Senior GRC Specialist

Location: Bucharest, Bucharest, Romania

Apply

Requisition Number: 158422

Position Title: Security Analyst

External Description:

We are EA

And we make games – how cool is that? In fact, we entertain millions of people across the globe with the most amazing and immersive interactive software in the industry. But making games is also fun. That’s why we employ the most creative, passionate people in the industry.

Technology Group

We fuel the engine that enables us to make excellent games

We power the services and platforms that inspire the world to play

We secure our information and services that support fair play and customer trust

We develop technology services that accelerate productivity and improve capabilities across the business

Sr GRC Specialist

  • The Senior Governance, Risk and Compliance (GRC) Specialist manages daily activities across the wide scope of EA’s Security Governance, Risk and Compliance programs.
  • The Senior GRC Specialist report to the GRC Security Manager to assist with the Third-Party Security Risk Assessment, SOX ITGC, Policy Exception programs. The job encompasses participating in the assessment of security, risks, and control effectiveness for applications, infrastructure, and technology projects. You will lead and complete high-quality assessments across a diverse set of technologies, by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control standard exceptions, and report to management.
  • You will have knowledge of multiple multi-platform operating systems and databases. As a senior member of the team, you will also guide process improvements, overcome barriers to success, build professional relationships across EA Security pillars, brief senior leaders, and inspire others.

Key responsibilities

  • Review security controls for third-party vendors.
  • Advise on and develop processes around risk identification, assessment, and remediation, including issues management, exception management, vendor risk management policy management, and security incident and vulnerability response.
  • Be a GRC expert for information risk, asset controls and system security by supporting complex analysis and leading risk management capability improvement.
  • Manage EA’s policy exceptions, identify rationale and risks underlying exception requests, weighs effectiveness of compensating controls, and makes recommendations around exception requests.
  • Help create IT policies and network security standards, i.e. network perimeter security standards, remote access.
  • Participate as an expert on governance and project management teams to ensure risk and compliance are integrated to all projects.
  • Coordinate the ITGC design for the in scope applications – SOX IT.

Experience and skills:

We ask that you have several strengths and capabilities, including:

  • Five (5) years' progressive experience in Information Technology or IT Audit is required.
  • Knowledge in information technology such as hardware, networking, architecture, protocols, files systems and operating systems.
  • Advanced knowledge of general IT controls, application controls, privacy principles for protecting sensitive data (e.g., personal identifiable information and intellectual property, and latest technologies (e.g., cloud computing, source code repositories, software development tools, etc.).
  • Demonstrated work experience in one or more of the following areas: Information Security, IT Governance, Compliance Management, IT Auditing, Internal Auditing, Security Analysis, Security Project Management, Security Architecture, and implementing best practices and technology.
  • Professional proficiency (English).
  • Experience with High Priority, High Activity and Multi tasked Environments

Bonus points:

  • Professional certifications in security, privacy risk management and audit areas are highly desirable, such as: CISSP, CRISC, CISM, CISA, CIPP, CIPT, CPA, and CAP;
  • Passionate about security.
  • Experience with NIST Cybersecurity Framework
  • Experience with ISO 27001

EA is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. EA also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

City:

State:

Community / Marketing Title: Senior GRC Specialist

Company Profile:

Electronic Arts Inc. is a leading global interactive entertainment software company. EA delivers games, content and online services for Internet-connected consoles, personal computers, mobile phones and tablets.

EEOText: EA is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. EA also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

Date Opened: 2019-11-12 16:05:05.583

EEO Employer Verbiage:

EA is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status or veteran status. We will also consider for employment qualified applicants with criminal records in accordance with applicable law.

Click here to view our Data Privacy Policy.

google-site-verification: google7f7a22bb8fdf2c3d.html