Information Security Analyst

Equifax – St. Louis, MO

JOB SUMMARY

The Information Security Analyst for Equifax Workforce Solutions is responsible for the identification of risks and the implementation and localized optimization of the Equifax standard security program including security engineering, security operations, security compliance, fraud prevention and detection, security investigations, physical security, and security awareness. The primary purpose of this position is to balance business risk with the appropriate strategic security solution to protect Equifax from threats that lead to untenable risk.

RESPONSIBILITIES

Auditing of high risk clients in response to investigations

Support continuous evidence collection to support the integrated cybersecurity framework

Support ISO team in responding to questionnaires, evidence requests, and on-site audits

Support ISO team in operational support of all security related tasks

Routine engagement with EWS IT and Business leaders to continually align security efforts with business objectives

Participate and contribute with enterprise Risk Management program to include coordinating documentation and artifacts from customers security audits

Provide administrative support to the ISOs for preparing trainings, audits, presentations, and general documentation.

Support security questionnaires and collecting of evidences for risks assessments.

ISO Backup for holidays, potential absences, BCP, DRP, etc.

REQUIREMENTS

Understand Gramm-Leach-Bliley Act (GLBA), Sarbanes-Oxley Act (SOX), SSAE-16 attestations, ISO 27001 Standards, Payment Card Industry Data Security Standard (PCI DSS), NIST Standards, standard security practices, current and emerging privacy and security regulations.

Ability to communicate security concepts to technical and non-technical audience and able to interact with all levels of the organization in culturally diverse locations.

Excellent written and verbal English communications.

Excellent organizational, time management, customer service and problem-solving skills.

Ability to effectively manage a small team.

Ability to exercise flexibility, initiative, good judgment and discretion.

Bachelor’s degree in related field.

Minimum 3 years relevant experience

CISSP, CISM, or CRISC desired

Primary Location: St. Louis, MO

Function: Security Governance, Risk, and Compliance

Schedule: Full time

Primary Location:
USA-St. Louis-2330 Ball

Function:
Function – Security Governance and Compliance

Schedule:
Full time

. . . . . . . .

Leave a Reply