What We'll BringWhat We'll Bring:
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation. We are consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
What You'll Bring4 – 6 years of experience in an IT Audit, Assessment, or Information Security role.
Bachelor’s degree in computer science, management information systems or related field.
Industry certification such as CISSP, CISA or CIA.
Demonstrated in-depth knowledge of concepts, best practices and controls in a breadth of Information Security areas/domains. These include governance & risk management, access control, cybersecurity, physical security, security architecture and design, business continuity/disaster recovery, network security, application & operations security and compliance/incident management.
Demonstrated ability to understand complex technologies, business processes, regulations and emerging risks.
Strong understanding of SOX legislation and IT frameworks including COSO and COBIT.
Strong technical and/or IT audit background with practical knowledge of a wide variety of technologies including server infrastructure & operating systems, network & web infrastructures, database architecture, vulnerability assessment and intrusion detection/prevention systems.
Self-starter with the ability to manage and prioritize responsibilities.
Team player with proven skills in influencing people without having direct management authority.
Self-driven performer with established skills in tracking self and project performance, anticipating and recognizing problems and escalating issues appropriately.
Strong ability to interact and communicate both written and verbally with people at all levels, both technical and non-technical, in a dynamic environment where interactions are not always in person.
Strong risk analysis and problem solving skills.
Must be flexible to ensure assessments are performed timely and manage multiple assessments simultaneously.
Impact You'll MakeAssist in developing risk based annual audit plans
Coordinate with process owners to initiate, scope, plan, and conduct periodic controls assessments to identify areas of risk by evaluating the design and operating effectiveness of Information Technology General Controls (ITGC) over applications, operating systems, and databases as well as the network infrastructure including cybersecurity controls
Lead engagements and communicate issues to process owners, ensuring their understanding of associated risks and the actions needed to remediate those risks.
Document the results of audit procedures performed that support the conclusions reached.
Prepare audit reports based on the adequacy and effectiveness of controls evaluated.
Track and monitor open audit issues for remediation by working with process owners.
Communicate with external auditors and support their initiatives effectively from an IT audit standpoint.
Research security trends, threats, and prevention technologies.
Participate in departmental initiatives, administrative matters, and special projects