Activision Publishing, Inc.
Activision Blizzard, Inc., a member of the S&P 500, is the worldʹs most successful standalone interactive entertainment company. We delight hundreds of millions of monthly active users around the world through franchises including Activisionʹs Call of Duty®, Destiny and Skylanders®, Blizzardʹs World of Warcraft®, Overwatch®, Hearthstone®, Diablo®, StarCraft®, and Heroes of the Storm®, and Kingʹs Candy Crush™, Pet Rescue™, Bubble Witch™ and Farm Heroes™. The company is one of the Fortune ʺ100 Best Companies to Work For®ʺ. Headquartered in Santa Monica, California, Activision Blizzard has operations throughout the world, and its games are played in 196 countries. More information about Activision Blizzard and its products and services can be found on the companyʹs website,
He/she will have a strong background within information security to make a strong impact on the company’s security program and services. The candidate will have experience with various Information Security concepts including data governance, risk management, metrics, audit, policy and standards development.
The GIS Governance Analyst will provide direct support to the GIS Director of Risk, Architecture and Engineering and follow up on necessary action items for the GIS Risk, Architecture, and Engineering team. The primary focus will be on data governance, audit, metrics, policy, standards and configuration baselines. This individual will work with various legal, IT, and business teams to establish continuous audit and metrics to measure adherence to internal and external requirements in relation to data governance and protection. (e.g., GDPR)
The primary focus areas will include:
Develop and implement an appropriate information security policy framework ensuring owners for the policy documents and relevant approvers are identified
Lead and support the creation, implementation, monitoring, and maintenance of security policies, standards, and processes
Minimize security threats by examining governance, infrastructure, applications, systems, devices, and facilities to identify security flaws, using risk analysis and follow up on corrective action plan
Provide guidance to internal partners to assist in the development of policies ensuring that the Company addresses any legal, regulatory or compliance security requirements
Dissemination and promotion of a general understanding of information security risks and policies through an on-going information security awareness/culture change program
Act as lead, subject matter expert, and project manager for security initiatives relating to compliance with applicable data protection such as GDPR
Maintain the security control framework to measure adherence to policy, standards, and external compliance regulations
Monitor existing controls and conduct periodic audits and reviews to ensure their efficiency and operating effectiveness, to ensure that compliance requirements are met and to identify and report on potential issues
Define and communicate security governance and compliance priorities to IT support and business teams
Research potential security control/solutions and, where applicable, implementation to support new Information Governance compliance initiatives
Establish and maintain regular written and in-person communications pertinent to governance and security activities
Examine incoming requests for exceptions to governance security control requirements and draft recommended decision memorandum to include requisite mitigation strategies
Bachelor’s degree in Computer Science, Information Systems, other related field; or equivalent work experience
Minimum of four years of information security experience in a corporate or consulting environment
Demonstrated exceptional passion and drive for cyber security as evidenced by self-driven past accomplishments that had significant positive impact to shareholders preferred
Any one or more of the following preferred
Certified Information Systems Security Professional (CISSP) from ISC2
(any) Global Information Assurance Certification (GIAC) from SANS
Knowledge of common information security management frameworks and practices such as ISO/IEC 17799:2005 and ISO/IEC 270xx, National Institute of Standards and Technology (NIST), and the United States Computer Emergency Readiness Team (US-CERT)
Strong understanding of security requirements, frameworks, templates, assessments, process maps, data flows in relation to data protection and GDPR
Demonstrated experience with data governance, data mapping and regulatory security requirements
Experience assessing, tracking, and documenting security requirements to meet data protection compliance
Proven successful track record of leading data protection issues
Prior experience working in projects dealing with compliance and data protection regulations
Strong and current knowledge of data protection legislation and security control requirements
Versed in project management procedures and concepts
Versed in authoring and implementation of security policies, standards, and procedures
Knowledgeable in a diverse set of technical skills, such as IT infrastructure, operating systems
Understanding of logging, monitoring, and reporting key performance indicators (KPI) and development of continuous improvement plans
Knowledge and skills in implementing privacy, audit, and compliance
Excellent oral/written communication, problem solving and analytical skills
Ability to work independently and as part of a team to achieve desired objectives and project results
Ability to interface effectively and decisively with all levels of management, departments and outside vendors.
Activision Blizzard is headquartered in Santa Monica, California, housing multiple teams across many disciplines of Marketing, PR, Sales, Supply Chain and other corporate functions such as HR, IT, Legal, Facilities and Finance. Santa Monica is the nerve center of our company, where the best ideas combine with unrivaled rigor to create the biggest and best entertainment experiences in the world.
* The video game industry and therefore our business are fast-paced and will continue to evolve. As such, the duties and responsibilities of this role may be changed as directed by the Company at any time to promote and support our business and relationships with industry partners.
Mr. Kotick has been a Director and Chief Executive Officer of Activision, Inc. since February 1991 until July 2008, when he became Chief Executive Officer of Activision Blizzard in connection with the combination of Activision and Vivendi Games. By merging Activision, Inc.'s top selling portfolio of console and handheld games with Blizzard Entertainment's leading PC and online subscription franchises, Activision Blizzard is the largest, most profitable pure-play interactive entertainment software publisher in the world with leading market positions across every major category of the rapidly growing interactive entertainment software industry.