Sr Security Compliance Analyst

 At Hasbro, our mission is to inspire imagination in children and adults alike. We believe the best experiences come from people who love what they do, in an environment that values them and their ideas. We ensure that everyone has the opportunity to contribute to our collective success, whatever their role. As a leading global play and entertainment company, we help enrich a catalog of games and toys that has inspired generations. You get to play your part as a valued member of an open and dedicated team within a magical world of play and imagination. 

The Sr Security and Compliance Analyst plays a key role in safeguarding Hasbro’s technology landscape by ensuring our security controls are practical, measurable, and aligned with regulatory requirements. This role focuses on improving how compliance is managed, tracked, and reported through efficient processes and data informed insight.

Primary Responsibilities

• Develop and maintain information security policies and standards aligned to frameworks such as ISO 27001, NIST, SOX, GDPR, and HIPAA, ensuring requirements are clearly understood and actionable.
• Translate regulatory requirements into practical, measurable controls and work with process owners to implement and sustain them effectively.
• Improve and streamline compliance processes by collaborating with system owners and team members to automate evidence collection, control tracking, and reporting where possible.
• Support internal and external audits by coordinating documentation across teams and demonstrating control effectiveness through clear, organized evidence.
• Develop and lead phishing simulation campaigns and collaborate with leaders to address behavioral risk trends and strengthen awareness.
• Develop targeted security awareness content tailored to different employee audiences to promote a strong and balanced security culture.
• Perform vendor risk assessments and broader security risk analyses in coordination with business and technology teams.
• Build clear, executive ready reports and dashboards that provide relevant insight into compliance posture and human risk trends.
• Identify and implement AI-enabled automation opportunities to streamline audit, compliance, and control validation processes.
  
  

What You Will Bring

• Degree in Computer Science, Information Systems, or related field or equivalent experience.
• 5 or more years of experience in information security, IT compliance, or risk management.
• Strong working knowledge of regulatory standards including ISO 27001, the NIST Cybersecurity Framework, SOX, GDPR, and HIPAA.
• Experience developing and maintaining security policies and translating requirements into operational controls.
• Hands on experience running phishing simulations and analyzing awareness metrics.
• Ability to interpret data and identify trends that inform risk decisions.
• Experience improving or automating recurring compliance or audit processes preferred.
• Strong written and verbal communication skills with the ability to create concise, executive ready summaries.
• Collaborative approach and ability to work effectively across technical and non technical teams.