Information Security Controls Specialist Senior
- Heredia
- Legal & Compliance
- Permanent
- Hybrid
- Full Time
As a Senior Control Assurance Assessor, you'll test security controls both on-premise and in the cloud to ensure design implementation, safeguarding Experian's assets. You'll assess control design, performance, and compliance with standards and regulations, reporting to the Information Security Control Assurance Testing Manager. Identifying gaps, documenting findings, and recommending improvements to mitigate risks are important responsibilities. Using data-driven testing techniques and a defined methodology, you'll collaborate to ensure controls meet current risks and regulatory requirements.
Primary Responsibilities
- Conduct security control assessments, using documented control activities (where they exist) and regulatory requirements.
- Develop test plans, test cases, and procedures, applying data from security tools to capture evidence.
- Use queries and dashboards to identify potential control failures as part of the control testing process.
- Ensure the accuracy and timely completion of control testing, providing peer review.
- Document findings, including root cause analysis and applicable recommendations for remediation.
- Be the primary liaison with partners, delivering clear progress updates and results.
- Contribute lessons learned by integrating partner feedback to improve the control testing program.
About us, but we'll be brief
Experian is the world's leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and society.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to accomplish their financial goals and help them save time and money.
We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. Also, for the last five years we've been named in the 100 "World's Most Innovative Companies" by Forbes Magazine. Experian prioritizes our culture and look to bring people to the team who are passionate about their jobs, who are easy to work with, and who continue to value team over self.
We have 23,000 people operating across 44 countries and every day we're investing in new technologies, experienced people, and new ideas to help all our clients maximize every opportunity.
What your background is
- A bachelor's degree in computer science, management information systems, or a relevant field, or equivalent demonstrable experience.
- 5+ years' of experience in Information Security or Information Technology
- 3+ years' experience performing IT Audit or security control testing.
- Knowledge of internal audit methodologies, including risk assessment, execution, and reporting.
- Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001/27002).
- Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws.
- Experience with sector-specific frameworks (e.g., HIPAA, PCI).
Technical Skills
- Proficiency with security tools (SailPoint, Rapid7, Wiz.io, MS Defender, SIEM, vulnerability management, penetration testing).
- Knowledge of cloud technologies (AWS, Azure).
- Experience using generative AI (e.g., ChatGPT) for test strategies, reports, and communications.
- Skills in automation and analytics tools (Excel, Tableau, Alteryx, or PowerBI).
- Create queries and reports in RSA Archer and ServiceNow.
- Familiarity with Kanban boards and Jira.
Desired Competencies
- Understanding of cybersecurity principles and organizational requirements.
- Experience applying governance, risk, and control principles.
- Experience in automated and manual testing of security controls.
- Experience facilitating meetings and conveying complex ideas.
- Data collection, validation, analysis, and interpretation.
- Experience Researching and applying latest technologies.
- Experience with Agile methodology.
- Big 4 accounting experience.
- Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent.
This is a permanent hybrid role in Costa Rica. No relocation available.
Culture at Experian
Our uniqueness is that we value yours.
Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work/life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering... the list goes on!
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
Experian Careers - Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
#LI-Hybrid
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a successful, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is necessary to our purpose of creating a better tomorrow. For us, this is The Power of YOU and it ensures that we live what we believe.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hub
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
As a Senior Systems Administrator, you will assist and expedite the diagnosis and resolution of incidents and requests assigned to the Colleague Technology Support group following agreed service level
Reference
a15bf8b7-8452-4822-ac98-e4779635dfbf
Expiry Date
01/01/0001
Salary
Location
Bogotá, Colombia
Experience Level
Not Applicable
Employment
Permanent
Location
Bogota
Role Type
Hybrid
Schedule
Full Time
Department
Administration & Office Support
Brand
Experian
Remote working available
No
Description
👩💼👨💼 Propósito del Rol: Serás responsable de brindar soporte administrativo y organizativo de alto nivel, asegurando el manejo eficiente de agendas ejecutivas, coordinación de reuniones, viajes
Reference
3ef73626-1d45-49ab-9810-3cbbaca2855e
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Professional Services department provide Data Quality consultancy services to assist our customers achieve their Data Quality goals. The department is also responsible for providing pre-sales supp
