This job might no longer be available.
Security and Privacy Compliance Advisor
2 years ago
The Security and Privacy Compliance Advisor contributes to the success of our security initiatives. This role will assist in the development of security policy and process, as well as drive audit and compliance efforts. They will also drive our efforts to maintain privacy and data management compliance needs, e.g., General Data Protection Regulation (GDPR), Children’s Online Privacy Protection Act (COPPA), and Payment Card Industry (PCI) standards.
What You’ll Do
- Ensure compliance with industry and regulatory requirements, such as PCI, GDPR, COPPA, etc. in partnership with internal stakeholders and external assessors/auditors.
- Evaluate effectiveness of internal security control framework and recommend adjustments as business needs change.
- Manage Information Security’s policy development processes to identify, document, communicate and review policies and standards.
- Assist Legal, Technology, and relevant business units with all required privacy and security compliance expectations.
- Establish processes to integrate and validate adherence to privacy and security compliance requirements in business products and initiatives.
- Provide security expertise and consulting to partner teams in Tech and across the enterprise.
- Alongside the Information Security team, responsible for responding to and remediating security events / incidents.
- Collaborate with the Information Security team to ensure successful completion of our roadmaps and initiatives.
- Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, and Test.
- Work leveraging an agile methodology by making iterative progress toward achieving individual, team, and organizational objectives.
What You’ll Bring
- 3 - 4 years of experience in Information Security
- Experience in program or project management
- Experience with risk and security frameworks, such as International Organization for Standards (ISO), National Institute of Standards and Technology (NIST), Critical Security Controls (CSC)
- Knowledge of compliance and regulatory requirements, such as PCI, COPPA, CCPA, GDPR
- Knowledge of current security and privacy trends and technologies
- Experience with governance, risk and compliance (GRC) processes and solutions.
- Strong background in security controls, auditing, network and system security.
- Ability to express complex technical concepts in business terms.
- BS Degree in Computer Science or Computer Engineering and/or equivalent working experience.
- Information Security certifications (CISSP, SANS GIAC, CISA, etc.) a plus
- Offensive Security/Pen test certifications (OSCP, etc.) a plus
How You Will Be Successful
- Excellence (Quality): Achieving a standard of excellence with our work processes and outcomes
- Customer focus: Striving for high customer satisfaction, going out of our way to be helpful and pleasant
- Communication: Balancing listening and talking, speaking and writing clearly and accurately, influencing others, keeping others informed
- Collaborative: Being helpful, respectful, approachable and team oriented, building strong working relationships and a positive work environment
- Brand Ambassador: Understands the essence of Pokémon and core pillars, demonstrates friendship, community and good sportsmanship
- Innovative: Generates unique ideas that lead to solutions, champions change and takes initiative thinking of better ways to do things, embracing continuous improvement.
What to Expect
We offer a professional, fun and creative work environment. While we maintain a good balance between work and life, additional hours may be required at peak times or for specific initiatives, including a requirement that all team members rotate on-call responsibilities to respond to any emergency situations. Travel between office locations internationally may be required on occasion, with occasional domestic travel as needed.
The Pokémon Company International, a subsidiary of The Pokémon Company in Japan, manages the property outside of Asia and is responsible for brand management, licensing, marketing, the Pokémon Trading Card Game, the animated TV series, home entertainment, and the official Pokémon website. Pokémon was launched in Japan in 1996 and today is one of the most popular children's entertainment properties in the world.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of people so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.
Create Your Profile — Game companies can contact you with their relevant job openings.