Cybersecurity Risk and Compliance Specialist

Company Description

Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been named in the 100 “World’s Most Innovative Companies” by Forbes Magazine. With a focus on our employees, we have been certified for the third time as Great Place To Work (GPTW). Experian Consumer Information Services is redefining the way our clients do business within all aspects of the customer credit lifecycle. Fueled by best-in-class data and innovative technology we help businesses make smarter decisions, identify consumers, make decisions on loans, market to prospects and collect.

**Job Description**:
**Key Responsibilities**:

- Comprehension of U.S. national and international laws, regulations, policies, and ethics related to financial industry cybersecurity
- Create, maintain, and communicate list of applicable regulations and requirements (PCI-DSS, Privacy, FedRAMP, etc.)
- Assist with developing controls, assessing evidence, and identifying gaps for remediation to meet compliance objectives
- Be familiar with inherent risks, controls, and residual risks as applicable for companies in the technology industry
- Knowledge of risk frameworks (NIST, ISO, COSO, etc.)
- Respond to client risk assessments, report status, and escalate as needed for each assessment
- Determine if responses to auditors and assessors accurately represents risk
- Maintain a database of responses to common questions as found in risk assessments
- Work with business partners to streamline data collection process
- Assist with tracking and remediating control gaps
- Ensure documentation provided to clients and regulators is current
- Assist with coordination and negotiation of internal and external audits to minimize business disruption
- Support development of security processes and procedures to ensure that security controls are managed and maintained
- Drive efforts to ensure consistency of controls across the business unit
- Assist in identifying potential risks that might negatively affect the business or security of data
- Act as a liaison between different clients, stakeholders, and business owners to ensure accurate risk and control information is being documented
- Developing a comprehensive understanding of operational processes and business strategies.
- Strong collaboration and self-management skills.
- Ability to work well in a dynamic, fast-changing environment that requires a high degree of multitasking
- Build relationships with key stakeholders across the organization to ensure buy-in, maintain compliance, identify improvement opportunities, and expand or reduce activities as needed.
- Mentor teammates on processes, best practices, prioritization, and issue resolution.
- Flexibility to be a utility player where needed as this business evolves.

**Qualifications**:
- 1-3 years previous experience in risk, vendor management, audit, or equivalent - preferably with a technology company or financial institution
- 1-3 years previous experience working with SaaS solutions
- Excellent problem solver, who can resolve issues effectively and creatively while maintaining a high level of integrity, confidentiality, and professionalism.
- Action-oriented team player with strong prioritization, operational, and planning skills
- Ability to listen intently, read policies and technical descriptions, and analyze information
- Conscientious self-starter, with a work attitude that exhibits flexibility, initiative, good judgment, and dependability.
- Consensus-building abilities with a proven track record of coordinating and mobilizing resources productively.
- Outstanding presence and solid communication skills, both written and verbal, who effectively communicates at all levels of the organization.
- Proven success navigating large, matrixed organizations.
- Ability to manage multiple projects and competing priorities
- Collaborative associate who excels at building relationships across all levels.
- Enterprise-level B2B experience working on a cross-functional team.
- Bachelor’s degree or equivalent.

**Preferred Experience**:

- Industry certifications such as CISA, CRISC, or equivalent
- Ability to balance strategic thinking with attention to detail and pragmatic execution.
- Enterprise-level B2B experience working on a cross-functional team.
- Strong communication skills (verbal and written)
- Knowledge of human capital management systems and/or HR/Payroll/Tax related product offerings.
- Confident in managing relationships across sales, business, and technical teams, both face-to-face and remotely.
- Experience working at a technology company or consulting firm.

Additional Information

Our benefits include: Medical, life and dental insurance, Asociación Solidarista, International Shar