Infosec Compliance Analyst

Job Description

Your Platform

Your Mission

The candidate will have a solid background within information security to make a strong impact on the company's security program and services. The candidate will have experience with various Information Security concepts including data governance, risk management, metrics, audit, policy and standards development. This individual will work with the Information Security team, Legal, IT, and other business teams to:
• Maintain all Compliance Policy and Procedures and update as necessary
• Maintain and publicize a confidential and easily accessible system for employees to report alleged violations of policies and standards
• Lead and/or support specific audits to investigate adherence with policies, procedures and legal/regulatory requirements to identify and evaluate exposures in addition to correct defective processes and non-compliance
• Review complaints, concerns, or questions relative to compliance issues and provide consultative leadership
• Coordinate response to findings and management of issues tracking
• Respond to compliance questions from employees and customers
• Perform control assessments on our Information Assets, aimed at reducing organizational risk from an Information Security perspective
• Maintain working relationships with business partners to understand business processes, and the impact of implementing security controls in their ability to do business
• Communicate to our business and IT partners the status of current assessments being performed, and document these assessments
• Support the creation and maintenance of an Enterprise Information Security Risk Register
• Produce operational metrics for Compliance Program activities
• In partnership with Governance, examine incoming requests for exceptions to security control requirements and draft recommendations that include requisite mitigation strategies, seek approval, and maintain a registry of the exception and residual risk

Player Profile

Minimum Requirements:
• Bachelor's degree in Computer Science, Information Systems, other related field; or equivalent work experience
• Minimum of five years of combined relevant information security experience in a corporate or consulting environment
• Any one or more of the following preferred
• Certified Information Systems Security Professional (CISSP) from ISC2
• ISACA CGEIT, CRISC or CISA certification
• (any) Global Information Assurance Certification (GIAC) from SANS
• Working knowledge of common information security management frameworks and practices such as
• National Institute of Standards and Technology (NIST)
• CIS Critical Controls
• ISO/IEC 270xx
• Solid understanding of security requirements, frameworks, templates, assessments, process maps, data flows
• Responsible for assisting in compliance oversight and administration within the organization (i.e., plan and coordinate the operational activities within ABK to ensure compliance with applicable regulations impacting the information technology.
• Partner with Risk Management to assist in the development risk management strategies at the organization to help avoid non-compliance, and be responsible for the implementation, management, coordination, and oversight of compliance activities
• This role will report directly to the Compliance Manager
• Partner with Governance Team to develop and maintain policies, standards, procedures, and controls for the general operation of the compliance program and its related activities.
• Reviews and audits the compliance program, for control effectiveness, ensuring prompt reporting in accordance with all applicable policies.
• Develops and manages the strategy and workflow of compliance investigations and issues tracking and reviews.
• Maintains current knowledge of applicable federal and state laws and monitors regulatory changes to ensure organizational adaptation and compliance
• Serves as a company-wide resource and liaison on policies, communications, workflow, and quality improvements initiatives
• Versed in project management procedures and concepts
• Strong written and oral communication skills
• Knowledgeable in a diverse set of technical skills, such as IT infrastructure, operating systems
• Understanding of logging, monitoring, and reporting key performance indicators (KPI) and development of continuous improvement plans
• Excellent oral/written communication, problem solving and analytical skills
• Ability to work independently and as part of a team to achieve desired objectives and project results
• Ability to interface effectively and decisively with all levels of management, departments and outside vendors

We love hearing from anyone who is enthusiastic about changing the games industry. Not sure you meet all qualifications? Let us decide! Research shows that women and members of other under-represented groups tend to not apply to jobs when they think they may not meet every qualification, when, in fact, they often do! We are committed to creating a diverse and inclusive environment and strongly encourage you to apply.

We are committed to working with and providing reasonable assistance to individuals with physical and mental disabilities. If you are a disabled individual requiring an accommodation to apply for an open position, please email your request to accommodationrequests@activisionblizzard.com General employment questions cannot be accepted or processed here. Thank you for your interest.

Subject to eligibility requirements, the Company offers comprehensive benefits including:
• Medical, dental, vision, health savings account or health reimbursement account, healthcare spending accounts, dependent care spending accounts, life and AD&D insurance, disability insurance;
• 401(k) with Company match, tuition reimbursement, charitable donation matching;
• Paid holidays and vacation, paid sick time, floating holidays, compassion and bereavement leaves, parental leave;
• Mental health & wellbeing programs, fitness programs, free and discounted games, and a variety of other voluntary benefit programs like supplemental life & disability, legal service, ID protection, rental insurance, and others;
• If the Company requires that you move geographic locations for the job, then you may also be eligible for relocation assistance.

Eligibility to participate in these benefits may vary for part time and temporary full-time employees and interns with the Company. You can learn more by visiting https://www.benefitsforeveryworld.com/.

In the US, the standard base pay range for this role is $62,000.00 - $114,700.00 Annual. This base pay range is for the US and is not applicable to locations outside of the US Actual amounts will vary depending on experience, performance and location. In addition to a competitive base pay, employees in this role may be eligible for incentive compensation. Incentive compensation is not guaranteed.

Jobcode: Reference SBJ-r1j8ky-3-144-127-26-42 in your application.