InfoSec Risk Management & Governance Analyst - REMOTE
Johannesburg
Applications have closed
TransUnion's Job Applicant Privacy Notice
What We'll Bring:
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we’re – consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
What You'll Bring:
The candidate will be responsible for providing assurance to our customers and other stakeholders that we have a strong control environment based on best practices and industry standards, and that we are compliant with our security requirements. • Respond to security related questions from customers. These will primarily be in the form of pre-sales questionnaires and post-sales control assessments but will also be from ad hoc inquiries. This will include all related activities to ensure proper tracking, prioritization, communication with and engagement of internal functions/personnel, and complete and accurate responses to customers, by agreed upon due dates. • Review customer contracts to identify and edit security related terms and conditions to ensure requirements are addressed through existing controls or require escalation and approval by relevant management. • Assist with managing and maintaining the repository of related and supporting materials to complete questionnaires and review/edit contracts, including prior questionnaires and contracts, authoritative responses/clauses, and relevant documentation and artifacts. • Assist with customer and third-party audits. Activities include interfacing with customer and third-party auditors, completing pre-audit questionnaires, working with internal teams and subject-matter experts needed to help support audits, facilitating interviews, providing documentation and artifacts, recording, tracking, and communicating audit findings to relevant management and stakeholders, and post-audit follow ups to help ensure findings are remediated and communicated to relevant customers. • Identify opportunities to improve processes and documentation, and take actions to help drive and implementimprovements. • Develop expertise with, and stay current on, our security requirements, including security policies, standards, processes, controls, and applicable laws and regulations. • Develop a working knowledge of each customer-facing service offered by the company and their specific security requirements. • Perform all responsibilities and complete all deliverables completely, accurately, and in a timely manner or by agreed upon dates.Impact You'll Make:
We’d Love to See:
•
3 years experience in a similar role: responding to security questionnaires, reviewing/editing security requirements in contracts, and/or facilitating customer and third-party audits.
•
Experience communicating and interacting with customers, management, and internal teams, in written and verbal forms, and via video in online meetings.
•
Prior experience in IT/security compliance or information security is a plus.
transunion.com
•
Knowledge of and/or experience with security compliance certifications and standards such as SOC2, CIS, NIST CSF and 800 series, PCI, ISO 27001/2, or similar standards is a plus.
•
Must be self-motivated, proactive, well-organized, and have a positive attitude.
•
Must be comfortable in a challenging environment working on multiple tasks simultaneously with shifting priorities.
•
Relevant Tertiary qualification preferred.
It is a requirement of the Global Capability Centre Africa that you reside in a home that is fibre ready; and has space for you to be able to work comfortably and confidentially on a day-to-day basis for the purpose of your proposed employment.
A Minimum of a 100 Meg Fibre line is required, should you be successful, you will need to upgrade your line in order to work effectively.
TransUnion Job Title
Analyst, InfoSec Risk Management & Governance* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Compliance Governance ISO 27001 NIST Privacy Risk management SOC 2
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs