GRC Analyst at Gamestop

This position sits onsite 5 days a week in Grapevine, TX.

What you'll do

• Execute tasks required for the GameStop’s global governance, risk, and compliance programs.

• Review compliance with regulatory requirements and security frameworks

• Review compliance with and approve exceptions to GameStop internal policies and standards

• Assess first- and third-party risk management and the internal risk register

• Executed privacy related operational tasks such as consumer requests

• Deliver internal communications and security training materials, including security and privacy awareness, phishing tests, developer training, and general security practices
   

What you'll bring

• At least 2 years of experience in an IT GRC, cyber security, or information technology related role or an advanced degree in cyber security

• A bachelor’s degree in cyber security, information technology, or other related field or 2 additional years of job-related experience in IT GRC, information security, or audit roles

• An ideal candidate will have awareness of at least one of the following disciplines:

  • Global and US privacy regulations (e.g. GDPR, PIPEDA, COPPA, CCPA and other state laws)

  • IT general controls

  • Internal audit processes

  • Incident response

  • Compliance requirements such as Sarbanes-Oxley or PCI-DSS

  • Security and privacy frameworks such as NIST CSF or the Nymity Privacy Framework

• Ability to communicate effectively with both technical and non-technical partners across the business

• Collaborate with other security team members to drive cross functional initiatives

• Model the behaviors expected of all GameStop leaders including, but not limited to, a drive for results, with a demonstrable bias for action; high levels of emotional intelligence, maturity, and professionalism; giving, receiving and responding to