Design Your Future at PVH

Senior Manager, Information Security Governance, Risk and Compliance – PVH Corp.

About Us:

We are brand builders who focus our passion and creativity to build Calvin Klein and TOMMY HILFIGER into the most desirable lifestyle brands in the world and at the same time position PVH as one of the best-performing brand groups in our sector. Guided by our values and enabled by our scale and global reach, we are driving fashion forward for good, as one team with one vision and one plan. That’s the Power of Us, that’s the Power of PVH+.

One of PVH’s greatest strengths is our people. Our collective desire is to create a workplace environment where every individual is valued, and every voice is heard, and we are committed to fostering an inclusive and diverse community of associates with a strong sense of belonging. Learn more about our commitments to Inclusion & Diversity here (https://www.pvh.com/company/inclusion-diversity) .

About the Role:

The Senior Manager, Information Security Governance, Risk and Compliance position focuses on driving governance, oversight, and decision-making related to business processes from a security risk perspective. In this role, you will collaborate closely with business and IT executives across our brands to assess security risks and play a significant leadership role in developing, enabling, and advancing Information Security Governance, Risk & Compliance (GRC) processes and capabilities across PVH brands and business units. You will have the opportunity to lead and influence various levels within the organization while maintaining a balance between protecting the organization and supporting business operations.

What You’ll Do:

• Leadership and Influence : Take on a leadership role to promote security best practices for business initiatives and shape PVH's business strategies by offering guidance on security risks in emerging digital areas of focus.

• Advisory Role : Offer expert advice and assistance to business units on a regular basis, facilitating collaboration between the Information Security Group and PVH brands, and driving forward-thinking initiatives in emerging digital risk areas, including information security and privacy.

• Building Relationships : Develop and maintain connections with important business partners to consistently supervise security risk areas.

• Governance and Prioritization : Support the governance and prioritization of security requirements across business units related to Digital Transformation projects.

• Collaboration : Work closely with Legal, Privacy, and IT teams to foster security initiatives, effective strategies, and overall awareness of security within the organization.

• Security Risk Methodology : Define and detail the ongoing development of the Security Risk methodology and toolkit to enhance service delivery and increase business adoption.

• Information Security Strategy : Support the development of the information security strategy based on business priorities, digital transformation projects, and upcoming digital trends.

• Risk Register Management : Develop and maintain a risk register to report on risk indicators across all forms of management.

• Vendor Risk Management : Support a team to assess vendor risk across the region, including the facilitation of strategic vendor meetings and providing guidance around potential security risk impacts to business partners.

What You’ll Bring:

Experience :

• 10 years of experience in a Security Governance, Risk, and Compliance role with at least 2+ years dedicated to risk assessments and metrics. Experience in implementing and maintaining a cybersecurity risk management system, business impact analysis (BIA), business continuity planning (BCP), and disaster recovery planning (DRP) is highly desirable.

Education: A college degree or equivalent experience is highly preferred, preferably in Cybersecurity, Information Systems or related fields of study. Post-graduate qualifications or relevant certifications are considered a plus.

Skills :

• Experience building and maintaining risk management frameworks and GRC tools.

• Knowledge of business impact analysis and communicating risk impact to executives.

• Experience in vendor risk management, including identification, assessment, remediation, and treatment, is a plus.

• Effective communication, presentation, and influencing skills.

• Strong problem-solving skills and a professional demeanor.

• Proven capability to work both autonomously and collaboratively, successfully communicating with colleagues from various groups, including business and security teams.

• Proven commitment to maintaining confidentiality and safeguarding data.

• Candidates with experience in Information governance and data protection experience is a plus, leveraging industry-standard platforms and solutions

• Other: Knowledge or involvement with global data privacy regulations (GDPR, CCPA) is beneficial. The candidate will be required to submit to a background check (pre-employment, criminal, credit history, and references) and be critical to PVH confidential and proprietary information.

#LI-BC10

#LI-Hybrid

PVH Corp. or its subsidiary ("PVH") is an equal opportunity employer and considers all applicants for employment on the basis of their individual capabilities and qualifications, consistent with applicable law and without regard to race, color, sex, gender identity or expression, age, religion, creed, national origin, citizenship status, sexual orientation, genetic information, physical or mental disability, military status or any other characteristic protected under federal, state or local law. In addition to complying with all applicable laws, PVH also has a strong corporate commitment to inclusion, diversity and to ensuring that all current and future PVH associates are compensated solely on job-related factors such as skill, ability, educational background, work quality, experience and potential. To achieve these goals, across the United States and its territories, PVH prohibits any PVH employee, agent or representative from requesting or otherwise considering any job applicant’s current or prior wages, salary or other compensation information in connection with the hiring process. Accordingly, applicants are asked not to disclose this salary history information to PVH

DIVERSITY & EQUAL OPPORTUNITY We are committed to recruiting, training and providing career advancement to all associates regardless of gender, race, religion, age, disability, sexual orientation, nationality, or social or ethnic origin. Diversity in the workplace is encouraged. Bigotry, racism and any form of harassment or discrimination is not tolerated.