Business Information Security Officer

Job Summary

Equifax is looking for a Business Information Security Office (BISO) for Information Technology and Center of Excellence (COE), who will be responsible for the identification of risks and the implementation and localized optimization of the Equifax standard security program.

Who is Equifax?

At Equifax, we believe knowledge drives progress. As a global data, analytics and technology company, we play an essential role in the global economy by helping employers, employees, financial institutions and government agencies make critical decisions with greater confidence.

We work to help create seamless and positive experiences during life’s pivotal moments: applying for jobs or a mortgage, financing an education or buying a car. Our impact is real and to accomplish our goals we focus on nurturing our people for career advancement and their learning and development, supporting our next generation of leaders, maintaining an inclusive and diverse work environment, and regularly engaging and recognizing our employees. Regardless of location or role, the individual and collective work of our employees makes a difference and we are looking for talented team players to join us as we help people live their financial best.

The Perks of being an Equifax Employee?

• We offer excellent compensation packages with market competitive pay, comprehensive healthcare packages, 401k matching, schedule flexibility, work from home opportunities, paid time off, and organizational growth potential.

• Grow at your own pace through online courses at Learning @ Equifax.

What You’ll Do:

• Develop and maintain in-depth understanding of Business Unit / COE processes, systems, technologies, data, customers, consumers, partners

• Act as the primary local security contact / advisor for the SVP/Chief Revenue Officer and supporting organizations such as Operations, HR, Finance, Legal and other local personnel

• Partner with local Compliance, HR, Legal, IT resources to achieve effective working relationships that can further the effectiveness of the Security program

• Implement the Information Security Management System across the assigned Business Unit and/or COE as well as BU-specific security initiatives

• Communicate, oversee and carryout technical implementations of security solutions required to meet business objectives

• Proactively identify non-conformities and areas of potential improvement and facilitate development of pragmatic solutions to address issues, utilizing the security assessments and observations processes

• Engage with clients and customers as needed to assist the business to achieve its objectives with pre and post sales activities

• Participate in BU related conferences, client facing engagement, industry forums to represent the Security program

• Provide regular and timely reporting on the status of information security across the BU / COE

• Provide escalation path for security issues, incidents and inquiries

• Work with Incident Response and Crisis Management teams to effectively incidents to acceptable resolution; assist with investigations as needed

• Advise Security Leadership in decision making for and affecting the assigned BU/COE

  
  

What experience you’ll need

• Bachelors in MIS, Business Administration, or similar with previous experience at or above the Senior Manager / Director (or comparable)

• 10 yrs experience in Information Security

• 7 yrs of experience in third-party oversight, risk governance, writing and advising on policy and procedures, management of security exceptions.

• 5 yrs of experience analyzing specific business and technology situations, understand inherent risk in terms of confidentiality, integrity, and availability

• 5 yrs of experience participating in IT Security audits, working with auditors..

• 5 yrs of experience developing, reviewing, and improving business processes from an information security perspective.

What could set you apart:

• Previous experience as a BISO

• Experience with Google Cloud (GCP)

• Exceptional technical security skills

• Previous experience working with external clients

• Experience obtaining or maintaining compliance certifications such as PCI, HIPAA, ISO, SOC1/2, etc.

  
  

We offer comprehensive compensation and healthcare packages, 401k matching, paid time off, and organizational growth potential through our online learning platform with guided career tracks.

If this sounds like somewhere you want to work, don’t delay, apply today - we’re looking for you!

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.