Contracts Advisor - Risk and Information Security
“The limit of our growth is going to be our imagination and product ideas – not technology.” – Mohit Kapoor, CTO
What we’ll bring:
- A welcoming and energetic environment that encourages collaboration and innovation. We consistently explore new technologies and tools to be agile.
- Flexible time off, workplace flexibility, an environment that welcomes continued professional growth through support of tuition reimbursement, conferences and seminars.
- Our culture encourages our people to hone current skills and build new capabilities, while discovering their genius.
- In this critical role, you will work with TransUnion technology and business teams, and risk stewards such as Audit and Compliance. Externally you will work with vendors, business partners, customers, third parties and related agencies
What you’ll bring:
- 5-7 years’ Information Technology experience with a focus on Information Security
- Familiarity with current information security technologies and past experience in multiple of the following domain areas: Identity and Access Management, Application Security, Infrastructure Security, System & Data Security, Physical and Environmental Security, Business Continuity/Disaster Recover, and Regulatory/Standard Compliance.
- Familiarity with industry frameworks and standards such as SSAE18, PCI, and ISO 27001/27002
- Bachelor’s Degree in Computer Science or related field
We’d love to see:
- Information Security (CISSP, CISA, Security +) certification
- Proficiency in Microsoft Office Suite (especially PowerPoint and Excel) and Microsoft Project
Impact you’ll make:
- Review contracts, Master Service Agreements, Business Associate Agreements, Request for Proposals (RFP), Statements of Work (SOW), to determine compliance with TransUnion policies.
- On all nonstandard contracts, provide redlined recommendations and often work directly with TransUnion attorneys or purchasing staff until consensus has been reached. Provide input to management and assess contractual risk.
- Provide input to the development of contracts and commercial policies and processes. Provide guidance on contract matters to project managers or other operational staff, including training to new project managers and other employees in contracting practices and procedures..
- Build relationships cross functionally and globally with risk stewards, internal stakeholders, and third parties. Promote a risk-aware culture, with effective risk and compliance management practices.
- Strong interpersonal, written, and oral communication skills. Ability to effectively communicate to all levels of the organization, including senior management, business stakeholders and third parties. Ensure that risks are promptly and clearly articulated, and escalated appropriately.
- Support projects that help improve the assessment process and support our overall Third Party Risk Management strategy. Communicate with management regarding project obstacles and take ownership of their resolution to continue progress towards deliverables and timelines.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.