Location: Dallas, Texas
Employment Type: Regular
Team: Engineering - Match Group
Lead the Governance, Risk, and Compliance (GRC) team to achieve and maintain adherence with numerous compliance requirements including ISO-27001, SOX and PCI-DSS.Manage the Vendor Risk Management program at Tinder. Distribute workload between team members and ensure recertification of vendors occurs based on risk levels.Design and roll out internal security and privacy training and awareness initiatives.Design, configure, and support any GRC related tools configuration for the Compliance organization.Define and implement the Corporate Security Risk Management Framework to identify, assess, manage and report technical risks across Tinder. Guide the GRC team on performing security risk assessments annually.Drive the implementation of technical policies and procedures. Oversee the documentation, maintenance and dissemination of internal security policies and procedures. Monitor use of Tinder’s internal information systems and regulate access to safeguard information in computer files.Manage the internal audit plan and monitor the execution of the plan.Manage a compliance roadmap and communicate it to relevant stakeholders including leadership. Work internally to ensure business-wide adherence to security and privacy best practices, policies and procedures including access control review.Drive automation of repeated tasks carried out by the GRC team. Use strong communication skills to involve and engage stakeholders who can assist with automation for the GRC team. Position allows telecommuting from anywhere in the U.S.
Minimum Requirements: Bachelor’s degree or U.S. equivalent in Management Information Systems, Computer Engineering, Technology, Computer Science, or a related field, plus 5 years of professional experience coordinating and integrating compliance and risk management initiatives (including control and monitoring) to maintain data and intellectual property secure from internal and external threats. In lieu of a Bachelor’s degree plus 5 years of experience, the employer will accept a Master’s degree or U.S. equivalent in Management Information Systems, Computer Engineering, Technology, Computer Science, or a related field, plus 3 years of professional experience coordinating and integrating compliance and risk management initiatives (including control and monitoring) to maintain data and intellectual property secure from internal and external threats.
Must also have the following:3 years of professional experience performing vendor reviews to ensure security of third-party service providers; 2 years of professional experience maintaining compliance with ISO-27001, SOX and PCI requirements; 2 years of professional experience developing enterprise security risk management strategies to ensure technology and security risks are identified, measured, documented, communicated, managed, and monitored appropriately; 2 years of professional experience coordinating internal security and privacy training and awareness initiatives; 2 years of professional experience performing security risk assessments and executing tests on data processing systems to ensure functioning of data processing activities and security measures; 2 years of professional experience using security awareness training software (including Knowbe4 or Infosec IQ).
Please email resume to: Lauren.Lozano@match.com. Must specify Ad Code SSLL in subject line.
Why Match Group?
Our mission is simple – to help people find love and happiness! We love our employees too – here are some examples how:
Annual training budget for each employee
100% employer match on 401k contributions
Specific COVID-19 allowance for home office set-up
Matched giving to qualified organizations
100% paid Parental Leave for up to 20 weeks
Happy Hours and Company events
At Match Group, we represent a collection of unique brands - but we all focus together on the health and safety of all of our employees. That's why we require that employees are fully-vaccinated when in person at any US office or company-sponsored fun. If you need to talk through this in-person vaccine requirement, our People team can work with you through our accommodations review process.
_We are proud to be an equal opportunity employer and we value the rich dynamics that diversity brings to our company. We do not discriminate on the basis of race, religion, color, creed, national origin, ancestry, disability, marital status, age, sexual orientation, sex (including pregnancy and sexual harassment), gender identity or expression, uniformed service or veteran status, genetic information, or any other legally protected characteristic. Period. _