Information Security Risk Analyst

Vollzeit
Bengaluru, Karnataka, India
vor 7 Monate

Job Title:  Information Security Risk Analyst

 

Who We Are:

Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially successful entertainment experiences, captivating and engaging audiences around the world. We are incredibly proud of our ability to deliver consistently the highest-quality titles, as well as our colleagues who help to create our unique culture and work environment that is inclusive, diverse, and dynamic.

While our offices are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions. 

 

The Challenge

Information Security Risk Management at Take-Two (T2) is a high-reaching, hard working and friendly team which works together to mature information security posture at T2 and its labels. As we expand our global presence, the team is looking for a qualified Information Security Risk Analyst to join our team in Bangalore, India. The candidate will be responsible for identifying, assessing, managing and mitigating internal and external information security risks.

 

What You’ll Take On

  • Support the development, implementation and maturity of information security risk management program.
  • Perform periodic risk assessments to identify and mitigate internal and external (i.e., vendors, partners) information security
  • Communicate, track and provide guidance on remediation activities of identified security and compliance gaps to internal (i.e., T2 business units, labels, studios) and external parties (i.e., vendors, partners).
  • Manage, update and report on documented and accepted risks.
  • Support IT department and labels on internal and external information security audit requests (i.e., SOX, external compliance audits).
  • Assist in defining business processes and controls for the assessment of vendors to ensure compliance with security and regulatory requirements.
  • Provide subject matter expertise supporting vendor risk management processes and solutions.
  • Review, document, track and collaborate on remediation of any vendor risks.
  • Continually improve the accuracy, depth, and efficiency of the vendor risk management program through tools and processes.
  • Keep abreast of the latest security, privacy, and regulatory concerns and best practices impacting T2 and labels.
  • Capture metrics that measure effectiveness of the overall information security program.
  • Performs other duties as assigned.

 

What You Bring

  • 3+ years of experience in IT risk management, IT governance, or internal
  • Bachelor’s degree in Business Management, Risk Management, Computer Science, or equivalent job experience.
  • Proven experience in information security risk management.
  • Strong technical background and experience conducting technical security assessments of technology solutions (IT applications, plugins, APIs, ADKs, etc.).
  • Experience in conducting information security, vendor or cloud security risk assessments.
  • Working knowledge of CIS, NIST CSF, or ISO 27001.
  • In depth understanding of information security controls, how they are used to detect and respond to, how they impact the business, and how gaps can be mitigated/remediated.
  • Strong knowledge of Governance, Risk, and Compliance (GRC) and vendor risk management tools.
  • Industry recognized certifications within the domains of information security (e.g., CISSP, GIAC, CISM, CISA, CIPP, CTPRP, CCSP, etc.) are plus.
  • Excellent verbal and written communication, planning, analysis and organizing skills.
  • Ability to communicate security requirements in a simple, clear, and concise manner to various stakeholders.
  • Strong project management skills with an ability to manage and report on multiple concurrent projects.

 

What We Offer You: 

  • Great Company Culture. We pride ourselves as being one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
  • Growth: As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
  • Work Hard, Enjoy Life. Our employees’ bond, blow-off steam, and flex some creative muscles – through our Office gaming spaces, company parties, game release events, monthly socials, and team challenges.
  • Benefits. Benefits include, but are not limited to; Discretionary bonus, Provident fund contributions, 1+5 medical insurance + top up options and access to Practo online Doctor consultation App, Employee assistance program, 3X CTC Life Assurance, 3X CTC Personal accident insurance, childcare services, 20 days holiday + statutory holidays,
  • Perks. Gym reimbursement up to INR1150 per month, charitable giving program, access to learning platforms, gaming events.

Take-Two Interactive Software, Inc. (“T2”) is proud to be an equal opportunity employer, which means we are committed to creating and celebrating diverse thoughts, cultures, and backgrounds throughout our organization.  Employment at T2 is based on substantive ability, objective qualifications, and work ethic – not an individual’s race, creed, color, religion, sex or gender, gender identity or expression, sexual orientation, national origin or ancestry, alienage or citizenship status, physical or mental disability, pregnancy, age, genetic information, veteran status, marital status, status as a victim of domestic violence or sex offenses, reproductive health decision, or any other characteristics protected by applicable law.

 

#LI-Hybrid