Senior GRC Program Manager

Requisition Number: 152821

Position Title: Senior Security Specialist

External Description:

The Challenge Ahead

Protect our information security landscape and advise teams on the best approach to meeting regulatory, 3rd party and internal security requirements.  You will utilize your outstanding organizational, communications, analytical and problem solving skills in delivering results through collaboration with our EA Security Leadership team, IT and EADP teams, and Game Studio teams.  This position reports to the Director of Governance, Risk and Compliance in the EA Security group. 

What this Senior GRC Program Manager will do at EA:

You will be a key member of the EA Security team which provides security governance and execution for EA’s business worldwide.

The mission of this role will be to work closely with the Governance and Risk Compliance (GRC) team and key business units such as Legal, HR, IT, Global Audit, etc. This role will serve as a program leader for a number of risk management and compliance programs including setting security policy and standards requirements for the entire organization, driving remediation activities to address identified security risks and issues, and expanding our risk modeling capabilities for reporting to our internal and external stakeholders.

Primary Responsibilities

• Lead our EA Security Policies and Standards program, providing reasonable security for employees, contractors and players worldwide
• Build a scalable compliance and risk management program that will intake compliance observations and manage remediation activities through completion
• Advance risk modeling and quantification concepts to provide more transparency to our internal and external stakeholders
• Develop creative ways to measure risk exposure and evaluate our service performance across your program scope
• Partner with external teams to drive awareness and accountability for security requirements within their programs, projects and services

Skills, Knowledge, and Abilities

• Bachelor's degree in Information Systems, or other technical major.
• IT and business experience, leading risk and compliance assessments or audits in an IT, Audit or compliance role.
• Deep understanding of one or more industry frameworks and/or compliance regulations: i.e., NIST Cybersecurity Framework, ISO 27001, International Privacy requirements (EU Privacy / GDPR, PAC Rim including Safe Harbor)
• Proven experience managing audit and compliance processes and procedures, including project planning, control testing and remediation activities.
• Solid understanding of assessing and designing internal controls for information security in an enterprise-level environment.
• Experience in driving security requirements through contractual language and supporting partners with understanding risks related to such contractual clauses.
• Excellent communication skills (both written and oral).
• Demonstrated ability to understand IT and business challenges and comfortable with tackling a risk-based approach to complex compliance issues.
• In-depth knowledge of information security audit, risk management and policy compliance.
• Substantial exposure to cloud security, data processing, hardware platforms, enterprise software applications, and outsourced systems.
• Must be able to learn, understand and apply new technologies.

Additional Requirements

• Must be willing to travel to other EA locations as necessary.
• Strong overall communications, presentation, facilitation and diplomacy skills
• Problem solving skills, ability to prioritize and work independently
• Excellent interpersonal and conflict resolution skills
• Demonstrated ability to work effectively in a fast-paced, high volume, deadline-driven environment
• Ability to balance multiple demands and work both independently and as part of a team
• Professionalism in dealing with all levels of management, staff and vendors
• Comfortable with ambiguous problems and independently developing strategy and solutions
• Strong organizational skills
• Big 4 consulting or relevant experience highly desired

 

City:

State:

Community / Marketing Title: Senior GRC Program Manager

Company Profile:

Electronic Arts Inc. 是全球领先的互动娱乐软件公司。 EA 提供适用于联网主机、个人电脑、手机和平板电脑的游戏、内容和在线服务。

EEOText: EA 是一个奉行机会均等的雇主。 所有招聘决定均不考虑种族、肤色、国籍、血统、生理性别、社会性别、性别认同或表达、性向、年龄、遗传信息、宗教信仰、残障状况、医疗状况、怀孕状况、婚姻状况、家庭状况、退伍军人身份或其他任何受法律保护的特征等因素的影响。 我们也会遵照相关法律，考虑雇佣带犯罪记录的合格申请者。 EA 还会遵照相关法律，为符合条件的残障个体改善工作环境。

Days Open: 100

Can this position be remote?:

EEO Employer Verbiage:

EA 是一个奉行机会均等的雇主。 所有招聘决定均不考虑种族、肤色、国籍、血统、生理性别、社会性别、性别认同或表达、性向、年龄、遗传信息、宗教信仰、残障状况、医疗状况、怀孕状况、婚姻状况、家庭状况或退伍军人身份等因素的影响。 EA 还会遵照相关法律，为符合条件的残障个体改善工作环境。