Risk Analyst

Full Time
Dallas, TX, USA
2 months ago
About Crunchyroll

WE HELP EVERYONE BELONG. IT’S OUR PURPOSE.

Founded by fans, Crunchyroll delivers the art and culture of anime to a passionate community. We super-serve over 100 million anime and manga fans across 200+ countries and territories, and help them connect with the stories and characters they crave. Whether that experience is online or in-person, streaming video, theatrical, games, merchandise, events and more, it’s powered by the anime content we all love.

Join our team, and help us shape the future of anime!

Who We Are

We're a cast of characters working to shine a spotlight on anime. Crunchyroll is an international business focused on creating both online and offline experiences for fans through content (licensed, co-produced, originals, distribution), merchandise, events, gaming, news, and more. Visit our About Us pages for more information about our collection of brands.

About the Role

Our team is looking for someone with the passion and skills to support the evolution of our Governance, Risk, and Compliance (GRC) team. The main focus will be on maturing the GRC program activities including defining and testing controls, performing internal and vendor risk assessments, managing issues, maintaining the risk register, maturing Policy and Standards, and coordinating internal and external assessments and audits. This role will be responsible for ensuring we are executing the GRC program, maintaining the appropriate risk profile in support  of the employee needs, supporting long-range strategy, cross-functional projects, and initiatives across Crunchyroll globally. This role will require a strong partnership across SPE and Crunchyroll’s teams, including Legal, Engineering, IT, People, Workplace Experience, Trust & Safety, Procurement as well as third party contractors, and suppliers.This role is located in our Dallas office and will report into our Senior Manager of Governance, Risk and Compliance.

About you
  • You have 5+ years of experience in Governance, Risk, and Compliance operational experience
  • Experience with IT / Infosec controls and control frameworks (NIST-800-53 / CSF, PCI DSS, ISO 27001 / 27002, etc)
  • Experience performing Risk Assessments
  • Experience supporting / performing IT and Infosec Audits
  • Experience supporting PCI Qualification Assessments
  • You have experience with GRC tools
  • You have experience with IAM best practices and administration
  • You have a strong fundamental understanding of security best practices
  • You have demonstrated experience maintaining effective working relationships across all levels of an organization and with a variety of external constituents
Pluses
  • You have risk or security certification(s)
  • Operational knowledge of IT Service Delivery processes including Incident Management / Response, Change Management, Security Operations, etc 
  • You have knowledge of data privacy laws and regulations, including GDPR, CCPA
  • You have experience with cloud environments such as GCP or AWS
A Day in the Life
  • Working with a focus to level-up GRC programs at Crunchyroll
  • Partnering with teams across the company to manage inventory 
  • Partner with teams to onboard new vendors
  • Perform annual Vendor Risk Assessments
  • Partner with teams to perform periodic control validation and evidence gathering
  • Perform Targeted Risk Assessments
  • Manage issue identification and tracking within the organization
  • Help socialize Policies and Standards
  • Maintain Security Awareness Program
  • Implementing new GRC tools and align target processes
  • Stay up-to-date with industry best practices and regulatory changes related to information security and compliance.
  • Creating reports and documentation to support the GRC program
  • Approaching each day with a focus on fostering an environment encouraging growth personally, professionally, and for those around you

#LifeAtCrunchyroll #LI-Hybrid

About our Values

We want to be everything for someone rather than something for everyone and we do this by living and modeling our values in all that we do. We value

  • Courage. We believe that when we overcome fear, we enable our best selves.

  • Curiosity. We are curious, which is the gateway to empathy, inclusion, and understanding.

  • Service. We serve our community with humility, enabling joy and belonging for others.

  • Kaizen. We have a growth mindset committed to constant forward progress.

Our commitment to diversity and inclusion

Our mission of helping people belong reflects our commitment to diversity & inclusion. It's just the way we do business.

We are an equal opportunity employer and value diversity at Crunchyroll. Pursuant to applicable law, we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Crunchyroll, LLC is an independently operated joint venture between US-based Sony Pictures Entertainment, and Japan's Aniplex, a subsidiary of Sony Music Entertainment (Japan) Inc., both subsidiaries of Tokyo-based Sony Group Corporation.

Questions about Crunchyroll’s hiring process? Please check out our Hiring FAQs: https://help.crunchyroll.com/hc/en-us/articles/360040471712-Crunchyroll-Hiring-FAQs

Please beware of recent scams to online job seekers. Those applying to our job openings will only be contacted directly from @crunchyroll.com email account.