Security Analyst – Risk, Applications & Infrastructure
- Heredia
- Product Development
- Permanent
- Hybrid
- Full Time
Experian Employer Services, Verifications, and Housing (EVH) is seeking a motivated professional to join its product information security team as a Security Analyst focused on managing risks and vulnerabilities for both applications and infrastructure within a cloud-first environment. The Security Analyst will play a critical role in safeguarding the integrity, resilience, and compliance of Experian’s IT systems, ensuring alignment with regulatory and security frameworks.
This role will integrate security practices across product, infrastructure and application layers, assessing vulnerabilities and implementing best practices to mitigate risks. Additionally, this position will support security audits and compliance efforts by evaluating systems against established control frameworks, identifying deficiencies, and driving remediation efforts.
You will collaborate closely with our partner teams as well as product, applications, and platform teams to implement security controls, audit compliance, and enhance security governance. The ideal candidate has experience in security controls, IT audits, risk management, vulnerability management, and cloud security, with the ability to work collaboratively across multiple teams.
Key Responsibilities
- Risk Management & Governance:
- Identify, assess, and mitigate security risks related to IT applications and infrastructure.
- Develop and implement risk management frameworks to ensure continuous monitoring and improvement of security postures.
- Work with stakeholders to define and implement security policies and guidelines aligned with risk tolerance.
- Facilitate risk assessments and security reviews across business units and IT environments.
- Compliance & Audit Functions:
- Evaluate IT applications and infrastructure against security control frameworks (e.g., NIST, ISO 27001, CIS, SOC 2).
- Conduct internal security audits to assess compliance with corporate security policies and regulatory requirements.
- Identify gaps in security controls, document findings, and support remediation planning.
- Maintain documentation and evidence for security audits and regulatory assessments.
- Vulnerability Management:
- Collaborate with teams to analyze, categorize, and prioritize vulnerabilities based on severity, potential impact, and likelihood of exploitation.
- Track vulnerability remediation efforts and ensure timely patching and risk mitigation.
- Conduct regular security assessments of applications, APIs, cloud infrastructure.
- Security Operations & Monitoring:
- Monitor security tools and analyze logs for signs of suspicious activity, vulnerabilities, or policy violations.
- Assist with security incident response, forensic analysis, and remediation plans.
- Engage with internal and external stakeholders, including Experian’s Cyber Fusion team, to enhance security posture.
- Security Best Practices & Governance:
- Act as a Security Champion, training and mentoring teams on security best practices, secure coding, and compliance.
- Assist in tracking and improving security control effectiveness across business units.
- Promote a culture of security awareness through training and engagement programs.
- Security Technology & Automation:
- Support the integration of security tools into CI/CD pipelines to enable automated security testing.
- Utilize security tooling (SAST/SCA/DAST/CSPM/DSPM) to evaluate and improve security posture.
- Enhance API security practices and application security testing methodologies.
- Collaboration & Reporting:
- Work cross-functionally to drive security improvements.
- Generate reports for management on vulnerability status, security incidents, and audit findings.
- Ensure alignment of security initiatives with business objectives and risk tolerance.
Experian is the world's leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. Also, for the last five years we've been named in the 100 "World's Most Innovative Companies" by Forbes Magazine. With a focus on our employees, we have been certified for the third time as Great Place To Work (GPTW). Experian Consumer Information Services is redefining the way our clients do business within the customer credit lifecycle. Fueled by the best data and technology we help businesses make smarter decisions, identify consumers, make decisions on loans, market to prospects and collect.
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).
- Industry certifications such as CISSP, CISM, CEH, CCSP, or CISA are a plus.
- Understanding of cloud platforms (AWS, Azure) and cloud security best practices.
- Experience with vulnerability scanning and assessment tools for applications and infrastructure.
- Familiarity with security frameworks and compliance standards (NIST, ISO 27001, SOC 2, CIS Benchmarks).
- Proficiency in security testing, penetration testing, and vulnerability analysis.
- Knowledge of security monitoring tools, intrusion detection systems, and SIEM solutions.
- Ability to assess security risks, prioritize vulnerabilities, and recommend remediations.
- Experience conducting security audits and control evaluations.
- Strong problem-solving skills and ability to work collaboratively in cross-functional teams.
- Effective written and verbal communication skills for both technical and non-technical audiences.
This is a permanent remote home-based role in Costa Rica. No relocation available.
