filler

GRC Specialist

Location: Bucharest, Romania

Notice

This position is no longer open.

Requisition Number: 167255

Position Title: Security Operations Specialist

External Description:

Governance, Risk and Compliance (GRC) Specialist

We are EA

And we make games – how cool is that? In fact, we entertain millions of people across the globe with the most amazing and immersive interactive software in the industry. But making games is hard work. That's why we employ the most creative, passionate people in the industry.

Technology Group:

  • We fuel the engine that enables us to make outstanding games
  • We power the services and platforms that inspire the world to play
  • We secure our information and services that support fair play and customer trust
  • We develop technology services that accelerate productivity and improve capabilities across the business

Responsibilities:

  • The Governance, Risk, and Compliance (GRC) Specialist is responsible for day-to-day activities across the wide scope of EA's Security Governance, Risk, and Compliance programs.
  • The GRC Specialist will work and report to the GRC Security Operations Manager to assist with the Third-Party Security Risk Assessment program. The job encompasses participating in the assessment of security, risks, and control effectiveness for applications, infrastructure, and technology projects. You will independently lead and complete high-quality assessments across a diverse set of technologies, by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control standard exceptions, and regularly report to management.
  • The successful candidate will have knowledge of various multi-platform operating systems and databases. As a member of the team, you will also be expected to proactively drive process improvements, overcome barriers to success, build professional relationships across EA Security pillars, brief senior leaders, and help others.

Key Responsibilities:

  • Review and assess technical security controls for third-party vendors primarily around logical network architecture.
  • Advise on, develop, and implement processes around risk identification, assessment, and remediation, including issues management, exception management, vendor risk management policy management, and security incident and vulnerability response.
  • Be a GRC expert for information risk, network security, and system security by supporting complex analysis and leading risk management capability improvement.
  • Monitor EA's policy exceptions, identify rationale and risks underlying exception requests, weigh the effectiveness of compensating controls, and makes recommendations around exception requests.
  • Coordinate and help create and maintain IT policies and network security standards, i.e. network perimeter security standards, remote access, etc.
  • Participate as an expert on governance and project management teams to ensure risk and compliance are integrated to all projects.
  • Coordinate the ITGC design for the in scope applications – SOX IT

Qualifications:

  • We ask that you have a wide variety of strengths and capabilities, including:
  • Bachelor's degree or equivalent experience.
  • Three (3) years of progressive experience in information technology is required.
  • Knowledge in information technology such as hardware, networking, architecture, protocols, files systems and operating systems.
  • Familiarity with IT control policies, security standards and security configuration settings for platforms and network infrastructure.
  • Demonstrated work experience in one or more of the following areas: Information Security, IT Governance, Compliance Management, IT Auditing, Internal Auditing, Security Analysis, Security Project Management, Security Architecture, and implementing best practices, tools, and technology.
  • Ability to work in a team as a contributor to improving security controls on network and platform infrastructure.
  • Exceptional verbal and written communication skills (English).
  • Experience with High Priority, High Activity, and Multi tasked Environments

Bonus points:

  • Professional certifications in security, privacy risk management, and audit areas are highly desirable, such as CISSP, CRISC, CISM, CISA, CIPP, CIPT, CPA, CAP;
  • Passionate about security.
  • Experience with NIST Cybersecurity Framework
  • Experience with ISO 27001

City:

State:

Community / Marketing Title: GRC Specialist

Company Profile:

Electronic Arts Inc. 是全球领先的互动娱乐软件公司。 EA 提供适用于联网主机、个人电脑、手机和平板电脑的游戏、内容和在线服务。

EEOText:

About Electronic Arts

Everything we do is designed to inspire the world to play. Through our cutting-edge games, innovative services, and powerful technologies, we bring worlds with infinite possibilities to millions of players and fans around the globe.

We’re looking for collaborative and inclusive people with diverse perspectives who will enrich our culture and challenge us. We take a holistic approach with our benefits program, focusing on physical, emotional, financial, career, and community wellness to support our people through every chapter of life. We provide comprehensive benefit packages and support for a balanced life with paid time off and new parent leave, plus free games and so much more. Our goal is to provide a safe and respectful workplace that empowers you to thrive in both work and life.

Electronic Arts is an equal opportunity employer. All employment decisions are made without regard to race, color, national origin, ancestry, sex, gender, gender identity or expression, sexual orientation, age, genetic information, religion, disability, medical condition, pregnancy, marital status, family status, veteran status, or any other characteristic protected by law. We will also consider employment qualified applicants with criminal records in accordance with applicable law. EA also makes workplace accommodations for qualified individuals with disabilities as required by applicable law.

Days Open: 66

Can this position be remote?: 0

EEO Employer Verbiage:

EA 是一个奉行机会均等的雇主。 所有招聘决定均不考虑种族、肤色、国籍、血统、生理性别、社会性别、性别认同或表达、性向、年龄、遗传信息、宗教信仰、残障状况、医疗状况、怀孕状况、婚姻状况、家庭状况或退伍军人身份等因素的影响。 EA 还会遵照相关法律,为符合条件的残障个体改善工作环境。

Click here to view our Data Privacy Policy.

google-site-verification: google7f7a22bb8fdf2c3d.html