Full-time
Employee Status: Regular
Role Type: Hybrid
Department: Legal & Compliance
Schedule: Full Time
Shift: Day Shift

ABOUT US, BUT WE’LL BE BRIEF

Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been listed as one of the 100 “World’s Most Innovative Companies” by Forbes Magazine.

JOB DESCRIPTION

What you’ll be doing
Our Controls Assurance Testing Team is seeking a Senior Control Assurance Assessor with expertise in data-driven testing techniques. This role offers the opportunity to provide second-line defense assurance services, ensuring that security controls are robustly designed and effectively implemented to safeguard Experian’s assets.

Summary of Primary Responsibilities

• Conduct thorough security control assessments, managing the process from planning through to reporting.
• Develop and execute test plans, test cases, and procedures, leveraging data from security tools to capture evidence.
• Utilize queries and dashboards to identify potential control failures.
• Ensure the accuracy and timely completion of control testing, providing peer review where necessary.
• Document findings, including root cause analysis and actionable recommendations for remediation.
• Function as the primary liaison with business stakeholders, delivering clear progress updates and results.
• Contribute to the efficiency of the control testing program by establishing measurable KPIs, standardizing testing materials, and integrating stakeholder feedback for continual improvement.

QUALIFICATIONS

What your background looks like

• A bachelor’s degree in computer science, management information systems, or a relevant field, or equivalent demonstrable experience.
• 3+ years’ experience performing IT Audit or security control testing.
• 8+ years’ of experience in Information Security and/or Information Technology.
• Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent.
• Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001/27002).
• Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws.
• Basic understanding of sector-specific frameworks (e.g., HIPAA, PCI).
• Strong analytical, problem solving and critical thinking skills with meticulous attention to detail.
• Excellent verbal and written communication skills.
• Ability to work both independently and collaboratively within a team environment.

Technical skills

• Knowledge of security tools such as Sailpoint, Rapid7, Wiz.io, MS Defender
• Familiarity with cloud concepts and technologies, particularly AWS and Azure
• Experience of using generative AI such as Chat GPT to efficiently create test strategies, reports, and communications.
• Proficiency in automation and analytics tools (e.g., Excel, Tableau, Alteryx, PowerBI).
• Experience in creating queries and reports using RSA Archer and ServiceNow.
• Familiarity with Kanban boards and Jira.

Desired Competencies:

• Comprehensive understanding of cybersecurity principles and organizational requirements.
• Application of governance, risk, and controls principles.
• Proficiency in both automated and manual testing of information security controls.
• Strong critical thinking and problem-solving abilities.
• Effective facilitation of small group meetings and clear communication of complex ideas.
• Ability to collect, validate, analyze, and translate test data into evaluative conclusions.
• Sound judgment in ambiguous or undefined control scenarios.
• Research and application of knowledge about emerging technologies.
• Agile working methodology experience.

THIS IS A PERMANENT REMOTE HOME-BASED ROLE IN COSTA RICA. NO RELOCATION AVAILABLE.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian’s DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.

LI-ML2 #LI-Remot

Summary of Primary Responsibilities

• Conduct thorough security control assessments, managing the process from planning through to reporting.
• Develop and execute test plans, test cases, and procedures, leveraging data from security tools to capture evidence.
• Utilize queries and dashboards to identify potential control failures.
• Ensure the accuracy and timely completion of control testing, providing peer review where necessary.
• Document findings, including root cause analysis and actionable recommendations for remediation.
• Function as the primary liaison with business stakeholders, delivering clear progress updates and results.
• Contribute to the efficiency of the control testing program by establishing measurable KPIs, standardizing testing materials, and integrating stakeholder feedback for continual improvement