Manager IT - Governance, Risk & Compliance (GRC)

CREATIVITY IS OUR SUPERPOWER. It’s our heritage and it’s also our future. Because we don’t just make toys. We create innovative products and experiences that inspire fans, entertain audiences and develop children through play. Mattel is at its best when every member of our team feels respected, included, and heard—when everyone can show up as themselves and do their best work every day. We value and share an infinite range of ideas and voices that evolve and broaden our perspectives with a reach that extends into all our brands, partners, and suppliers.

The Team:

Be a part of an organization that is modernizing and transforming its IT platforms, processes, and skills to accelerate Mattel’s strategy to unlock a world of tech-enhanced 360-degree play experiences!

Mattel’s Security Governance Risk & Compliance (GRC) Team is part of the Global Technology Organization (GTO).  As part of the CISO’s security organization, the GRC team is responsible for managing IT general controls and conducting audits for SOC1, SOX and PCI.  GRC also establishes and promotes security policy and standards throughout Mattel, conducts vendor/supply chain security risk assessments, and manages IT risk exceptions.

The Opportunity: 

Mattel is currently seeking a Manager GRC to join its Information Security team. The Manager GRC role is to foster and oversee the development and improvement of the IT compliance programs by determining the effectiveness, adequacy, and efficiency of IT general controls. This position requires thorough knowledge of and experience with testing practices related to IT general controls, broad knowledge of information security best practices, and experience with information security risk management across a diverse IT landscape.

What Your Impact Will Be: 

•    Understand and apply IT frameworks and standards (i.e. COSO) and have the ability to assess financial, operational, and regulatory risks as they relate to the use of information technology.
•    Manage applicable information security audits, including SOC1, SOX, and PCI.
•    Understand the business processes, internal control risk management, and IT general controls (ITGCs) to be able to test applications, operating systems, and databases.
•    Work with management to design and test controls (i.e, ITGC, interfaces, key reports) for new applications.
•    Manage/support walkthroughs with control owners and application teams to document their control processes in narratives.
•    Serve as interface with internal and external auditors to address follow ups and/or escalate as necessary.
•    Work with control owners and application teams to identify root cause of identified deficiencies and to develop appropriate remediation plans.
•    Prepare regular reports on the status of the test controls their results and present findings to the leadership teams
•    Perform other duties as assigned or necessary.
 

What We’re Looking For: 

•    Bachelor’s degree preferred or equivalent experience
•    8+ years experience in IT Audit, Risk management, Compliance or Consulting (i.e. Big 4 or equivalent)
•    Certification as a CISSP, CISA, or other GIAC or related security certification(s) desired In-depth knowledge of IT GRC platforms (e.g., RSA Archer, Auditboard)
•    Strong experience with Governance, Risk and Compliance for controls and policy, IT Control self-assessment and measurement, remediation and exception management, reporting and advanced IT risk evaluation and compliance dashboard
•    Project management experience desirable
•    Technology experience in a variety of IT environments
•    Security vulnerability assessment/mitigation experience
•    Excellent written and verbal communication skills.
•    Has a collaborative mindset with a natural tendency to foster partnerships.
•    Strong ability to manage and prioritize assignments based on the fast paced and changing environment
 

Salaried: To be used for positions up to Director level:
The annual base salary range for this position is between $144,000 and $170,000
**This range is indicative of projected hiring range, however annual base salary will be determined based on a candidate’s work location, skills and experience.

Don’t meet every single requirement? At Mattel we are dedicated to building a diverse and inclusive workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.

How We Work:

We are a purpose driven company aiming to empower generations to explore the wonder of childhood and reach their full potential. We live up to our purpose employing the following behaviors:

• We collaborate: Being a part of Mattel means being part of one team with shared values and common goals. Every person counts and working closely together always brings better results. Partnership is our process and our collective capabilities is our superpower.
• We innovate: At Mattel we always aim to find new and better ways to create innovative products and experiences. No matter where you work in the organization, you can always make a difference and have real impact. We welcome new ideas and value new initiatives that challenge conventional thinking.
• We execute: We are a performance-driven company. We strive for excellence and are focused on pursuing best-in-class outcomes. We believe in accountability and ownership and know that our people are at their best when they are empowered to create and deliver results.

Our Approach to Flexible Work:

We embrace a flexible work model designed to empower a culture of growth, optimism, and wellbeing, where every employee can reach their full potential. Combining purposeful in-person collaboration with flexibility, our focus is to optimize performance and drive connection for moments that matter.

Who We Are:

Mattel is a leading global toy and family entertainment company and owner of one of the most iconic brand portfolios in the world. We engage consumers and fans through our franchise brands, including Barbie, Hot Wheels, Fisher-Price, American Girl, Thomas & Friends, UNO, Masters of the Universe, Matchbox, Monster High, MEGA and Polly Pocket, as well as other popular properties that we own or license in partnership with global entertainment companies. Our offerings include toys, content, consumer products, digital and live experiences. Our products are sold in collaboration with the world’s leading retail and ecommerce companies. Since its founding in 1945, Mattel is proud to be a trusted partner in empowering generations to explore the wonder of childhood and reach their full potential.

Mattel’s award-winning workplace culture has been recognized by Forbes, Fast Company, Newsweek, Great Place to Work, TIME, and more.

Visit us at https://jobs.mattel.com/ and www.instagram.com/MattelCareers.

Mattel is an Affirmative Action/Equal Opportunity Employer where we want you to bring your authentic self to work every day. We welcome all job seekers, and all applicants will receive consideration for employment without regard to race, ethnicity, color, national origin, religion, sex, gender, gender identity or expression, sexual orientation, veteran and protected veteran status, disability status, and or any other basis protected by applicable federal, state or local law.

Pursuant to the Los Angeles Fair Chance Ordinance and the California Fair Chance Act, qualified applicants with arrest or conviction records will be considered for employment.

Videos to watch:
The Culture at Mattel
Mattel Investor Highlights