Crunchyroll
Risk Analyst
Crunchyroll, Dallas, Texas, United States, 75215
About Crunchyroll
WE HELP EVERYONE BELONG. IT'S OUR PURPOSE.
Founded by fans, Crunchyroll delivers the art and culture of anime to a passionate community. We super-serve over 100 million anime and manga fans across 200+ countries and territories, and help them connect with the stories and characters they crave. Whether that experience is online or in-person, streaming video, theatrical, games, merchandise, events and more, it's powered by the anime content we all love.
Join our team, and help us shape the future of anime!
Who We Are
We're a cast of characters working to shine a spotlight on anime. Crunchyroll is an international business focused on creating both online and offline experiences for fans through content (licensed, co-produced, originals, distribution), merchandise, events, gaming, news, and more. Visit our About Us pages for more information about our collection of brands.About the Role
Our team is looking for someone with the passion and skills to support the evolution of our Governance, Risk, and Compliance (GRC) team. The main focus will be on maturing the GRC program activities including defining and testing controls, performing internal and vendor risk assessments, managing issues, maintaining the risk register, maturing Policy and Standards, and coordinating internal and external assessments and audits. This role will be responsible for ensuring we are executing the GRC program, maintaining the appropriate risk profile in support of the employee needs, supporting long-range strategy, cross-functional projects, and initiatives across Crunchyroll globally. This role will require a strong partnership across SPE and Crunchyroll's teams, including Legal, Engineering, IT, People, Workplace Experience, Trust & Safety, Procurement as well as third party contractors, and suppliers.This role is located in our Dallas office and will report into our Senior Manager of Governance, Risk and Compliance.About youYou have 5+ years of experience in Governance, Risk, and Compliance operational experienceExperience with IT / Infosec controls and control frameworks (NIST-800-53 / CSF, PCI DSS, ISO 27001 / 27002, etc)Experience performing Risk AssessmentsExperience supporting / performing IT and Infosec AuditsExperience supporting PCI Qualification AssessmentsYou have experience with GRC toolsYou have experience with IAM best practices and administrationYou have a strong fundamental understanding of security best practicesYou have demonstrated experience maintaining effective working relationships across all levels of an organization and with a variety of external constituentsPlusesYou have risk or security certification(s)Operational knowledge of IT Service Delivery processes including Incident Management / Response, Change Management, Security Operations, etcYou have knowledge of data privacy laws and regulations, including GDPR, CCPAYou have experience with cloud environments such as GCP or AWSA Day in the LifeWorking with a focus to level-up GRC programs at CrunchyrollPartnering with teams across the company to manage inventoryPartner with teams to onboard new vendorsPerform annual Vendor Risk AssessmentsPartner with teams to perform periodic control validation and evidence gatheringPerform Targeted Risk AssessmentsManage issue identification and tracking within the organizationHelp socialize Policies and StandardsMaintain Security Awareness ProgramImplementing new GRC tools and align target processesStay up-to-date with industry best practices and regulatory changes related to information security and compliance.Creating reports and documentation to support the GRC programApproaching each day with a focus on fostering an environment encouraging growth personally, professionally, and for those around you#LifeAtCrunchyroll #LI-Hybrid
About our Values
We want to be everything for someone rather than something for everyone and we do this by living and modeling our values in all that we do. We value
Courage. We believe that when we overcome fear, we enable our best selves.Curiosity. We are curious, which is the gateway to empathy, inclusion, and understanding.Service. We serve our community with humility, enabling joy and belonging for others.Kaizen. We have a growth mindset committed to constant forward progress.Our commitment to diversity and inclusion
Our mission of helping people belong reflects our commitment to diversity & inclusion. It's just the way we do business.
We are an equal opportunity employer and value diversity at Crunchyroll. Pursuant to applicable law, we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Crunchyroll, LLC is an independently operated joint venture between US-based Sony Pictures Entertainment, and Japan's Aniplex, a subsidiary of Sony Music Entertainment (Japan) Inc., both subsidiaries of Tokyo-based Sony Group Corporation.
Questions about Crunchyroll's hiring process? Please check out our Hiring FAQs: https://help.crunchyroll.com/hc/en-us/articles/360040471712-Crunchyroll-Hiring-FAQs
Please beware of recent scams to online job seekers. Those applying to our job openings will only be contacted directly from @crunchyroll.com email account.
