DescriptionExperian is the power behind the data. As the leading holder of consumer and business credit data, we’re transforming data into solutions that advance industries, move companies forward and improve the lives of millions of consumers around the world. In 2015, we were named by Forbes magazine as one of the “World’s Most Innovative Companies".
Experian’s Global Security Office's vision is to protect, connect and create its business in a secure and resilient manner. Information Security is responsible for protecting information by the design and implementation of solutions and ensuring appropriate oversight.
We are growing and looking to hire Third Party Security Specialists for our Global Security Office Third Party Security team (GSO -TPS).The Global Security Office Third Party Security team (GSO -TPS) helps ensure that Experian vendors and third parties are protecting Experian data in accordance with Experian policies, contracts and best practices. This is achieved by quickly understanding the key assessment processes, entities connectivity methods, data usage and handling, internal and external standards and regulations. Director, Third Party Security is responsible for managing this organization reporting in to VP, of Business Information Security team.The Third Party Security Specialist Lead is responsible for, but not limited to, the following:Administers and manages the Experian Third Party Security program to ensure new or existing business relationships support and adhere to Experian’s information security standards and principlesConducts information security reviews of business partners and third parties using Experian processes and standards through virtual or onsite assessments.Leads in developing and improving information security assessment program designed to assess business partners and third party controls for protecting Experian dataLeads in developing, improving and implementing information security standards and requirements to guide business partners and third parties in adhering to security requirementsIdentify information security deficiencies or risks to appropriate parties. Provide escalation path for information security issues, incidents and enquiries.Partner with senior management in business, legal and compliance departments to ensure program is in line with our corporate values, compliance programs, laws and regulations, and enables the business to achieve its objectivesWorks with business partners, clients, customers, third parties and independent security assessors, to educate them about Experian’s Third Party Security requirements and assist in the interpretation and implementation of the requirements.Prepares statistical reports on compliance deficiency trends and violationsResearch, develop, deploy and implement automation and efficiency tools to maximize outputResearches laws, regulations, and policies as it pertains to information security to provide advice and assistance to internal and external partners and affiliates. Identifies potential risk issues and recommends improvements or appropriate internal controlsPartner and work with GSO teams to ensure GSO programs are deployed successfully, where applicable.
Knowledge, Experience & QualificationsQualified applicants for the Third Party Security Specialist Lead position will meet the minimum requirements as stated below:Strong leadership skills.Problem Solving & Analysis.Ability to independently lead a team.Process driven and has eye for detail.Strong verbal and written communication skills.Good collaboration and interpersonal skills, self-motivated, willingness to take on challenges and adaptability to change.CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor or comparable certifications.Knowledge of IT Risk and Security governance frameworks such as ISO 27001, PCI, and HIPAA.Good understanding of key network and technical security controls.Understanding of risks in banking/financial services sector will be an added advantage.Desired Work Experience 7 to 10 years performing IT/Information Security Reviews.