Job Description

What We\'ll Bring: This position is responsible for developing and implementing operational strategies, planning of day-to-day operational oversight of information security programs, operations, and compliance, creating, and maturing processes, driving effectiveness in the cybersecurity space across TransUnion. The role will be to work collaboratively with other teams across the organization to ensure compliance with legal and regulatory requirements.

What You\'ll Bring: \xe2\x80\xa2 Being knowledgeable: Knowledge of security latest and best practices, methodologies, and tooling \xe2\x80\xa2 Raising Awareness: Disseminating Security best practices, raising and maintaining continual security awareness around issues/ threats with the development organization and answering security related questions and discussing areas of improvements. \xe2\x80\xa2 Being Part of Security: Scanning for security issues and being the go between to escalate issues for reviews by the security team, helping in QA and testing. Involve in risk and security assessments and architecture and tooling reviews to identify opportunities to remediate security issues. \xe2\x80\xa2 Getting and Maintaining Buy-in: Intrinsic to the program and speaking to developer community to get the buy-in in the way they understand to produce secure products early in SDLC increasing the effectiveness and efficiency of AppSec program while strengthening relationship across multifunctional teams and minimizing bottlenecks downstream. \xe2\x80\xa2 Collaboration: Connecting and partnering with other security champions and players, sharing ideas and tips whilst assisting in making security decisions. \xe2\x80\xa2 Review and Escalation: Evaluating applications for security issues and taking responsibility for raising issues that require involvement of security and other teams in resolution. \xe2\x80\xa2 Inspiration: Creating team workshops, sharing best practices, adapting to industry changes, conducting hackathons, and competitions. \xe2\x80\xa2 Site Champion: A force multiplier who can address questions, ensure security awareness, understand organizations region specific requirements, and help enforce security best practices across region following country specific guidelines. What you\xe2\x80\x99ll do on a typical day: \xe2\x80\xa2 Enable the implementation and operationalization of numerous security controls. \xe2\x80\xa2 Develop and drive alignment of overall security operations vision and roadmap \xe2\x80\xa2 Implement consistent measurement and visibility of results, dependencies, and connection points across multiple stake holders throughout the enterprise \xe2\x80\xa2 Ensure risk-driven security roadmaps are effectively prioritized based on context and metrics. \xe2\x80\xa2 Drive strategy by partnering with different functional domain units within and across enterprise. \xe2\x80\xa2 Lead global operations teams responsible for responding to security incidents, assembling the relevant supporting data and appropriately work on remediation. \xe2\x80\xa2 Manage budget, ensure investment of resources are driven by data and metrics \xe2\x80\xa2 Ability to influence peers and executive leaders of organizations and communicate ideas and capabilities into effective initiatives that exceed expectations.

Impact You\'ll Make: What you will need to succeed: \xe2\x80\xa2 Experience in designing and leading fusion centers in Security Operations Center and Security Engineering Leadership. \xe2\x80\xa2 10+ years of experience in cyber security operations, vulnerability management, security engineering and architecture. \xe2\x80\xa2 7+ years of experience in team leadership \xe2\x80\xa2 Experience in designing solutions using engineering methodologies. \xe2\x80\xa2 Experience in assessing cybersecurity maturity by building multi-year roadmaps to advance maturity. \xe2\x80\xa2 Working knowledge of security, risk and control frameworks and standards leveraging MITRE ATT&CK, CIS, NIST, PCI etc., \xe2\x80\xa2 Experience managing cyber threat investigations and keen understanding of current and future cyber threat landscape. \xe2\x80\xa2 Experience in integrating Cyber Security Incident Response and Vulnerability management functions through automation. \xe2\x80\xa2 Conduct periodical tabletop exercises for improvement and maturity. \xe2\x80\xa2 Ability to make decisions based on data and provide insights across enterprise on various security opportunities. \xe2\x80\xa2 Build, mentor, coach and hire talent team(s) to make security an engineering organization. \xe2\x80\xa2 Demonstrated leadership and people management skills. \xe2\x80\xa2 Hands on security expert well versed in cyber security, application security, security operations, end point security. \xe2\x80\xa2 Technical abilities to have: \xe2\x80\xa2 Hands on experience in leading, managing and operating a distributed 24/7 security operations \xe2\x80\xa2 Technical knowledge of security security technologies EDPR, Vulnerability Scanners, SOAR, Security Analytics etc., \xe2\x80\xa2 Previous experience roles working in incident response, threat intel, vulnerability management, counter measures and internal threat. \xe2\x80\xa2 Experience in optimizing and improving playbooks, run books, and performance measures. \xe2\x80\xa2 Strong, demonstrable program management running multiple security engineering teams Who We Are At TransUnion, we are dedicated to finding ways information can be used to help people make better and smarter decisions. As a trusted provider of global information solutions, our mission is to help people around the world access the opportunities that lead to a higher quality of life, by helping organizations optimize their risk-based decisions and enabling consumers to understand and manage their personal information. Because when people have access to more complete and multidimensional information, they can make more informed decisions and achieve great things. Every day TransUnion offers our employees the tools and resources they need to find ways information can be used in diverse ways. Whether it is helping businesses better manage risk, providing better insights so a consumer can qualify for his first mortgage or working with law enforcement to make neighborhoods safer, we are improving the quality of life for individuals, families, communities and local economies around the world. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.

TransUnion Job Title

Consultant, InfoSec Engineering

TransUnion