Information Security Control Assurance Manager
Information Security Control Assurance Manager
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
As an Information Security Control Assurance Manager you will lead a team that evaluates security controls across systems both onpremise and in the cloud to ensure they mitigate risks and comply with regulatory and industry standards. You will provide direction and oversee the team in conducting security control testing to verify the design implementation and operational effectiveness of controls. You will work in an agile environment ensuring the quality of security assessments through testing automation and collaboration with teams and multiple partners.
This is a UKbased remote position reporting to the Information Security Risk & Control Director.
Summary of Primary Responsibilities
- Oversee information security control testing program following Experians risk management framework working with teams and partners across multiple regions.
- Oversee a team of security control testers responsible for assessing information systems platforms and operating procedures following established corporate standards for security.
- Design repeatable testing methodologies to support control assurance testing including automated testing steps for cloud environments.
- Ensure control tests are wellplanned including risk identification sampling selection of controls testing methods and reporting criteria.
- Compile management reports summary analysis and detailed presentations to describe risk controls and control deficiencies to multiple partners.
- Improve the efficiency of the control testing program by ensuring Goals are measurable and testing materials are standardized.
Qualifications :
What your background is
- Experience managing a team of IT auditors or Information Security control assessors.
- Experience performing IT Audit or Information Security control assessments with specific experience testing cloud security controls.
- Professional certification such as CISA CISM CISSP ISO 27001 Lead Auditor or equivalent.
- Knowledge of industry standards and frameworks such as NIST 80053 ISO 27001/27002 CIS Controls COBIT.
- Experience with current automated and manual industry methods for evaluating security controls on prem and in cloud environments.
Important Skills
- Knowledge of security controls provided by tools such as Sailpoint Rapid7 Wiz MS Defender.
- Experience with cloud security controls within environments such as AWS and Azure.
- Experience using automation data driven testing techniques and generative AI to gain efficiency in control assurance.
- Big 4 accounting experience.
- Experience creating queries and reports using RSA Archer and ServiceNow.
Additional Information :
Benefits package includes:
- Great compensation package and discretionary bonus plan
- Core benefits include pension bupa healthcare sharesave scheme and more
- 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experians DNA and practices and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work irrespective of their gender ethnicity religion colour sexuality physical ability or age. If you have a disability or special need that requires accommodation please let us know at the earliest opportunity.
#LIHybrid
Experian Careers Creating a better tomorrow together
Find out what its like to work for Experian by clicking here
Remote Work :
Yes
Employment Type :
Fulltime
Employment Type
Remote
