GRC - Application Risk Analyst
Brak informacji o wynagrodzeniu
SeniorFull-time·B2B
#382153·Dodano 3 dni temu·0
Źródło: AristocratTech Stack / Keywords
CybersecurityAgileSecurityNIST CSF
Firma i stanowisko
Aristocrat is a world leader in gaming content and technology, known as a top-tier publisher of free-to-play mobile games. The company focuses on delivering great performance for B2B customers and promotes responsible gameplay, company governance, employee wellbeing, and sustainability.
Wymagania
- Self-motivated and adaptable to an ever-changing cybersecurity environment.
- Excellent collaboration skills, eager to work as part of a cohesive, distributed team.
- Outstanding analytical and critical thinking skills.
- Comprehensive communication skills, including effective listening, data gathering, and idea articulation.
- 5+ years of experience in information security with a relevant degree.
- IT Audit, Internal Audit, and/or cyber advisory experience are a plus.
- Familiarity with cybersecurity industry standards and frameworks such as NIST CSF, NIST 800-53, ISO 27001, and PCI DSS.
- Preferred certifications: CISSP, CCSP, CISM, CISA, CompTIA Security+, GIAC.
Obowiązki
- Conduct technical application and third-party risk assessments to identify cyber vulnerabilities and operational and regulatory threats.
- Collaborate with agile Product teams and GIS to implement mitigating technical controls aligned with GIS policies and regulatory standards.
- Prepare detailed assessment reports for Business Unit owners, highlighting key risks and policy exceptions through threat modeling.
- Partner with GIS and Business Units to develop and implement risk exception plans and strategies.
- Support the development of automated quantitative and qualitative risk analyses and reporting processes.
- Liaise with internal and external auditors to provide documentation and evidence for compliance with international security standards (SOC-2, ISO 27001, PCI DSS, NIST CSF 2.0).
- Provide mentorship on changes in product security and regulatory landscapes, updating Aristocrat’s Security Policies, Standards, and Technical Security Requirements as needed.
- Support the delivery of the wider GIS Security program in line with Aristocrat’s strategy and important metrics.
Benefity
- Robust benefits package
- Global career opportunities
Premie
Inne informacje
At this time, we are unable to sponsor work visas for this position. Candidates must be authorized to work in the job posting location for this position on a full-time basis without the need for current or future visa sponsorship.
Aristocrat
20 aktywnych ofert