Systems Security Analyst II
Heredia, Costa Rica
Experian
Experian is committed to helping you protect, understand, and improve your credit. Start with your free Experian credit report and FICO® score.Company Description
About us, but we’ll be brief
Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been named in the 100 “World’s Most Innovative Companies” by Forbes Magazine. Experian prioritizes our culture and look to bring people to the team who are passionate about their jobs, who are easy to work with, and who continue to value team over self.
We have 23,000 people operating across 44 countries and every day we’re investing in new technologies, talented people, and innovation to help all our clients maximize every opportunity.
Job Description
As a part of Experian’s Global Security Office - Identity & Access Management department, you’ll be working in a team of security analysts in our IAM Assurance area.
In this role, you will be supporting our security governance activities by working through different aspects of the Information Security Management System (ISMS) currently in place. These activities are closely related to Risk Management, Policy compliance and Audit support within the identity and access management of internal users and external clients.
Summary of Primary Responsibilities
You will:
Follow documented procedures to sustain governances’ processes covered by the ISO27001 certification such as Incident/Event Management, Change Management, Business Continuity, Documentation Management, and others.
Act as document custodian for IAM Assurance procedures to ensure regular revisions for accuracy and relevance.
Familiarize yourself and understand the control requirements from Experian's policies and standards that apply to IAM function and can articulate how the IAM team comply with these.
Demonstrate a clear understanding of key IAM platforms and processes and act as IAM SME providing expert technical and procedural input for both Internal and Client audits to ensure swift response, ownership of communication and regular updates.
Pick up, interpret, and complete request for audit evidence on multiple types of controls (i.e. Access Provisioning/Deprovisioning, Access Reviews, Account inactivity controls, Privilege Access Management, Segregation of Duties, etc.)
Participate in risk assessments and/or gab analysis conducted on IAM platforms/processes to identify opportunities to increase the IAM's team maturity.
Champion an agile culture that favors collaboration and innovation to achieve business goals, think outside the box to come up with better and quicker ways to deliver tasks.
Qualifications
What your background looks like
Has demonstratable experience and/or an understanding of:
Basic security concepts and technologies in the wider Identity and Access management space (Logical Access Controls, RBAC, Segregation of Duties, User Access Reviews, Privilege Access Management, etc.).
Working knowledge of SailPoint, Okta, CyberArk, AD, Mainframe.
Confidently talk through security processes to third parties (internal and external auditors)
Professional cybersecurity relevant certifications such as Security+ (CompTIA), ISSMP or SSCP are considered a plus.
Familiarity with ISO27001 framework is considered a plus.
Desired skills:
Work to tight deadlines, paying attention to detail and respecting the confidentiality of the information.
Strong written and spoken communication skills. Be able to articulate technical subjects to a non-technical audience.
Adjust stakeholder communication to align with audience diversity.
Strong information analysis and interpretation.
Use available technology to enhance the effectiveness of deliverables and services.
Experience with reporting tools (via SQL, PowerBi or similar) or the desire to learn it is considered a plus.
Experience with automation tools (via RPA, GenAI or similar) or the desire to learn it is considered a plus.
Years of Experience: 2 to 4 years.
Additional Information
Culture at Experian
Our uniqueness is that we truly value yours.
Experian's culture, people, and environments are key differentiators. We take our people's agenda very seriously. We focus on what truly matters; diversity and inclusion, work/life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering... the list goes on!
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it ensures that we live what we believe.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Automation Compliance CompTIA Cyberark Generative AI Governance IAM ISMS ISO 27001 Mainframe Okta Risk assessment Risk management SailPoint SQL SSCP
Perks/benefits: Career development Flex hours Flex vacation Medical leave Salary bonus Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Threat intelligence-related jobs
- Open DoD-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open TS/SCI-related jobs