GRC Lead

Junglee Games Tech & Cyber GRC team drives risk management and compliance within the organization, supporting Junglee Games and its family of apps. We are looking for Senior GRC analysts with experience in compliance and security to help protect and enable Junglee Games products and services. The Tech & Cyber GRC works as a line of defense by periodic audits against all the control owners, platform team, Security team and Engineering stakeholders.

Responsibilities:

Risk Management:

• Conduct risk assessments (e.g., threat modeling, vulnerability assessments) and identify, analyze, and evaluate potential risks across all areas of the business.

• Develop and maintain a comprehensive risk register, including risk assessments, mitigation plans, and key risk indicators (KRIs).

• Monitor and report on key risks and emerging threats.

• Assist in the development and implementation of risk mitigation strategies and controls.

• Coordinate with teams on Implementation of risk management strategies aligned with stakeholders.

Compliance:

• Ensure compliance with all applicable laws and regulations (e.g., data privacy laws, industry-specific regulations, cybersecurity frameworks like NIST CSF 2.0, ISO 27001:2022).

• Conduct internal audits and compliance reviews to identify and address any gaps.

• Manage regulatory reporting requirements and ensure timely submission of all necessary filings.

• Advise on and implement best practices for compliance with relevant standards (e.g., ISO 27001, SOC 2, Data Privacy).

Governance:

• Assist in the development and implementation of internal policies and procedures related to governance, risk, and compliance.

• Contribute to the development and maintenance of a strong control environment.

• Support the development and implementation of a robust ethics and compliance program.

Stakeholder Management:

• Collaborate with business units, IT, legal, and other stakeholders to identify and address risk and compliance issues.

• Communicate effectively with all levels of management on risk and compliance matters.

• Build and maintain strong relationships with internal and external auditors.

• Work under Senior Manager GRC and facilitate Audits like ISO 27001, audits and findings closure by follow-up with respective teams.

• Identify stakeholders and their roles, keep them informed of project progress, address their concerns, and implement their feedback.

• Work with team members and stakeholders to understand and identify work challenges and program goals, obtain prioritized deliverables, and discuss program impacts.

Continuous Improvement:

• Stay abreast of evolving regulatory requirements, industry best practices, and emerging threats.

• Continuously evaluate and improve the organization's GRC framework and processes.

• Proactively identify and implement new GRC initiatives.

Required Qualifications:

- 8+ years of experience in a GRC role, with a strong understanding of risk management frameworks, methodologies, and tools

- Experience with one or more of NIST CSF 2.0 framework, SOC2 Type2, ISO27001:2022

- Strong communication and interpersonal skills, with the ability to effectively communicate complex information to both technical and non-technical audiences.

- Experience working in a fast-paced and dynamic environment.

- 3+ years of experience in information security, cybersecurity, transparency reporting, and/or technology risk, including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management).

- 2+ years of experience in effectively analyzing data and programs for security risk, compliance, and maturity.

- 2+ years of program management experience in a corporate environment.

- Experience with Certifications for SOC2 Type2, ISO27001:2022 

Good to have:

- CISA , CISM, CRISC certifications are desirable. 

-  Advanced degree and/or certification.

- Advanced program management skills, including planning, organizing, pre-empting risks/blockers, and communicating with stakeholders to deliver successful programs or projects, while operating with minimal guidance.

About Junglee Games

Junglee Games is a leader in the skill-gaming space, with close to 96 million users. Founded in San Francisco in 2012, and part of the $30 Bn Flutter Entertainment Group, Junglee Games is the fastest-growing skill-gaming company in the world. Some of our notable games are Junglee Rummy, Howzat, Eatme.io, Carron Stars and Solitaire Gold.

Our mission is to build entertainment for millions of people around the world and connect people through high-quality games.

Since we were founded, we've drawn 700 of the world’s most talented people into our ranks. Our team has worked on international AAA titles like Transformers, Star Wars: The Old Republic, Real Steel, Rio, Mech Conquest, and Dueling Blades. Our designers have worked on some of Hollywood’s biggest hits including the movie Avatar.

Junglee is not just a gaming business - it is a blend of data science, innovation, cutting-edge technology and, most importantly, a values-driven culture that is creating the next set of conscious leaders. Junglee Games is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.