Senior GRC Specialist
Electronic Arts
Bucharest, Bucharest, Romania
5 zile în urmă

Remote Work Option : No

Electronic Arts Inc. is a leading global interactive entertainment software company. EA delivers games, content and online services for Internet-connected consoles, personal computers, mobile phones and tablets.

We are EA

And we make games how cool is that? In fact, we entertain millions of people across the globe with the most amazing and immersive interactive software in the industry.

But making games is hard work. That's why we employ the most creative, passionate people in the industry.

Technology Group

We fuel the engine that enables us to make outstanding games

We power the services and platforms that inspire the world to play

We secure our information and services that support fair play and customer trust

We develop technology services that accelerate productivity and improve capabilities across the business

Responsibilities :

  • The Senior IT Governance, Risk and Compliance (GRC) Specialist is responsible for day to day activities across the wide scope of EA's Security Governance, Risk and Compliance programs.
  • The Senior GRC Specialist will work and report to the GRC Security Operations Manager to assist with the Third-Party Security Risk Assessment program.
  • The job encompasses participating in the assessment of security, risks, and control effectiveness for applications, infrastructure, and technology projects.

    You will independently lead and complete high-quality assessments across a diverse set of technologies, by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control standard exceptions, and regularly report to management.

  • The successful candidate will have advanced knowledge of various multi-platform operating systems and databases. As a senior member of the team, you will also be expected to proactively drive process improvements, overcome barriers to success, build professional relationships across EA Security pillars, brief senior leaders, and mentor others.
  • Key responsibilities

    Review and assess technical security controls for third-party vendors primarily around logical network architecture.

  • Advise on, develop, and implement processes around risk identification, assessment, and remediation, including issues management, exception management, vendor risk management policy management, and security incident and vulnerability response.
  • Be a GRC expert for information risk, network security and system security by supporting complex analysis and leading risk management capability improvement.
  • Manage EA's policy exceptions, identify rationale and risks underlying exception requests, weigh effectiveness of compensating controls, and makes recommendations around exception requests.
  • Coordinate and help create and maintain IT policies and network security standards, i.e. network perimeter security standards, remote access, etc.
  • Participate as an expert on governance and project management teams to ensure risk and compliance are integrated to all projects.
  • Coordinate the ITGC design for the in scope applications SOX IT
  • Qualifications :

  • We ask that you have a wide variety of strengths and capabilities, including :
  • Bachelor's degree or equivalent experience.
  • Five (5) years' progressive experience in information technology is required.
  • Strong foundational knowledge in information technology such as hardware, networking, architecture, protocols, files systems and operating systems.
  • Proven ability application and / or database development. Proven ability in system administration. In-depth knowledge of network security architectures (internal / external), firewall technologies, and knowledge of TCP / IP protocol suite (includes secure protocols).

  • Familiarity with IT control policies, security standards and security configuration settings for platforms and network infrastructure.
  • Demonstrated work experience in one or more of the following areas : Information Security, IT Governance, Compliance Management, IT Auditing, Internal Auditing, Security Analysis, Security Project Management, Security Architecture, and implementing best practices, tools, and technology.
  • Ability to work in a team as a contributor to improving security controls on network and platform infrastructure.
  • Exceptional verbal and written communication skills (English).
  • Experience with High Priority, High Activity and Multi tasked Environments
  • Bonus points :

  • Professional certifications in security, privacy risk management and audit areas are highly desirable, such as : CISSP, CRISC, CISM, CISA, CIPP, CIPT, CPA, CAP;
  • Passionate about security.
  • Experience with NIST Cybersecurity Framework
  • Experience with ISO 27001
  • About EA At Electronic Arts, we exist to Inspire the World to Play. We create extraordinary new game experiences for our millions of players everywhere by bringing together talented people that combine creativity, innovation, and passion.

    We know that our strength lies in the diversity of our people. We immerse our employees into an inclusive culture, and provide opportunities for learning and leading that allow them to do the most impactful and rewarding work of their careers.

    We put our people first. We provide comprehensive benefit packages with a focus on health and wellbeing to support your needs and help you balance your career and personal life.

    We provide access to dynamic and collaborative work environments, opportunities to connect and contribute through our Employee Resource Groups, and support for a balanced life with paid time off and maternity and paternity leave, plus free video games and so much more! Electronic Arts is an equal opportunity employer.

    All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law.

    Electronic Arts also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

    Raportați această lucrare

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Email-ul meu
    Făcând clic pe "Continuă", acord nevoo consimțământ de a procesa datele mele și de a-mi trimite alerte prin e-mail, așa cum este detaliat în policyApplicația de confidențialitate a lui neuvoo. Pot să-mi retrag consimțământul sau să mă dezabonez în orice moment.