Information Security Officer

TransUnion's Job Applicant Privacy Notice

Personal Information We Collect

Your Privacy Choices

What We'll Bring:

At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation – we’re consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
TransUnion works with businesses and consumers to gather, analyze, and deliver critical information needed to build strong economies around the world. Protection of that information is critical our customers and business. As an Information Security Consultant, you will be responsible for facilitating our Information Security function in TransUnion’s APAC region. You will support local security technologies, assist the Information Security Manager and the Global Information Security team on local projects.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.

What You'll Bring:

• 5+ years of experience in Information Security or related field.

• Degree in Computer Science or related disciplines

• One of more of the following certifications (or similar): PCI QSA, ISO 27001 Lead Auditor, CISA, CISM, CISSP, GWEB, GPEN, OSCP, CASS, etc.

• Working knowledge of industry frameworks, standards and regulatory requirements such as NIST CSF, SSAE18, PCI DSS, and ISO 27001/27002

• Experience with performing system audits and security assessments, and in interfacing with external auditors

• Experience with designing, developing and implementing security processes, controls and technologies

• Working experience with Vulnerability Management, Content Filtering, DLP, IDS/IPS, FIM and Incident Response

• Familiarity with tools such as Onspring, Brinqa, Axonius, Tanium, Rapid7 Nexpose, Seeker, CheckMarx, BeyondTrust Password Safe

• Working knowledge of identity access management, privilege management

• Working knowledge of information security in Windows and Linux operating systems as well as TCP/IP networks

• Result-oriented, independent and able to work under pressure

• Excellent attention to detail

• Self-motivated and eager to learn

Impact You'll Make:

• In close collaboration with local IT, PMO, and Global Information Security, drive execution of Information Security projects, including technology deployments, ongoing security assessments and other risk management activities

• Prepare and participate in periodic communication and presentations to local TU business and functional leaders regarding our regional security posture and direction

• Lead security audits from clients & prospects, including answering questionnaires and facilitating onsite security reviews

• Conduct internal security audits

• Facilitate certifications, as necessary and determined by the business, for SSAE18, PCI DSS, ISO27001, etc

• Perform security assessments of potential business partners

Consultant may be involved in providing support as needed including:

• Plan, implement and maintain security measures and controls

• Perform security awareness and training

• Gather, report and deliver security metrics (dashboards, KPIs, KRIs)

This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week.

 

TransUnion's Internal Job Title:

Consultant, InfoSec Risk Management & Governance