Sr Risk Analyst

About The Position

Requirements

• 8+ years supporting GRC programs in Information Security or Information Technology
• Experiencing leading PCI, SOX, and Audit (internal and external) assessments
• Experiencing supporting council and oversight committees
• Experience with cloud based platforms such as GCP and AWS
• Experience with IAM best practices and administration
• A strong fundamental understanding of security best practices and frameworks such as PCI, NIST, and ISO
• Experience with control testing and evidence validation
• Experience performing risk assessments
• Experience with vendor assessments and management
• Experience working with and optimizing GRC tools
• The ability to learn new technologies and concepts quickly and apply that knowledge effectively
• Working knowledge of AI technologies
• The ability to navigate complex organizations
• Data driven and have a strong attention to detail
• The ability to communicate complex issues to a wide audience, from technical staff to management
• Demonstrated experience maintaining effective working relationships across all levels of an organization and with a variety of external constituents
• Approach work with a positive and collaborative attitude
• Curious and want to grow in a dynamic, security-focused environment

Nice To Haves

• Security certification(s)
• Knowledge of data privacy laws and regulations, including GDPR, CCPA
• Experience with cloud environments such as GCP or AWS
• A BS in Computer Science or a related or have equivalent experience

Responsibilities

• Working with a focus to level-up Information Security GRC at Crunchyroll
• Partnering with teams across the company to implement and govern security standards to optimize compliance adherence
• Supporting and improving processes related to the Vulnerability Management Program
• Investigating and assessing control effectiveness and maturation
• Monitoring and facilitating governance activities
• Supporting the GRC and Privacy Programs as needed
• Staying up to date on regulatory trends
• Supporting our team and improving internal processes
• Creating reports and documentation to support the Information Security GRC program
• Approaching each day with a focus on fostering an environment encouraging growth personally, professionally, and for those around you

Benefits

• Receive a great compensation package including salary plus performance bonus earning potential, paid annually.
• Flexible time off policies allowing you to take the time you need to be your whole self.
• Generous medical, dental, vision, STD, LTD, and life insurance
• Health Saving Account HSA program
• Health care and dependent care FSA
• 401(k) plan, with employer match
• Employer paid commuter benefit
• Support program for new parents
• Pet insurance and some of our offices are pet friendly!