Experian Group
Information Security Specialist Senior
Experian Group, Costa Mesa, California, United States, 92626
Overview
The Third-Party Security Assessor undertakes general Third-Party Security reviews. There are three major aspects to this position: Conducting reviews of NEW Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements; driving security contract language and inputs into the Risk Management Process. Conducting reviews of EXISTING Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements and inputs into the Risk Management Process. Supports the Global Head of Third-Party Security to continuously improve the local Third-Party Security (TPS) Management System and ensure that it meets local regulatory, policy and business requirements.
Primary Responsibilities
Update the Third-Party inventory and program within the region. Perform security assessments for new and existing Third Parties using the Third-Party Security Framework. Support in the development and improvement of the TPS program. Provide on-demand consultancy to other teams within Information Security, Governance and the Business to assist in improving the security posture of third-party organisations. Partner with regional TPS team, regional indirect sales and procurement to ensure procedures meet regional requirements / operating practices. Identify information security deficiencies, risks and exceptions to appropriate parties as soon as possible. Ensure 1LoDownership and ensure non-compliance issues, exception justification, mitigation controls and risks are appropriately captured. Work with RISOs and other GSO governance functions - assist and / or drive remediation activities in order to mitigate security deficiencies identified. Supports the development of statistical reports on compliance deficiency trends and violations.
Experience and Skills
5+ years of experience in security field especially around security assessments or audit field. A technical background with prior hands-on experience a plus. Ability, drive and motivation to research and provide the right guidance and find possible solutions. Ability to push back where the risk outweighs the benefits. Curiosity to ask questions and challenge status quo. Strong leadership skills. Excellent verbal and written communication skills. Problem Solving & Analysis. Process driven, and has eye for detail, automation and efficiency to improve programs / processes. Good collaboration, relationship and interpersonal skills. CISA, CISM, CISSP, PCI QSA or comparable certifications required.
Additional Information
Our uniqueness is that we truly celebrate yours. Experian's culture and people are key differentiators. We take our people agenda very seriously and focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's strong people first approach is award winning; Great Place To Work in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why. Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here #J-18808-Ljbffr
The Third-Party Security Assessor undertakes general Third-Party Security reviews. There are three major aspects to this position: Conducting reviews of NEW Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements; driving security contract language and inputs into the Risk Management Process. Conducting reviews of EXISTING Third-Party entities (Supplier, Reseller, Joint Ventures) - identifying areas of conformance and non-conformance to Experian requirements and inputs into the Risk Management Process. Supports the Global Head of Third-Party Security to continuously improve the local Third-Party Security (TPS) Management System and ensure that it meets local regulatory, policy and business requirements.
Primary Responsibilities
Update the Third-Party inventory and program within the region. Perform security assessments for new and existing Third Parties using the Third-Party Security Framework. Support in the development and improvement of the TPS program. Provide on-demand consultancy to other teams within Information Security, Governance and the Business to assist in improving the security posture of third-party organisations. Partner with regional TPS team, regional indirect sales and procurement to ensure procedures meet regional requirements / operating practices. Identify information security deficiencies, risks and exceptions to appropriate parties as soon as possible. Ensure 1LoDownership and ensure non-compliance issues, exception justification, mitigation controls and risks are appropriately captured. Work with RISOs and other GSO governance functions - assist and / or drive remediation activities in order to mitigate security deficiencies identified. Supports the development of statistical reports on compliance deficiency trends and violations.
Experience and Skills
5+ years of experience in security field especially around security assessments or audit field. A technical background with prior hands-on experience a plus. Ability, drive and motivation to research and provide the right guidance and find possible solutions. Ability to push back where the risk outweighs the benefits. Curiosity to ask questions and challenge status quo. Strong leadership skills. Excellent verbal and written communication skills. Problem Solving & Analysis. Process driven, and has eye for detail, automation and efficiency to improve programs / processes. Good collaboration, relationship and interpersonal skills. CISA, CISM, CISSP, PCI QSA or comparable certifications required.
Additional Information
Our uniqueness is that we truly celebrate yours. Experian's culture and people are key differentiators. We take our people agenda very seriously and focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's strong people first approach is award winning; Great Place To Work in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why. Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here #J-18808-Ljbffr