WE HELP EVERYONE BELONG. IT'S OUR PURPOSE.
Founded by fans, Crunchyroll delivers the art and culture of anime to a passionate community. We super-serve over 100 million anime and manga fans across 200+ countries and territories, and help them connect with the stories and characters they crave. Whether that experience is online or in-person, streaming video, theatrical, games, merchandise, events and more, it's powered by the anime content we all love.
Join our team, and help us shape the future of anime!
Who We Are
We're a cast of characters working to shine a spotlight on anime. Crunchyroll is an international business focused on creating both online and offline experiences for fans through content (licensed, co-produced, originals, distribution), merchandise, events, gaming, news, and more. Visit our About Us pages for more information about our collection of brands.About the Role
Our team is looking for someone with the passion and skills to support the evolution of our Governance, Risk, and Compliance (GRC) team. The main focus will be on maturing the GRC program activities including defining and testing controls, performing internal and vendor risk assessments, managing issues, maintaining the risk register, maturing Policy and Standards, and coordinating internal and external assessments and audits. This role will be responsible for ensuring we are executing the GRC program, maintaining the appropriate risk profile in support of the employee needs, supporting long-range strategy, cross-functional projects, and initiatives across Crunchyroll globally. This role will require a strong partnership across SPE and Crunchyroll's teams, including Legal, Engineering, IT, People, Workplace Experience, Trust & Safety, Procurement as well as third party contractors, and suppliers.This role is located in our Dallas office and will report into our Senior Manager of Governance, Risk and Compliance.About youYou have 5+ years of experience in Governance, Risk, and Compliance operational experienceExperience with IT / Infosec controls and control frameworks (NIST-800-53 / CSF, PCI DSS, ISO 27001 / 27002, etc)Experience performing Risk AssessmentsExperience supporting / performing IT and Infosec AuditsExperience supporting PCI Qualification AssessmentsYou have experience with GRC toolsYou have experience with IAM best practices and administrationYou have a strong fundamental understanding of security best practicesYou have demonstrated experience maintaining effective working relationships across all levels of an organization and with a variety of external constituentsPlusesYou have risk or security certification(s)Operational knowledge of IT Service Delivery processes including Incident Management / Response, Change Management, Security Operations, etcYou have knowledge of data privacy laws and regulations, including GDPR, CCPAYou have experience with cloud environments such as GCP or AWSA Day in the LifeWorking with a focus to level-up GRC programs at CrunchyrollPartnering with teams across the company to manage inventoryPartner with teams to onboard new vendorsPerform annual Vendor Risk AssessmentsPartner with teams to perform periodic control validation and evidence gatheringPerform Targeted Risk AssessmentsManage issue identification and tracking within the organizationHelp socialize Policies and StandardsMaintain Security Awareness ProgramImplementing new GRC tools and align target processesStay up-to-date with industry best practices and regulatory changes related to information security and compliance.Creating reports and documentation to support the GRC programApproaching each day with a focus on fostering an environment encouraging growth personally, professionally, and for those around you#LifeAtCrunchyroll #LI-Hybrid
About our Values
We want to be everything for someone rather than something for everyone and we do this by living and modeling our values in all that we do. We value
Courage. We believe that when we overcome fear, we enable our best selves.Curiosity. We are curious, which is the gateway to empathy, inclusion, and understanding.Service. We serve our community with humility, enabling joy and belonging for others.Kaizen. We have a growth mindset committed to constant forward progress.Our commitment to diversity and inclusion
Our mission of helping people belong reflects our commitment to diversity & inclusion. It's just the way we do business.
We are an equal opportunity employer and value diversity at Crunchyroll. Pursuant to applicable law, we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Crunchyroll, LLC is an independently operated joint venture between US-based Sony Pictures Entertainment, and Japan's Aniplex, a subsidiary of Sony Music Entertainment (Japan) Inc., both subsidiaries of Tokyo-based Sony Group Corporation.
Questions about Crunchyroll's hiring process? Please check out our Hiring FAQs: https://help.crunchyroll.com/hc/en-us/articles/360040471712-Crunchyroll-Hiring-FAQs
Please beware of recent scams to online job seekers. Those applying to our job openings will only be contacted directly from @crunchyroll.com email account.