Information Security Officer

Company Description

We are the leading global information services company, providing data and analytical tools to our clients around the world. We help businesses to manage credit risk, prevent fraud, target marketing offers and automate decision making.

We also help people to check their credit report and credit score, and protect against identity theft. In 2019, for the fifth consecutive year, Experian has been named to Forbes Magazine’s Top 100 list of the “World’s Most Innovative Companies.”

We employ approximately 20,000 people in 44 countries and our corporate headquarters are in Dublin, Ireland, with operational headquarters in Nottingham, UK; California, US; and São Paulo, Brazil.

At Experian, we are committed to building an inclusive culture and to creating an environment where people can balance successful careers with their commitments and interests outside of work. Our flexible working practices support our belief that this balance brings long-lasting benefits for our business as well as our people. Some roles lend themselves to flexible options more than others, and if this is important to you, we are open to discussing agile working opportunities during the hiring process.

**Job Description**:
By joining Experian, you are joining a global leader in data aggregation and management. The company continues to grow via innovation (organically) and by investment (company acquisition). It is a brand that is known across all market sectors, Experian has a reputation for bringing new products to the marketplace, operational excellence and as importantly our approach to information security.

The global security office (GSO) is a global team of circa 300 people

GSO provide a full suite of information security services from engineering to security risk management, policy and metrics, identity management, physical and corporate security and security operations amongst others. The GSO team have direct engagement with the senior global and regional leaders and information security investments remain key to the overall business goals. This role is part of the ISRM leadership team. It is an opportunity to join a talented and experience information security team at a top global company.

**The Role**

The ISO’s responsibility is to ensure the compliance of Experian Global Security policy, as well as the compliance

with relevant market and regional regulatory requirements.

This extends to the coordination and active participation to the various audits of EMEA markets in scope, including but not limited to those from internal, external and regulatory bodies.

company to ensure that the availability, integrity and security of IT systems are maintained.

The risk management and participation to project review is conducted on a global and local basis across all of the company platforms, it also requires the incumbent to foster close working relationships with other business areas and IT Development/Production teams.

The position is based in EMEA. This position reports to the EMEA_APAC Regional Information Security Officer.

**What you’ll need to bring to the party**
- Experience & Qualifications Experience in an Information Security leadership role.
- Experience of security governance, risk, vulnerability management, security, and compliance management experience
- Strong experience of driving controls to meet security policy, standards, and controls.
- Strong knowledge of current and emerging cyber security risks, and innovative risk management methods.
- Ability to collaborate in supporting a security risk improvement programme in conjunction with stakeholders
- Strong analytical thinking, written, and oral communication and presentation skills
- Demonstrated knowledge of industry authoritative sources such as ISO standards.
- Must have the strong ability to influence others and work at all management levels across the organizational structure
- Experience of three lines of defence and matrix managing projects/team
- Strong understanding of security concepts with a view to complete security certifications like CISSP, CISM
- Experience working in a large/international/global organization

**What you’ll be doing**

***

**Governance, Strategy & Planning**

***
- Coordinate and deliver information security risk management program including participation in broader risk
- management activities for the region and the development, evaluation, and adherence to multiple areas of
- practice such as vulnerability management, vendor (third-party) and information security risk management.
- To co-prepare presentations for the EMEA / APAC Security Forum (EASF), and represent GSO at the EASF and other forums as and when required
- To produce metrics for the purpose of control and decision making
- Drive information security improvements within the markets in scope using KRI's / OSI's as necessary.

**Cooperation & contribution**
- To actively coordinate and cooperate with other global and regional stak