Security Compliance Analyst

About Nexon

Nexon America is a branch of Nexon Co., Ltd., a global video game publisher and leading developer of online virtual worlds for PCs, consoles, and mobile devices. Nexon proudly offers celebrated franchises like MapleStory and Mabinogi that have been enjoyed by millions of players for over two decades. When we founded our Nexon America branch in 2006, we made it our goal to bring those unique games to western players using a player-first approach. We achieve that goal by applying our team’s outstanding free-to-play expertise and live game support to every decision, every day.

But we’re committed to more than our games! Here at Nexon America, we’re all about open communication, diversity, mutual respect, and collaboration, so we can bring out the best in each other. Nexies find support, friendship, and career growth all in one place! And because we know a healthy work-life balance is the key to happiness, Nexies also enjoy flexible hours, a hybrid work model, and extra perks like food trucks, happy hours, and team events. It’s why we’ve earned the Great Place to Work certification for 5 years running!

We’re looking to expand our team with passionate individuals who want to learn, play, and grow with us. Ready for a new challenge?

Summary of Position

The Security Compliance Analyst is responsible for ensuring the security compliance of the company’s overall infrastructure and game services, including networks, web applications, game applications, and other information systems. This role involves conducting routine security assessments to identify potential risks and vulnerabilities, collaborating with relevant teams to coordinate risk remediation, and ensuring compliance with industry security standards and regulations. Additionally, the analyst is responsible for reviewing and updating security policies to address evolving cybersecurity threats and best practices, ensuring the organization remains resilient against emerging risks.

We are currently working in the office 2-3x a week in a hybrid work model.

Job Responsibilities

• Handle routine security compliance activities such as PII handler management, management of terminated employee accounts, use of General Data Protection Regulation (GDPR) knowledge, security awareness trainings, and supporting annual security audits and internal security level assessments. Assist in developing, maintaining, and updating security policies, standards, and procedures
• Support internal and external audits, including evidence collection and remediation tracking. Perform security risk assessments on systems, vendors, and processes to ensure compliance. Collaborate with internal stakeholders to address audit findings and implement corrective actions
• Planning and performing security awareness campaigns and compliance training for employees. Educate teams on policy changes and best practices to strengthen compliance
• Support security incident response efforts related to policy violations or regulatory breaches. Monitor compliance-related risks and work with relevant teams to implement mitigation strategies
• Work with legal, IT, and security teams to ensure contractual and regulatory security requirements are met. Assist in security evaluations of third-party vendors and partners

Work Experience

• 3+ years in security compliance, IT security, or related fields
• Project management experience

Education, Professional Training, Technical Training or Certification

• Working knowledge of the following areas of compliance: GDPR, CCPA, HIPAA, PCI, ISO27001
• Certifications such as CISA, CISSP, CISM, ISO 27001 Lead Implementer/Auditor, or equivalent

Knowledge/Skills

• Familiarity with security standards such as ISO 27001, SOC 2, NIST, GDPR, and PCI-DSS
• Basic knowledge of cybersecurity concepts, risk assessment methodologies, and IT security controls
• Experience assisting in security audits, policy creation, and compliance tracking
• Strong ability to communicate security policies and work cross-functionally with IT, legal, and business teams
• Comfortable with developing and delivering presentations related to security awareness training

Management has the right to add or change duties and job requirements at any time.

Nexon’s Benefits and Perks

We offer medical, dental and vision plans for you, your spouse or domestic partner and your children. Employees who enroll in the high deductible health plan receive an annual employer contribution to a health savings account and company paid hospital indemnity benefits. We also provide company paid life, AD&D, short-term and long-term disability benefits as well as access to voluntary life and AD&D for yourself and your dependents, flexible spending accounts, a 401(k) savings plan with a company match, and pet insurance. Nexies are encouraged to take advantage of our monthly wellness credit, participate in lunchtime yoga, and enroll in language classes. We host bi-monthly catered lunches, monthly happy hours, and maintain a well-stocked snack bar. To help you maintain a good work life balance, we offer paid time off, sick days, company holidays, and a year-end break.

Nexon is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law and will not be discriminated against on the basis of disability.

Compensation Description for Pay Transparency (annually)

The base salary range for this position in El Segundo, CA is $80,000 - $100,000 annually.

Our salary ranges are determined by market data based on position and level. The range displayed on each job posting reflects the minimum and maximum salaries for that position. An individual’s pay is determined by factors including, but not limited to, a candidate’s qualifications, skills, experiences, relevant education or training, and location.

Base pay is one part of the Total Rewards package that is provided to compensate and recognize employees for their work. This role may be eligible for additional discretionary bonuses/incentives, however the salary range listed in this job posting reflects the base salary only.