Analyst Security(Cybersecurity Governance Analyst ) at MattelInc

We are seeking a detail-oriented and highly collaborative Cybersecurity Governance Analyst to support the planning, coordination, and execution of cybersecurity audits and governance activities. This role will work within our larger cybersecurity governance program and play a key part in ensuring audit readiness, maintaining compliance with relevant cybersecurity frameworks and regulations, and driving cross-functional teams toward timely and effective control implementation.    The ideal candidate has a strong foundational understanding of cybersecurity governance, hands-on experience supporting audits, and the ability to translate control requirements into clear, actionable artifacts and responses. In this role, you will ensure the audit requests are addressed efficiently, accurately, and on time. You will ensure documentation is audit-ready, well-organized, and easy to navigate. Lastly, you will ensure the gaps are proactively identified, communicated, and remediated.    Key Responsibilities  • Coordinate and manage the logistics of cybersecurity audits, including preparation, evidence collection, response tracking, and follow-ups for internal and external audit requests.  • Interpreting and operationalize cybersecurity frameworks and regulatory requirements such as CCPA, CPRA, SOX ITGC, and NIST CSF 2.0, and other relevant cybersecurity or privacy frameworks.  • Demonstrate a deep understanding of security controls, including their intent, requirements, and how to satisfy them through well-documented artifacts, deliverables, and audit-ready narratives.  • Develop, review, and maintain audit evidence, control documentation, and standardized responses that clearly and accurately demonstrate compliance.  • Review policies, standards, procedures, and SOPs to identify gaps, inconsistencies, or areas of non-alignment with control requirements.  • Partner with technical and business teams to guide remediation efforts, clarify expectations, and help close identified gaps.  • Actively drive accountability across teams, following up on open actions and ensuring requirements are met within defined timelines.  • Track audit, governance, and compliance activities using tools such as AuditBoard (or similar platforms), maintaining clear status, ownership, and documentation.  • Provide program and audit status updates to leadership, including progress, risks, blockers, and key decisions.  • Prepare and deliver clear, concise presentations for leadership and stakeholders summarizing audit readiness, findings, and remediation progress.  • Support interactions with external auditors, including coordinating requests, clarifying responses, and ensuring timely delivery of evidence.  Preferred Qualifications  • Bachelor’s degree in Cybersecurity, IT Management, CS, Privacy & Ethics or a related field.  • 3-4 years of experience in cybersecurity governance, risk, compliance, or audit support.  • Working knowledge of cybersecurity frameworks and regulations such as NIST CSF 2.0, SOX, CCPA, PII, HSP, or similar standards.  • Strong understanding of security controls, including how controls are designed, implemented, and evidenced.  • Experience creating or managing audit artifacts, compliance documentation, and control narratives.  • Familiarity with governance and audit management tools such as AuditBoard (or comparable platforms).  • Excellent written and verbal communication skills, with the ability to explain complex requirements clearly and confidently.  • Strong organizational and project management skills, with the ability to manage multiple workstreams simultaneously.  • Proven ability to influence and drive cross-functional teams to meet compliance and audit requirements.  Preferred Skills:  • Experience working directly with external auditors.  • Exposure to privacy-related compliance efforts involving PII and data protection requirements.  • Experience presenting audit or compliance status to senior leadership.