Cybersecurity Information Technology or related field preferred; or equivalent experience.
• 15 years of progressive experience in cybersecurity including 10 years in leadership roles.
• Proven track record of developing and executing large-scale cybersecurity strategies.
• Experience managing teams budgets and complex projects.
• Strong understanding of IT operations digital transformation and business processes.
• Experience with cloud platforms (Azure AWS) and SaaS security.
• Knowledge of zero trust DevSecOps and secure SDLC.
• Board-level communication skills and experience influencing senior leadership.
• Experience building security awareness programs and driving a security-first culture.
• Exemplify each of our Lovesac values at all times be results driven and utilize knowledge to meet or exceed key performance indicators (KPIs) goals and deadlines.
• Must be able to travel using various forms of transportation as required by the Company in its sole discretion for mandatory meetings and conferences held either at our offices or offsite (i.e. quarterly team connection weeks companywide meetings and events vendor visits).
• Must comply with all policies and procedures outlined in the Lovesac Employee Handbook and work collaboratively with fellow employees treating all clients both internal and external with dignity and respect at all times.

Preferred Attributes:

• Experience in furniture home goods lifestyle or other high-consideration consumer categories.
• Certifications such as CISSP CISM or equivalent.
• Demonstrated ability to influence senior leadership and drive organizational change.

Full Time Benefits*

• Financial Benefits: Annual Bonus Program Annual and Inaugural Grant Equity Awards 401K Matching Contribution Financial Wellness Tools.
• Health and Wellness Benefits: Medical Dental Vision Health Savings and Flexible Spending Accounts Paid Parental Leave Life/AD&D Short Term and Long-Term Disability Critical Illness and Accident Insurance Employee Assistance Program.
• Paid Time Off: Up to 160 hours of paid time off within our fiscal calendar year prorated from date of hire 8 paid company recognized holidays.
• Pet Insurance and generous Associate Discounts.

*Eligibility and terms for all benefits listed are as outlined in Lovesacs policy and plan documents.

Associate pay will vary based on factors such as qualifications experience skill level and competencies.

Lovesac is an Equal Opportunity Employer and considers all applicants for employment without regard to race color religious creed ancestry national origin ethnicity religion sex sexual orientation gender (including gender-related identity gender nonconformity) pregnancy age national origin marital status physical or mental disability military status genetic information or any other characteristic protected by applicable law.

Non-New York City Applicants Only: To the extent permitted by law conditional offers of employment will be contingent upon successful completion of a background check including but not limited to education verification employment history verification reference checks criminal history and motor vehicle history (if vehicle required). All qualified applicants with criminal histories will be considered in accordance with applicable local state and federal law.

Lovesac participates in E-Verify as required by law. Immigration sponsorship is not available for this role.

Lovesac is committed to the principles of equal employment opportunity and providing reasonable accommodations to candidates with disabilities. If you need an accommodation during the application process please reach out to us at: