Cybersecurity Risk and Compliance Specialist
San Jose, Costa Rica
Applications have closed
Experian
Experian is committed to helping you protect, understand, and improve your credit. Start with your free Experian credit report and FICO® score.Company Description
Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been named in the 100 “World’s Most Innovative Companies” by Forbes Magazine. With a focus on our employees, we have been certified for the third time as Great Place To Work (GPTW). Experian Consumer Information Services is redefining the way our clients do business within all aspects of the customer credit lifecycle. Fueled by best-in-class data and innovative technology we help businesses make smarter decisions, identify consumers, make decisions on loans, market to prospects and collect.
Job Description
Experian Employer Services (EES) is seeking a dynamic professional to join its Data & Enablement team as Cybersecurity Risk and Compliance Specialist. This new position will be instrumental in evaluating existing processes for enhanced improvement opportunities of acquired companies providing Employer Services while assisting with compliance objectives and managing risks. We seek a candidate eager to join a start-up atmosphere, someone who can adapt readily, instill confidence in internal and external partners and drive results. Comfort with ambiguity and a high aptitude for adaptability are necessary.
As the ideal candidate, you’ll need to be able to track requests in a fast-paced, collaborative environment, and have a strong drive for accomplishment. You must be comfortable with prioritizing simultaneous requests in a professional manner, communicate technical concepts effectively and precisely both verbally and in writing to a diverse team of internal and external partners. The ability to raise issues before they turn into problems is critical. Strong organization, time management, problem solving, and communication skills are essential. The ideal candidate also brings creative and strategic solutions to the table to help solve complex problems and is someone who acts as a change agent to evolve processes and challenge current thinking.
In this role, the ideal candidate will have a strong drive for results, interpersonal skills, positive attitude and be comfortable managing and coordinating cross-functional teams. This individual must have a strong business acumen to collaborate with key stakeholders to support strategic business, data, and enablement initiatives. You’ll need to be able to negotiate with stakeholders on priorities, have a strong drive to provide excellent service to business partners, and represent Experian’s policies and procedures with uncompromising accuracy. You will be asked to represent business processes and product features across the product suite. You must be comfortable with seeking clarity when presented with ambiguity, shifting priorities and be a world class problem solver, working across functional units to ensure client satisfaction. You will be accountable for building exceptional experiences for the EES portfolio of capabilities. You should be excited to partner with a broad array of internal stakeholders including other members of our world-class Security, Development, Product, Sales, Legal, Compliance, and Marketing teams.
Key Responsibilities:
- Comprehension of U.S. national and international laws, regulations, policies, and ethics related to financial industry cybersecurity
- Create, maintain, and communicate list of applicable regulations and requirements (PCI-DSS, Privacy, FedRAMP, etc.)
- Assist with developing controls, assessing evidence, and identifying gaps for remediation to meet compliance objectives
- Be familiar with inherent risks, controls, and residual risks as applicable for companies in the technology industry
- Knowledge of risk frameworks (NIST, ISO, COSO, etc.)
- Appreciation of basic security testing methods and technologies, including penetration testing, web application security assessments, vulnerability assessments, etc.
- Respond to client risk assessments, report status, and escalate as needed for each assessment
- Determine if responses to auditors and assessors accurately represents risk
- Maintain a database of responses to common questions as found in risk assessments
- Work with business partners to streamline data collection process
- Assist with tracking and remediating control gaps
- Ensure documentation provided to clients and regulators is current
- Assist with coordination and negotiation of internal and external audits to minimize business disruption
- Support development of security processes and procedures to ensure that security controls are managed and maintained
- Drive efforts to ensure consistency of controls across the business unit
- Assist in identifying potential risks that might negatively affect the business or security of data
- Act as a liaison between different clients, stakeholders, and business owners to ensure accurate risk and control information is being documented
- Developing a comprehensive understanding of operational processes and business strategies.
- Strong collaboration and self-management skills.
- Ability to work well in a dynamic, fast-changing environment that requires a high degree of multitasking
- Build relationships with key stakeholders across the organization to ensure buy-in, maintain compliance, identify improvement opportunities, and expand or reduce activities as needed.
- Demonstrate subject matter expertise across the organization by exuding deep knowledge to drive collaboration with internal stakeholders as well as clients and partners.
- Mentor teammates on processes, best practices, prioritization, and issue resolution.
- Flexibility to be a utility player where needed as this business evolves.
Qualifications
·
- 1-3 years previous experience in risk, vendor management, audit, or equivalent -- preferably with a technology company or financial institution
- 1-3 years previous experience working with SaaS solutions
- Excellent problem solver, who can resolve issues effectively and creatively while maintaining a high level of integrity, confidentiality, and professionalism.
- Action-oriented team player with strong prioritization, operational, and planning skills
- Ability to listen intently, read policies and technical descriptions, and analyze information
- Conscientious self-starter, with a work attitude that exhibits flexibility, initiative, good judgment, and dependability.
- Consensus-building abilities with a proven track record of coordinating and mobilizing resources productively.
- Outstanding presence and solid communication skills, both written and verbal, who effectively communicates at all levels of the organization.
- Proven success navigating large, matrixed organizations.
- Ability to manage multiple projects and competing priorities
- Collaborative associate who excels at building relationships across all levels.
- Enterprise-level B2B experience working on a cross-functional team.
- Bachelor’s degree or equivalent.
Preferred Experience:
- Industry certifications such as CISA, CRISC, or equivalent
- Ability to balance strategic thinking with attention to detail and pragmatic execution.
- Enterprise-level B2B experience working on a cross-functional team.
- Strong communication skills (verbal and written)
- Knowledge of human capital management systems and/or HR/Payroll/Tax related product offerings.
- Confident in managing relationships across sales, business, and technical teams, both face-to-face and remotely.
- Experience working at a technology company or consulting firm.
Additional Information
Our benefits include: Medical, life and dental insurance, Asociación Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it ensures that we live what we believe.
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it ensures that we live what we believe.
#LI-REMOTE #LI-SA1
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it ensures that we live what we believe.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits CISA Compliance CRISC FedRAMP NIST Pentesting Privacy Risk assessment SaaS Security assessment Vendor management
Perks/benefits: Career development Medical leave Salary bonus Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open IPS-related jobs
- Open CEH-related jobs