Reference
0234bd6b-5b51-4b60-843c-1658afe73ede
Expiry Date
01/01/0001
Salary
Location
Allen, United States
Experience Level
Not Applicable
Employment
Permanent
Location
Allen
Role Type
Home
Salary Range
$87,248 - $151,230
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
Yes
Description
Reporting to the Threat Detection Manager, the Security Engineer will work with the our teams, including cyber threat intelligence analysts, SOC analysts, threat detection engineers, server and networ
Reference
bda47954-3a69-459e-9f9b-4149cbe6f9e0
Expiry Date
01/01/0001
Salary
Location
Sofia, Bulgaria
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Sofia
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Reporting into Engineering Director, you will be part of our ESS Analytics team that is accelerating Experian's impact by bringing together data, tech, and data science and build game-changing product
Reference
9fb5f556-cefc-455d-bef4-2208e09a39e3
Expiry Date
01/01/0001
Salary
Location
Costa Mesa, United States
Experience Level
Not Applicable
Employment
Permanent
Location
Costa Mesa
Role Type
Home
Salary Range
$148,617 - $267,510
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
Yes
Description
Job description Experian's Direct-to-Consumer (D2C) business is looking for a Director of Product to lead our expanding Insurance vertical. You will define and deliver a holistic insurance experience,
Reference
a9cd68c0-cc53-43a9-86c9-2b9d4d4b34c4
Expiry Date
01/01/0001
Salary
Location
Bogotá, Colombia
Experience Level
Not Applicable
Employment
Permanent
Location
Bogota
Role Type
Hybrid
Schedule
Full Time
Department
Human Resources
Brand
Experian
Remote working available
No
Description
Descripción general del área: Recursos Humanos está compuesto de 3 gerencias que soportan todos los procesos que desde el área acompañan al negocio. Talento & HR Ops, Compensación, Beneficios & HRBP’s
Reference
53d3faf0-9a70-4f93-8d81-f795d6055e71
Expiry Date
01/01/0001
Salary
Location
Allen, United States
Experience Level
Not Applicable
Employment
Part-time
Location
Allen
Role Type
Hybrid
Salary Range
$62,101 - $107,642
Schedule
Part Time
Department
Administration & Office Support
Brand
Experian
Remote working available
Yes
Description
The Junior EA will support daily executive activities through calendar management, travel coordination, and administrative tasks.Reporting to the SVP Global Finance Systems & Automation, the EA provid
Reference
fb9e46c4-7b39-4a12-bb9c-2ba4c4aac329
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Executive
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Administration & Office Support
Brand
Experian
Remote working available
No
Description
Why this role is important to usAs an Executive Assistant you will provide organisational and administrative support to our Chief Information Officer and members of the Leadership team.This is a hybri
Reference
52fb9545-bb30-4940-9a20-851b7398d48e
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
Job description As a Product Owner, much of your time will be spent writing requirements, participating in the Agile development ceremonies, leading backlog refinement sessions, helping scrum teams wi
Reference
e3dc7ae5-63ef-4c54-82bb-50ed71d4a6ad
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
It's an exciting time within Marketing Services as we build new capabilities that provide unparalleled access to consumer demographic, lifestyle, and transactional insights. Our advanced digital ID gr
Reference
6ec78dd3-886a-47ea-a12b-ce5d23c722b9
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
Internal Grade DThe mission of the Business Intelligence function is to become the center of excellence across Service, providing trusted data and insights to our partners in a simple way. We want to
Reference
f49104cb-2b5c-4b2b-bba1-8b95145be192
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
Job description As a Product Owner, much of your time will be spent writing requirements, participating in the Agile development ceremonies, leading backlog refinement sessions, helping scrum teams wi
Reference
566a1048-e8f6-424d-b57e-73b834e8bb05
Expiry Date
01/01/0001
Salary
Location
Cyberjaya, Malaysia
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Cyberjaya
Role Type
Hybrid
Schedule
Full Time
Department
Legal & Compliance
Brand
Experian
Remote working available
No
Description
The Third-Party Security Assessor undertakes general Third-Party Security reviews. There are three major aspects to this position:Conducting reviews of NEW Third-Party entities (Supplier, Reseller, Jo
Reference
25d48971-88a2-443d-a8c3-cf17d762ab16
Expiry Date
01/01/0001
Salary
Location
Costa Mesa, United States
Experience Level
Not Applicable
Employment
Permanent
Location
Costa Mesa
Role Type
Roam
Salary Range
$87,248 - $151,230
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
Yes
Description
In this remote role, reporting to the Director of Application Security, you will work with software engineers and leadership to address security risks and provide mitigation recommendations within the
Reference
f0be2e96-ff75-40ae-8252-be2ec836efe9
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Information Technology & Systems
Brand
Serasa Experian
Remote working available
Yes
Description
Como será o seu dia a dia?Você será responsável por estimular e disseminar a cultura do DevOps no time, contribuindo com automações e pipelines que agregam valor e aumente a produtividade das squads;F
Reference
535e3f94-ea9c-4968-9755-caa6871c7c37
Expiry Date
01/01/0001