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-ML2 #LI-Remote
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Analytics
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de uma pessoa Engenheira de Machine Learning para integrar a nosso time de MLOps. Nossa missão é desenvolver ferramentas e processos que impulsionem a inovação e otimizem a operação
Reference
ad840fad-8704-46e9-a627-19cb7babb425
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Roam
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
We're looking for a motivated Account Manager - Partnerships with experience working the identity and fraud market, to join our Partnerships & Alliances Team within GTM. You will lead and develop inno
Reference
d918865b-d167-4bcc-a207-ebb1faacbdbd
Expiry Date
01/01/0001
Salary
Location
Heredia, Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Home
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
What you'll doThe Junior DevOps/Automation Engineer will lead, develop, and support automation projects related with Servers deployments and operations, in our global environment including Red Hat Ent
Reference
f9ffb4eb-e419-4fcc-bdb7-5c34a478d72b
Expiry Date
01/01/0001
Salary
Location
United States
Experience Level
Not Applicable
Employment
Permanent
Location
United States
Role Type
Home
Salary Range
$97,718 - $169,377
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
Yes
Description
Reporting to the Senior Manager of Development and Operations you will:Expertise in developing end-to-end data solutions with tools such as MWAA, Tableau and AlteryxWrite secure, stable, testable, and
Reference
798dd8c1-b28a-4156-94ff-7d73b3c70473
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Human Resources
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de uma pessoa Analista de Remuneração Sênior para integrar nosso Centro de Excelência em Recursos Humanos (HR COE Compensation).Esta pessoa profissional terá uma alta responsabildiade
Reference
7f764bb6-5d15-458d-bab5-efd018da4990
Expiry Date
01/01/0001
Salary
Location
Mumbai, India
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Mumbai
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
Experian India is looking for a Product Operations Analyst to join its Decision Analytics sales team. This role is envisioned to be the fulcrum of managing all the product related operational activiti
Reference
36a7d90c-3211-4586-9390-11a9ff744c2f
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
It's an exciting time within Marketing Services as we build new capabilities that provide unparalleled access to consumer demographic, lifestyle, and transactional insights. Our advanced digital ID gr
Reference
6ec78dd3-886a-47ea-a12b-ce5d23c722b9
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
It's an exciting time within Marketing Services as we build new capabilities that provide unparalleled access to consumer demographic, lifestyle, and transactional insights. Our advanced digital ID gr
Reference
7d763e0c-1998-4c2f-a934-1429db9c6765
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Design, deploy, document, and support cloud platform capabilities using AWS best practices (fault tolerant, High Availability, security, etc)Design, deploy, document, and support CI/CD tools such as G
Reference
be1b3612-6d71-4b9b-9f7b-902990118516
Expiry Date
01/01/0001
Salary
Location
Erfurt, Germany
Experience Level
Associate
Employment
Permanent
Location
Erfurt
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
Yes
Description
Was du bei uns machst: Du überprüfst deutsche Kostenvoranschläge und Reparaturrechnungen aus der Kfz-Unfallinstandsetzung und findest Fehlpositionen und KalkulationsfehlerDu kalkulierst eigenständig U
Reference
23695e03-9884-417b-b862-0f75cf4f62f7
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
We're looking for an experienced product leader to step into the role of Head of Product – Score and Report in our Direct-to-Consumer business. Reporting to the Product Director, you will lead our pro
Reference
974e9a20-9897-4979-a666-deace57be46b
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
The Lead Engineer (.NET/Azure) is a hands-on, contributor position, responsible for creating solutions and architectures for high-volume, high-transaction applications across the Experian Employer Ser
Reference
cb9f23a6-3a50-484d-9c73-cd686af080a5
Expiry Date
01/01/0001
Salary
Location
North Sydney, Australia
Experience Level
Not Applicable
Employment
Permanent
Location
Sydney
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
The Client Service Delivery function is dedicated to providing a white glove experience for the organisation's top 30 clients, as well as clients requiring short term, or at times longer term, high le
Reference
a438671a-74aa-42f6-abf1-475f71349115
Expiry Date
01/01/0001
Salary
Location
Heredia , Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Account Specialist role is a hybrid role focused on sales, account management, and service. You will be working in a team environment responsible for managing, retaining, and driving revenue grow
Reference
62c522df-e19f-47a7-8d23-0fd56f481a06
Expiry Date
01/01/0001
Salary
Location
Heredia , Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Home
Schedule
Full Time
Department
Analytics
Brand
Experian
Remote working available
No
Description
What you'll be doingLeverage data from the warehouse to uncover insights into user behavior and identify opportunities to boost product engagement. Maintain and adapt Tableau dashboards to evolving b
Reference
343902bf-8dfb-40c8-a64a-7294e567e191
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
No
Description
O Analista de Desenvolvimento de Software Junior será responsável por desenvolver e manter soluções backend utilizando Golang, garantindo a alta qualidade e performance das aplicações. Este papel exig
Reference
887069af-1f14-47b5-a726-9042de4b0fb8
Expiry Date
01/01/0001