Job Description

NBCUniversal is one of the world's leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, MSNBC, CNBC, NBC Sports, Telemundo, NBC Local Stations, Bravo, USA Network, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through Universal Filmed Entertainment Group and Universal Studio Group, and have world-renowned theme parks and attractions through Universal Destinations & Experiences. NBCUniversal is a subsidiary of Comcast Corporation.

Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world.

Comcast NBCUniversal has announced its intent to create a new publicly traded company ('Versant') comprised of most of NBCUniversal's cable television networks, including USA Network, CNBC, MSNBC, Oxygen, E!, SYFY and Golf Channel along with complementary digital assets Fandango, Rotten Tomatoes, GolfNow, GolfPass, and SportsEngine. The well-capitalized company will have significant scale as a pure-play set of assets anchored by leading news, sports and entertainment content. The spin-off is expected to be completed during 2025.

This position will be accountable for NBCUniversal's SOX IT Compliance Program including supporting the development, implementation, and continuous enhancement of the Cyber Control framework and its associated controls and reporting. Responsibilities also include the integration of risk and compliance concepts into broader strategic planning and risk identification and mitigation activities.

Responsibilities:

• Act as the second line of defense for IT compliance activities such as IT SOX 404, SOC, PCI, Privacy, Technology Internal audits and other technology assurance activities.

• Maintain and build efficiencies into the IT compliance program in collaboration with multiple internal and external stakeholders, assess existing controls and identify new controls that need to be designed and implemented.

• Assist control owners and executives to remediate control weaknesses and address audit action plans for their groups and prepare for future audits.

• Monitor IT compliance posture relevant to each group and report monthly and quarterly (to various governance bodies).

• Understand unified control catalog, develop control guidance and deliver training to control owners.

• Support groups and enterprise initiatives with IT compliance requirements.

• Stay abreast of current and emerging information risks that could impact NBCU, including current or proposed cyber and privacy legislation. Educate teams and key stakeholders.

• Lean into automation and modernization to answer compliance questions at a broader scale through tools and technology.

Requirements:

• 5+ years of experience in IT Governance, Risk and Compliance functions

• Bachelor's degree or equivalent experience

• Deep understanding of IT Risk & Control Strategy and Governance concepts and professional standards

• Demonstrated experience in the areas of risks and controls across various IT platforms, web, middleware, cloud services (IaaS, PaaS, SaaS), database, operating systems, infrastructure and social media

• Project management experience with system implementations and other change events through a clearly defined methodology

• Strong written/verbal communication and organizational skills

• Deep understanding and knowledge of security, risk and privacy regulatory frameworks such as SCF, NIST, SOX, PCI, ISO, CSA, GDPR, CCPA, etc.

• Experience with IT GRC platforms, including the ability to drive maturity and enhancements to the platform, tools, and methodologies to include ServiceNow, Jira, Logic Gate, and M365

• Preferred certifications: CISA, CIPP, CRISC, CISSP, and/or CISM

Desired Characteristics:

• Self-starter who can own all responsibilities with little to no supervision

• Experience in the development, implementation, and/or maintenance of a global enterprise IT risk and control framework

• Ability to communicate with various executives and stakeholders of every level

• Ability to understand the big picture by aligning activities to business objectives and partnering with other IT GRC functions to align on strategies and enterprise priorities

• Ability to prioritize activities based on business criticality, audits, threats, vulnerabilities, and regulatory requirements

• Experience supporting enterprise-wide technology initiatives

• Experience creating a risk-aware culture

Additional Requirements:

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-NBCUniversal worksite, most commonly an employee's residence.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $110,000 - $140,000 (bonus eligible)

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations by emailing AccessibilitySupport@nbcuni.com.

For LA County and City Residents Only: NBCUniversal will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the City of Los Angeles' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable.

Job Tags

Similar Jobs