Senior Information Security Specialist - Heredia, Costa Rica - Experian

Experian

Empresa verificada

Heredia, Costa Rica

hace 1 semana

Publicado por:

Andrea Rodríguez

beBee Recruiter

Descripción

Fulltime

Employee Status:
Regular

Role Type:
Hybrid

Department:
Legal & Compliance

Schedule:
Full Time

Shift:
Day Shift

Company Description:

Experian is the world's leading global information services company. During life's big moments from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers we empower consumers and our clients to manage their data with confidence.

We help individuals to take financial control and access financial services, businesses to make smarter decisions and thrive, lenders to lend more responsibly, and organizations to prevent identity fraud and crime.

As the world's leading repository of consumer credit data, Experian is transforming data into solutions that facilitate transactions, ensure financial safety and improve the financial lives of millions of consumers around the world.

We have been named by Forbes magazine as one of the "World's Most Innovative Companies" and ranked on Fortune's Best Companies to work for.

The Client Security Assurance team is the function within Experian's Global Security Office (EGSO) which provides B2B clients assurance that Experian's control environment is the secure choice for them.

CSA provides pre
and postsales security support through RFP's / RFI's and contract negotiations, as well as supporting the ongoing maintenance of relationships through responses to questionnaires, clientled audits of the security controls, and respond to adhoc security inquires related to emerging threats.

This role interfaces with Experian internal and external stakeholders; having strong communication skills is of paramount importance.

Main Responsibilities**With a clientfocused attitude:

Manage client audits (on
site or virtual) including presentation of evidence, explanation of controls, planning and co
ordination of pre and post audit activities.

Support commercial teams to present Experian's security controls and risk posture to clients through Requests for Information / Requests for Proposal and/or presales consultancy. Review contractual security clauses & deliverables under agreements to ensure Experian does not exceed risk tolerance or be put in a position where it fails in its ability to meet client requirements. Take the lead on articulating Experian's security posture to justify any changes with clients. Ability to articulate contractual risks to the business unit to enable riskinformed contractual decisions Provide accurate, valid, and appropriate responses in a timely manner to security questionnaires and adhoc inquiries sent by prospective and existing clients and business partners Provide SME consultancy to Business Units on Experian information security governance and risk management framework in the context of the above Maintain clientfacing security documentation ensuring its continued relevance and accuracy Collaborate with global team members across regions to ensure consistent experiences for clients around the world, and act as a mentor to junior members in sharing knowledges and experiences Strive to add value to internal and external stakeholders through various interactions Manage clientrelated projects and other duties as assigned
Qualifications:
Required key skills Strong understanding of key network and technical security controls Investigative and critical thinking skills for addressing findingsRobust documentation skills Excellent written and verbal communication skills with the ability to effectively tailor communication of technically complex issues to various audiences Strong project management/organization and client management skills to handle multiple tasks and control expectations of clientimposed deadlines (and internal stakeholders) Takes ownership of stakeholders concerns and follows through to resolution Process driven, and has eye for detail, automation, and efficiency to improve programs/processes Experienced with use of collaboration tools such SharePoint, Confluence, ServiceNow and Salesforce Growth mindset and hunger for learning and evolving
Required Qualification/Experience Fluent in English Project management skills and the ability to coordinate and lead varying audits (and projects) of varying complexity At least 5 years of experience working in an enterprise IT environment with at least 3 of those years working in information security solutions or services, with exposure to supporting roles Preferable: 35 years of experience in client facing aspect as an auditor or auditee, consulting, account management, responding to Security/Operational/Process questionnaires, bids, RFP, proposals, etc. Legal background is also preferred Experience in supporting the sales process from an information security or IT operations perspective Experience with reviewing and negotiating contractual terms presented by clients / third parties and un