Senior Information Security Risk Analyst

Taketwo

Country: United States of America

Location: New York, New York, United States

Time Type: Full Time

Posted On: October 16, 2024

Who We Are

Take-Two Interactive is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. The Company develops and publishes products principally through Rockstar Games, 2K, Private Division, and Zynga. Our products are currently designed for console gaming systems, PC, and Mobile, including smartphones and tablets, and are delivered through physical retail, digital download, online platforms, and cloud streaming services. The Company’s common stock is publicly traded on NASDAQ under the symbol TTWO.

While our offices (physical and virtual) are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions.

 

The Challenge

The Information Security Risk Management team at Take-Two Interactive (T2) is an aspiring, hard working and collaborative group which works together to mature the security posture of T2 and its labels, Rockstar, 2K and Zynga.

The team is looking for a Senior Information Security Risk Analyst to help manage the internal and external Information Technology (IT) risks for the organization. The analyst will assist with planning, organizing, coordinating, and performing risk assessments to identify key controls, critical risks, action plans, and recommendations.

The candidate must build working relationships and lead change with various levels of management on an enterprise scale, and be able to articulate how risk assessment results translate to business risk for the organization.

 

What You’ll Take On

  • Lead the development, implementation, and maturity of the innovative Information Security Risk Management program.
  • Lead, plan, and manage the execution and delivery of comprehensive risk-based cyber assessments, including vendors, IT applications, IT infrastructure, IT operational process reviews, IT governance & strategy design assessments, and SOX compliance-related activities.
  • Collaborate with internal (e.g., T2 business units, labels, studios) and external parties (e.g., vendors, partners) to communicate, track, and provide guidance on remediation activities for identified security gaps.
  • Prepare detailed and insightful deliverables and reports for risk management and senior leadership that highlight issues, trends, and micro/macro-level risks identified through IT internal control work and other assurance-related activities.
  • Define and prepare key metrics that measure the effectiveness of the overall information security program and report these to management, showcasing your impact.
  • Serve as a trusted advisor and consultant between T2 information security and labels on internal and external information security audit requests (e.g., SOX, external compliance audits).
  • Ensure strict compliance with information security policies and standards, maintaining our reputation for excellence.
  • Mentor junior team members and perform quality reviews of their work, fostering a collaborative and supportive team environment.
  • Be responsible for the design, implementation, and operation of an advanced IT Governance, Risk, and Compliance (GRC) solution.
  • Support T2 and labels in the development and implementation of GRC workflows to meet evolving business objectives.
  • Stay informed on the latest security, privacy, and regulatory trends and best practices impacting T2 and labels, ensuring we remain innovative.
  • Perform other duties as assigned, with opportunities to expand your role and responsibilities.

 

What You Bring

  • Passionate about serving, eager to learn, and humble in your approach.
  • 7+ years of experience in IT risk management, IT governance, or internal controls.
  • Bachelor’s degree in Business Management, Risk Management, Computer Science, or equivalent job experience.
  • In-depth understanding of core information technology processes and controls.
  • Experience in supporting, analyzing using risk scoring, managing, communicating, and acting as a primary resource for risk reviews (new and ongoing).
  • Extensive experience with information security-related work (e.g., implementing and/or conducting audits or assessments based on relevant security control frameworks), and familiarity with security standards such as CIS, NIST CSF, or ISO 27001.
  • Consistent track record in leading information security, vendor, or cloud security risk assessments.
  • Hands-on experience with Governance, Risk, and Compliance (GRC) and vendor risk management tools.
  • Industry-recognized certifications within the domains of information security (e.g., CISSP, GIAC, CISA, etc.) are a plus.
  • Excellent verbal and written communication, planning, analysis, and organizational skills.
  • Articulate communicator with mastery of both spoken and written English, capable of tailoring work results appropriately for audiences ranging from technical individual contributors to senior leaders.
  • Proven project management skills with the ability to lead and report on multiple concurrent projects.
  • Exceptional critical thinking skills; ability to quickly comprehend problems, develop hypotheses, draw logical conclusions, develop solutions, and respond accordingly

 

What We Offer You

  • Great Company Culture. Ranked as one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
  • Growth: As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
  • Work Hard, Play Hard. Our employees bond, blow-off steam, and flex some creative muscles – through corporate boot camp classes, company parties, game release events, monthly socials, and team challenges.
  • Benefits. Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
  • Perks. Fitness allowance, employee discount programs, free games & events and stocked pantries.

 

The pay range for this position in New York City at the start of employment is expected to be between $98,400 and $145,620 per Year. However, base pay offered is based on market location, and may vary further depending on individualized factors for job candidates, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to those same considerations, the total compensation package for this position may also include other elements, including a bonus and/or equity awards, in addition to a full range of medical, financial, and/or other benefits. Details of participation in these benefit plans will be provided if an employee receives an offer of employment. If hired, employee will be in an 'at-will position' and the company reserves the right to modify base salary (as well as any other discretionary payment or compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and market factors.

Take-Two Interactive Software, Inc. (“T2”) is proud to be an equal opportunity employer, which means we are committed to creating and celebrating diverse thoughts, cultures, and backgrounds throughout our organization.  Employment at T2 is based on substantive ability, objective qualifications, and work ethic – not an individual’s race, creed, color, religion, sex or gender, gender identity or expression, sexual orientation, national origin or ancestry, alienage or citizenship status, physical or mental disability, pregnancy, age, genetic information, veteran status, marital status, status as a victim of domestic violence or sex offenses, reproductive health decision, or any other characteristics protected by applicable law.

 

Please be aware that Take-Two does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Take-Two also does not engage in any financial exchanges during the recruitment or onboarding process, and the Company will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scam or phishing exercise. Take-Two’s in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a take2games.com email domain). If you need to report an issue or otherwise have questions, please contact Careers@take2games.com

 

#LI-PH1

#LI-Hybrid