InfoSec Risk Management & Governance Analyst - REMOTE

TransUnion's Job Applicant Privacy Notice

What We'll Bring:

At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we’re – consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.

What You'll Bring:

The candidate will be responsible for providing assurance to our customers and other stakeholders that we have a strong control environment based on best practices and industry standards, and that we are compliant with our security requirements. • Respond to security related questions from customers. These will primarily be in the form of pre-sales questionnaires and post-sales control assessments but will also be from ad hoc inquiries. This will include all related activities to ensure proper tracking, prioritization, communication with and engagement of internal functions/personnel, and complete and accurate responses to customers, by agreed upon due dates. • Review customer contracts to identify and edit security related terms and conditions to ensure requirements are addressed through existing controls or require escalation and approval by relevant management. • Assist with managing and maintaining the repository of related and supporting materials to complete questionnaires and review/edit contracts, including prior questionnaires and contracts, authoritative responses/clauses, and relevant documentation and artifacts. • Assist with customer and third-party audits. Activities include interfacing with customer and third-party auditors, completing pre-audit questionnaires, working with internal teams and subject-matter experts needed to help support audits, facilitating interviews, providing documentation and artifacts, recording, tracking, and communicating audit findings to relevant management and stakeholders, and post-audit follow ups to help ensure findings are remediated and communicated to relevant customers. • Identify opportunities to improve processes and documentation, and take actions to help drive and implementimprovements. • Develop expertise with, and stay current on, our security requirements, including security policies, standards, processes, controls, and applicable laws and regulations. • Develop a working knowledge of each customer-facing service offered by the company and their specific security requirements. • Perform all responsibilities and complete all deliverables completely, accurately, and in a timely manner or by agreed upon dates.

Impact You'll Make:

We’d Love to See:
•
3 years experience in a similar role: responding to security questionnaires, reviewing/editing security requirements in contracts, and/or facilitating customer and third-party audits.
•
Experience communicating and interacting with customers, management, and internal teams, in written and verbal forms, and via video in online meetings.
•
Prior experience in IT/security compliance or information security is a plus.
transunion.com
•
Knowledge of and/or experience with security compliance certifications and standards such as SOC2, CIS, NIST CSF and 800 series, PCI, ISO 27001/2, or similar standards is a plus.
•
Must be self-motivated, proactive, well-organized, and have a positive attitude.
•
Must be comfortable in a challenging environment working on multiple tasks simultaneously with shifting priorities.
•
Relevant Tertiary qualification preferred.

It is a requirement of the Global Capability Centre Africa that you reside in a home that is fibre ready; and has space for you to be able to work comfortably and confidentially on a day-to-day basis for the purpose of your proposed employment.

A Minimum of a 100 Meg Fibre line is required, should you be successful, you will need to upgrade your line in order to work effectively.

TransUnion Job Title

Analyst, InfoSec Risk Management & Governance