Systems Security Engineer
Cyberjaya, Malaysia
Applications have closed
Experian
Experian is committed to helping you protect, understand, and improve your credit. Start with your free Experian credit report and FICO® score.Company Description
About Experian
Experian is the world’s leading global information services company. During life’s big moments — from buying a home or a car to sending a child to college to growing a business by connecting with new customers — we empower consumers and our clients to manage their data with confidence. We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.
We have 17,800 people operating across 44 countries, and every day we’re investing in new technologies, talented people and innovation to help all our clients maximize every opportunity. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index.
Learn more at www.experianplc.com or visit our global content hub at our global news blog for the latest news and insights from the Group.
Job Description
In this role, you will be responsible for ensuring that vulnerability and configuration management policy requirements are followed and adhered to on Experian system topologies. You will collaborate with security, infrastructure and DevSecOps teams to ensure system vulnerabilities and misconfigurations are identified and managed. You will work proactively to drive remediation efforts, providing guidance and background information as needed. You will gather and monitor progress on remediation plans. You will collect and report pertinent metrics to your business partners to identify trends and establish priorities.
Functions
- Prioritize newly identified vulnerabilities based upon severity, potential operational impact, exploitation, and other factors to assess risk to Experian.
- Identify new and emerging threats and address them strategically and tactically as required.
- Engage with infrastructure and application partners to ensure vulnerability management strategy is understood, agreed to and implemented.
- Support delivery of policy metrics for infrastructure and application scanning.
- Review vulnerability metrics associated with affected and non-compliant infrastructure and applications, identify trends and track remediation.
- Escalate to management when vulnerability trends are not improving over time.
- Utilize tracking tools/capabilities in a vulnerability management system to report vulnerability mitigation and remediation progress.
- Evaluate vulnerability scans for operational readiness and validate if vulnerabilities are false positives based on the Operating system and/or and application configuration.
- Provide guidance and educate business partners in risk management principles and practices.
- Educate business partners in the need to remove vulnerabilities from Experian assets and applications.
- Identify opportunities to enhance existing processes, especially where automation can be applied.
- Drive innovation targeting ongoing reductions in vulnerabilities.
- Proactively review policy to identify enhancement opportunities.
- Train and/or mentor other team members and peers as appropriate.
Qualifications
Knowledge, Experience & Qualifications
- Bachelor’s degree in Computer Sciences or related field or equivalent experience. Candidates with cybersecurity certifications such as CISSP, GSEC, Security+, etc. are preferred.
- Experience with vulnerability and configuration scanning tools. Candidates with Rapid7, wiz.io, Expanse, BlueCat, CloudHealth and/or Panaseer experience are preferred.
- Experience performing risk assessments and vulnerability analysis to advise business partners on remediation planning.
- Passion to work on newer technologies and explore the security domain.
- Excellent problem-solving capabilities.
- Strong written and verbal communication skills.
Additional Information
Adhere to Experian policies and procedures
- Work under the Experian behaviours and values
- Facilitate and drive performance management processes
- Champion a culture where the fair treatment of customers is at the heart of the Experian business
- Ensure that by leading by example, you adhere to all regulatory requirements and apply appropriate controls in the interests of customers. Through the adoption of a top down approach, demonstrate a culture where all our people understand their regulatory obligations, including what the fair treatment of customer’s means to them and our organization
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation CISSP DevSecOps GSEC Risk assessment Risk management Strategy Vulnerabilities Vulnerability management Vulnerability scans
Perks/benefits: Flex vacation
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs