Reporting to the Director, IT Security Governance, Risk, and Compliance (GRC), based in El Segundo, CA, the IT Operational Compliance Program Associate Manager role is to manage the day-to-day operational oversight of the IT compliance program with a focus on developing and improving IT compliance programs, conducting risk assessments, and IT compliance reviews, identifying issues/areas of improvement, working with various IT teams to formulate and execute remediation plans, and reporting result... more details
CREATIVITY IS OUR SUPERPOWER. It’s our heritage and it’s also our future. Because we don’t just make toys. We create innovative products and experiences that inspire fans, entertain audiences and develop children through play. Mattel is at its best when every member of our team feels respected, included, and heard—when everyone can show up as themselves and do their best work every day. We value and share an infinite range of ideas and voices that evolve and broaden our perspectives with a reach that extends into all our brands, partners, and suppliers.
The Opportunity:
Reporting to the Director, IT Security Governance, Risk, and Compliance (GRC), based in El Segundo, CA, the IT Operational Compliance Program Associate Manager role is to manage the day-to-day operational oversight of the IT compliance program with a focus on developing and improving IT compliance programs, conducting risk assessments, and IT compliance reviews, identifying issues/areas of improvement, working with various IT teams to formulate and execute remediation plans, and reporting results to management. This position requires knowledge of, and testing practices related to; IT general controls, Application role configurations, SOD frameworks, network operating environments, network components, SAAS environments, information technology infrastructures, operating systems, servers, information security management, relational database management systems, program changes, web applications, BCP/DR, and systems development life cycles. The IT Operational Compliance Program Manager must understand and apply IT frameworks (i.e. COBIT 5), and standards (i.e. NIST, PC, SOX), and have the ability to assess security, financial, operational, and regulatory risks as they relate to the use of information technology. The IT Operational Compliance Program Manager is responsible for managing and prioritizing assignments based on the fast paced and changing environment while also ensuring high quality work product and adherence to deadlines. Strong communication, interpersonal skills, analytical abilities, and attention to detail are required.
What Your Impact Will Be:
- Assist with the development and implementation of a Global SOD cross-platform methodology.
- Assist with the development of IT compliance best practice program and advise internal management and business partners on the implementation of such program.
- Manage companywide cross-platform and individual system User Access Reviews.
- Manage companywide cross-platform SOD and individual system SOD Access Reviews.
- Using a risk-based approach, ensure appropriate IT best practice controls exist, operate effectively and that information systems follow industry and corporate standards.
- Collaborate with cross-functional teams to conduct various IT Compliance reviews (e.g., PCI, NIST, IT Policy Compliance, IT Best Practice) to identify compliance issues and areas of improvement in various IT processes and systems.
- Work with various IT teams to facilitate timely remediation of issues and implementation of recommended improvements.
- Develop and maintain documentation related to IT processes and controls.
- Assist in the development and implementation of IT compliance policies and procedures.
- Assist in the preparation and related response to external/internal audits and/or assessments.
- Stay updated on industry regulations and standards related to IT security and compliance.
- Conduct regular GAP analysis on new and updated IT controls and best practices in the industry.
- Create executive level status decks and presentations on IT Compliance Program.
What We’re Looking For:
- Min 4 years’ experience working in IT Security Compliance, IT Internal/External audit, or IT Consulting (i.e. Big 4 or equivalent)
- Experience in developing SOD matrices/frameworks
- Experience in performing SOD and User Access Reviews for various systems (applications, databases, network, etc.)
- Ability to collaborate with cross-functional teams to identify and address compliance issues in IT processes and systems.
- Ability to manage multiple assessment projects in a fast pace and changing environment
- Bachelor’s degree in Information Technology, Computer Science, or a related field
- Working knowledge of common IT compliance standards (SOX, SOC1, SOC2, PCI-DSS, GDPR, COSO, COBIT, NIST, and/or ISO 27001)
- Relevant IT Compliance certifications (e.g., CISSP, CISA)
- Familiarity with IT auditing tools and techniques is a plus.
The annual base salary range for this position is between $124,000 and $155,000
**This range is indicative of projected hiring range, however annual base salary will be determined based on a candidate’s work location, skills and experience.
Don’t meet every single requirement? At Mattel we are dedicated to building a diverse and inclusive workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.
How We Work:
We are a purpose driven company aiming to empower generations to explore the wonder of childhood and reach their full potential. We live up to our purpose employing the following behaviors:
- We collaborate: Being a part of Mattel means being part of one team with shared values and common goals. Every person counts and working closely together always brings better results. Partnership is our process and our collective capabilities is our superpower.
- We innovate: At Mattel we always aim to find new and better ways to create innovative products and experiences. No matter where you work in the organization, you can always make a difference and have real impact. We welcome new ideas and value new initiatives that challenge conventional thinking.
- We execute: We are a performance-driven company. We strive for excellence and are focused on pursuing best-in-class outcomes. We believe in accountability and ownership and know that our people are at their best when they are empowered to create and deliver results.
Our Approach to Flexible Work:
We embrace a flexible work model designed to empower a culture of growth, optimism, and wellbeing, where every employee can reach their full potential. Combining purposeful in-person collaboration with flexibility, our focus is to optimize performance and drive connection for moments that matter.
Who We Are:
Mattel is a leading global toy and family entertainment company and owner of one of the most iconic brand portfolios in the world. We engage consumers and fans through our franchise brands, including Barbie, Hot Wheels, Fisher-Price, American Girl, Thomas & Friends, UNO, Masters of the Universe, Matchbox, Monster High, MEGA and Polly Pocket, as well as other popular properties that we own or license in partnership with global entertainment companies. Our offerings include toys, content, consumer products, digital and live experiences. Our products are sold in more than 195 countries in collaboration with the world’s leading retail and ecommerce companies.
Mattel is recognized as a Great Place to Work™ and as one of Fast Company’s Best Workplaces for Innovators in 2022.
Visit us at https://jobs.mattel.com/ and www.instagram.com/MattelCareers.
Mattel is an Affirmative Action/Equal Opportunity Employer where we want you to bring your authentic self to work every day. We welcome all job seekers including minorities, females, veterans, military spouses, individuals with disabilities, and those of all sexual orientations and gender identities.
Videos to watch:
The Culture at Mattel
Mattel Investor Highlights