Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you.
Synopsis of the role - The Information Security Manager is responsible for developing, implementing, and maintaining the organization's overall information security strategy. This includes ensuring the confidentiality, integrity, and availability of all information assets.
What you’ll do
-
Implement Security policies & Standard operating processes (SOPs) : Create/ review, and update information security policies and SOPs, procedures, and standards to ensure alignment with industry best practices and RBI regulatory requirements.
-
Risk Management: Identify, assess, and mitigate information security risks to the organization's assets, data, and systems.
-
Compliance: Ensure compliance with relevant laws, regulations, and industry standards, such as GDPR, NIST, PCI-DSS, and ISO 27001.
-
Security Awareness: Develop and implement security awareness training programs for employees to promote a culture of security.
-
Incident Response: Develop and manage incident response plans to ensure prompt and effective response to security incidents.
-
Vulnerability Management: Implement vulnerability management processes to identify, classify, and remediate vulnerabilities in systems and applications.
-
Security Architecture (Cloud and On Prime) : Design , review and implement secure architectures for systems, networks, and applications.
-
Third-Party Risk Management: Assess and mitigate information security risks associated with third-party vendors and service providers.
-
Budgeting and Resource Allocation: Manage the information security budget and allocate resources to ensure effective implementation of security measures.
-
Reporting and Metrics: Provide regular reporting and Security metrics to stakeholders on information security performance and risk posture.
-
Cloud Security Experience*: Experience with cloud security platforms and technologies.
-
Programming Skills: Proficiency in programming languages such as Python, Java, or C++.
-
Industry Certifications: Additional certifications such as CompTIA Security+, or ISO 27001 Lead Implementer.
Operational & Reporting Tasks:
-
Risk management: Identify, assess, and mitigate information security risks to the organization.
-
Compliance: Ensure compliance with relevant laws, regulations, and industry standards.
-
Budgeting: Manage the information security budget and allocate resources.
-
Stakeholder Management: Communicate information security risks and mitigation strategies to stakeholders.
-
Project Management: Manage information security projects, including project planning, execution, and delivery.
-
Vendor Management: Manage relationships with information security vendors and service providers.
-
Security Metrics: Develop and report security metrics to stakeholders.
-
Compliance Reporting: Report on compliance with relevant laws, regulations, and industry standards.
-
Risk Reporting: Report on information security risks and mitigation strategies.
-
Incident Reporting: Report on security incidents and response activities.
What experience you need
-
Bachelor’s Degree or Engineering with Information security certification like ISO 27001, CCNA, ITIL foundation
-
Minimum 13 to 15 yrs of Information security Information / Security audits experience/Technology administration /Project management etc.
-
Education: Bachelor's degree in Computer Science or computer engineering, Information Security, or related field.
-
Certifications: CISSP, CEH, CISM, or CISA certification preferred.
-
Experience: Minimum 5 years of experience in information security, with at least 2 years in a management role.
-
Skills: Strong knowledge of information security principles, risk management, and compliance. Excellent communication, leadership, and project management skills.
Soft skills:
-
Time management - Effective time management and prioritizing
-
Collaboration - Ability to work & collaborate with cross functional teams Adaptability: Ability to adapt to changing security landscapes and professional environment.
What could set you apart
-
People management skills
-
Good Communication skill Passion to continuously learn and work to value add to the organization security environment Positive attitude
We offer a hybrid work setting, comprehensive compensation and healthcare packages, attractive paid time off, and organizational growth potential through our online learning platform with guided career tracks.
Are you ready to power your possible? Apply today, and get started on a path toward an exciting new career at Equifax, where you can make a difference!
Who is Equifax?
At Equifax, we believe knowledge drives progress. As a global data, analytics and technology company, we play an essential role in the global economy by helping employers, employees, financial institutions and government agencies make critical decisions with greater confidence.
We work to help create seamless and positive experiences during life’s pivotal moments: applying for jobs or a mortgage, financing an education or buying a car. Our impact is real and to accomplish our goals we focus on nurturing our people for career advancement and their learning and development, supporting our next generation of leaders, maintaining an inclusive and diverse work environment, and regularly engaging and recognizing our employees. Regardless of location or role, the individual and collective work of our employees makes a difference and we are looking for talented team players to join us as we help people live their financial best.
Equifax is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
