What We'll Bring: This position is responsible for developing and implementing operational strategies, planning of day-to-day operational oversight of information security programs, operations, and compliance, creating, and maturing processes, driving effectiveness in the cybersecurity space across TransUnion. The role will be to work collaboratively with other teams across the organization to ensure compliance with legal and regulatory requirements.What You'll Bring: • Being knowledgeable: Knowledge of security latest and best practices, methodologies, and tooling • Raising Awareness: Disseminating Security best practices, raising and maintaining continual security awareness around issues/ threats with the development organization and answering security related questions and discussing areas of improvements. • Being Part of Security: Scanning for security issues and being the go between to escalate issues for reviews by the security team, helping in QA and testing. Involve in risk and security assessments and architecture and tooling reviews to identify opportunities to remediate security issues. • Getting and Maintaining Buy-in: Intrinsic to the program and speaking to developer community to get the buy-in in the way they understand to produce secure products early in SDLC increasing the effectiveness and efficiency of AppSec program while strengthening relationship across multifunctional teams and minimizing bottlenecks downstream. • Collaboration: Connecting and partnering with other security champions and players, sharing ideas and tips whilst assisting in making security decisions. • Review and Escalation: Evaluating applications for security issues and taking responsibility for raising issues that require involvement of security and other teams in resolution. • Inspiration: Creating team workshops, sharing best practices, adapting to industry changes, conducting hackathons, and competitions. • Site Champion: A force multiplier who can address questions, ensure security awareness, understand organizations region specific requirements, and help enforce security best practices across region following country specific guidelines. What you’ll do on a typical day: • Enable the implementation and operationalization of numerous security controls. • Develop and drive alignment of overall security operations vision and roadmap • Implement consistent measurement and visibility of results, dependencies, and connection points across multiple stake holders throughout the enterprise • Ensure risk-driven security roadmaps are effectively prioritized based on context and metrics. • Drive strategy by partnering with different functional domain units within and across enterprise. • Lead global operations teams responsible for responding to security incidents, assembling the relevant supporting data and appropriately work on remediation. • Manage budget, ensure investment of resources are driven by data and metrics • Ability to influence peers and executive leaders of organizations and communicate ideas and capabilities into effective initiatives that exceed expectations.Impact You'll Make: What you will need to succeed: • Experience in designing and leading fusion centers in Security Operations Center and Security Engineering Leadership. • 10+ years of experience in cyber security operations, vulnerability management, security engineering and architecture. • 7+ years of experience in team leadership • Experience in designing solutions using engineering methodologies. • Experience in assessing cybersecurity maturity by building multi-year roadmaps to advance maturity. • Working knowledge of security, risk and control frameworks and standards leveraging MITRE ATT&CK, CIS, NIST, PCI etc., • Experience managing cyber threat investigations and keen understanding of current and future cyber threat landscape. • Experience in integrating Cyber Security Incident Response and Vulnerability management functions through automation. • Conduct periodical tabletop exercises for improvement and maturity. • Ability to make decisions based on data and provide insights across enterprise on various security opportunities. • Build, mentor, coach and hire talent team(s) to make security an engineering organization. • Demonstrated leadership and people management skills. • Hands on security expert well versed in cyber security, application security, security operations, end point security. • Technical abilities to have: • Hands on experience in leading, managing and operating a distributed 24/7 security operations • Technical knowledge of security security technologies EDPR, Vulnerability Scanners, SOAR, Security Analytics etc., • Previous experience roles working in incident response, threat intel, vulnerability management, counter measures and internal threat. • Experience in optimizing and improving playbooks, run books, and performance measures. • Strong, demonstrable program management running multiple security engineering teams Who We Are At TransUnion, we are dedicated to finding ways information can be used to help people make better and smarter decisions. As a trusted provider of global information solutions, our mission is to help people around the world access the opportunities that lead to a higher quality of life, by helping organizations optimize their risk-based decisions and enabling consumers to understand and manage their personal information. Because when people have access to more complete and multidimensional information, they can make more informed decisions and achieve great things. Every day TransUnion offers our employees the tools and resources they need to find ways information can be used in diverse ways. Whether it is helping businesses better manage risk, providing better insights so a consumer can qualify for his first mortgage or working with law enforcement to make neighborhoods safer, we are improving the quality of life for individuals, families, communities and local economies around the world. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.TransUnion Job TitleConsultant, InfoSec Engineering
