Information Security Controls Automation Specialist - PIPELINE

This is a pipeline requisition for future roles. While there's no immediate opening, we're collecting profiles for upcoming opportunities.

As an Information Security Controls Automation Specialist, you will be part of a team responsible for evaluating and testing the effectiveness of security controls both on-premises and in the cloud, to ensure they are robustly designed and implemented to safeguard Experian's assets. You will automate the review of security controls by reducing manual effort and increasing assessment efficiency. You will blend cybersecurity governance, risk and compliance (GRC) and automation engineering to refine evidence collection and control validation crucial for supporting the security organization's control assurance program. You will collaborate with control owners, engineers, and the security control assurance team to identify automation opportunities, implementing scripts or integrations for both on-prem and cloud environment tools and validating outputs against the security controls and defined test steps.

Reporting to the Information Security Control Assurance Senior Manager.

Summary of Primary Responsibilities

• Analyze and automate existing manual test steps for assessing operating effectiveness of security controls in both cloud and on-prem environments
• Develop automated control mechanisms (e.g. scripts, APIs, compliance dashboards), integrating validation logic into CI/CD pipelines, cloud environments, and endpoint tools.
• Ensure continuous control monitoring (CCM) by developing reusable logic and ensuring automated controls produce evidence fit to support control assessments.
• Develop dashboards visualizing compliance status and resolve platform integration errors.
• Analyze false positives and lead remediation of those indicators.
• Maintain a control automation backlog and document all automated control logic, control mappings and system configurations.

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to accomplish their financial goals and help them save time and money.

We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com.

• 5+ years of experience in automation development.
• A bachelor's degree in computer science, management information systems, relevant field, or equivalent demonstrable experience.
• Knowledge of security tooling (e.g. SIEM, Identity and Access Management platforms, DLP), cloud platforms (AWS, GCP, Azure), Infrastructure as Code (Terraform) and scripting languages (e.g. Python). Experience with workflow platform such as tines.io is beneficial.
• Knowledge of cloud architecture and cybersecurity domains and principles.
• Professional certification such as AWS Solutions Architect, CCSP, CISSP, CRISC, ISO 27001 Lead Auditor, or equivalent.
• Experience with information security control testing methodologies, information security risk assessments, and auditing tools is beneficial.
• Knowledge of security controls provided by tools such as Sailpoint, Rapid7, Wiz.io, and MS Defender is beneficial.
• Hands-on experience with API integrations and scripting (e.g. Python, PowerShell, JavaScript).
• Experience with IT Service Management, DevOps, Identity and access management, ERP systems (e.g., SAP, Oracle) and GRC tools are beneficial.
• Experience using automation, data-driven testing techniques and generative AI to gain efficiency in control assurance.

Desired Competencies:

• Proficiency in both automated and manual testing of information security controls.
• Experience leading small group meetings and communicate complex ideas.
• Familiar with ambiguous or undefined control scenarios.
• Experience researching and apply knowledge about new technologies in control testing scenarios.

This is a permanent home-based role in Costa Rica. No relocation available.

Our benefits include: Medical, life, vision and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Birthday day off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.

Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, collaboration, wellness, reward and recognition, volunteering... the list goes on. Experian's people first approach is award-winning; World's Best Workplaces™ 2024 (Fortune Top 25), Great Place To Work™ in 24 countries, and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

#LI-Remote

This is a remote position.