Equifax – St. Louis, MO
The Information Security Analyst for Equifax Workforce Solutions is responsible for the identification of risks and the implementation and localized optimization of the Equifax standard security program including security engineering, security operations, security compliance, fraud prevention and detection, security investigations, physical security, and security awareness. The primary purpose of this position is to balance business risk with the appropriate strategic security solution to protect Equifax from threats that lead to untenable risk.
Auditing of high risk clients in response to investigations
Support continuous evidence collection to support the integrated cybersecurity framework
Support ISO team in responding to questionnaires, evidence requests, and on-site audits
Support ISO team in operational support of all security related tasks
Routine engagement with EWS IT and Business leaders to continually align security efforts with business objectives
Participate and contribute with enterprise Risk Management program to include coordinating documentation and artifacts from customers security audits
Provide administrative support to the ISOs for preparing trainings, audits, presentations, and general documentation.
Support security questionnaires and collecting of evidences for risks assessments.
ISO Backup for holidays, potential absences, BCP, DRP, etc.
Understand Gramm-Leach-Bliley Act (GLBA), Sarbanes-Oxley Act (SOX), SSAE-16 attestations, ISO 27001 Standards, Payment Card Industry Data Security Standard (PCI DSS), NIST Standards, standard security practices, current and emerging privacy and security regulations.
Ability to communicate security concepts to technical and non-technical audience and able to interact with all levels of the organization in culturally diverse locations.
Excellent written and verbal English communications.
Excellent organizational, time management, customer service and problem-solving skills.
Ability to effectively manage a small team.
Ability to exercise flexibility, initiative, good judgment and discretion.
Bachelor’s degree in related field.
Minimum 3 years relevant experience
CISSP, CISM, or CRISC desired
Primary Location: St. Louis, MO
Function: Security Governance, Risk, and Compliance
Schedule: Full time
USA-St. Louis-2330 Ball
Function – Security Governance and Compliance