Manager, IT Compliance in Grapevine, TX at GameStop

Date Posted: 10/10/2018

Job Snapshot

Job Description

Description:

SUMMARY

Working independently, the IT Compliance Manager will be responsible for the management of an Information Security team that monitors for, and enforces compliance of the security policies, standards and regulatory frameworks that govern GameStop.  The IT Compliance team is responsible for ensuring the security and resiliency of GameStop’s computing environment, protecting customer and employee confidential information, and complying with audit and regulatory requirements. This is accomplished through strong information security leadership and active collaboration with multiple lines of business and technology teams to provide high quality solutions and services that are focused on improving GameStop’s risk posture. The IT Compliance Manager will interact with his or her supervisor as needed by either. Most activities are completed without a supervisor’s advance approval.
 

ESSENTIAL JOB DUTIES AND RESPONSIBILITIES*


•        Manages the PCI compliance process across the enterprise


•        Assists Sr Manager in facilitating SOX and other compliance related programs


•        Assists leadership in the creation and continuous improvement of global PCI, SOX, and other compliance programs


•        Collaborate with business, technology, and audit teams to drive remediation of technology risks identified by internal & external audits and assessments


•        Track remediation efforts and works with technology and business groups to meet agreed upon timelines to close security risks in a timely fashion


•        Ensures IT policies and standards are up to date and appropriately approved and communicated


•        Communicates timelines and escalates lack of compliance to management


•        Coordinates audit & assessment-related tasks such as ensuring the readiness of IT leaders and their organizations for audit & assessment testing and facilitating the timely resolution of any audit findings.


•        Manages information security training and awareness campaigns


•        Participates on projects to provide risk and controls guidance to ensure future compliance to policies and standards


•        Manages IT Compliance staff, overseeing the planning, organizing, scheduling and coordinating of work performed


•        May perform other job duties as directed by employee’s leader


•        Manage relationships in a manner acceptable to others and to the organization; adhere consistently with all organizational policies related to our respectful workplace


•        Work collaboratively with others within and outside of his or her function to achieve goals, simply processes, reduce costs, prevent loss, and to ensure that work is completed safely, accurately, and on time


•        Responsible for adhering consistently with all employment policies as stated in the employee handbook provided or as provided by his or her supervisor


•        Model the behaviors expected of all GameStop leaders including, but not limited to, a drive for results, with a demonstrable bias for action; high levels of emotional intelligence, maturity, and professionalism; giving, receiving and responding to feedback effectively; a consistently high service orientation; and demonstrable commitments to diversity, inclusion, a respectful workplace, and integrity


•        Drive outstanding business results through traditional management functions including, but not limited to, sourcing and selecting talent, coaching and development, workforce and project scheduling, performance assessment, and general talent planning


•        Create a productive, collaborative work environment by developing a common vision, setting clear objectives, facilitating teamwork, recognizing and rewarding outstanding performance, encouraging risk tolerance, and maintaining open communications


•        Build organizational capability through continuous improvement activities; originate action to improve existing conditions and processes; identify improvement opportunities, generate ideas, and implement solutions


•        Identify, track, and report meaningful performance/progress metrics, and support the team with achieving performance goals


•        Actively build the capability of others through relevant, timely balanced feedback; coaching and teaching, encouraging mentoring relationships; and using recognition and rewards to reinforce desirable behaviors
 

RELATED COMPETENCIES


•        Building Partnerships – Identifies opportunities and takes action to build strategic relationships between one’s area, teams, departments, units, or organizations to help achieve business goals


•        Information Monitoring Establishes ongoing procedures to collect and review information needed to manage an organization or ongoing activities within it


•        Planning and Organizing- Establishes courses of action for self and others to ensure that work is completed efficiently


•        Technical/Professional Knowledge and Skills – Having achieved a satisfactory level of technical and professional skill or knowledge in position-related areas; keeps up with current developments and trends in areas of expertise
 

BASIC AND PREFERRED QUALIFICATIONS (EDUCATION and/or EXPERIENCE)


•        Bachelor’s degree from an accredited program in information systems or related field, or equivalent experience required


•        7+ years of information security risk management or IT compliance/assurance experience required; IT compliance experience in a retail environment preferred


•        In-depth knowledge of PCI-DSS, NIST 800-53, and/or SOX requirements required


•        Knowledge of GRC tools, analytic tools (ACL, Tableau, etc.) and CISA or security certification preferred


•        Must possess a valid U.S. passport or the ability to obtain one within 60 days of employment


•        Must be able to travel up to 20% domestically and internationally, as needed


MINIMUM QUALIFICATIONS, JOB SKILLS, ABILITIES


•        Proficient ability to generate reports for executive leadership consumption


•        Working knowledge of risk assessment and mitigation techniques


•        Proficient knowledge of identifying technology-related risks, developing mitigation steps, and implementing remediation


•        Proficient analytical and organizational skills to optimize processes and procedures


•        Proficient project planning skills, including the ability to organize, prioritize and control job responsibilities to meet deadlines in an environment with overlapping and potentially conflicting priorities


•        Proficient ability to communicate effectively with others using spoken and written English


•        Proficient ability to work collaboratively with others; conduct working relationships in a manner acceptable to others and to the organization


•        Proficient ability to remain effective under stress, and respond to pressure in a manner acceptable to others and to the organization


•        Proficient knowledge of Windows-based business computers and Microsoft Office programs; specifically, Access, Excel, Outlook, PowerPoint, and Word


•        Demonstrated ability to model customer-focused behaviors leading to outstanding customer experiences


•        Consistently demonstrates a commitment to GameStop policies and procedures, including but not limited to, attendance, confidentiality, conflict of interest, and ethical responsibilities