Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you.
Synopsis of the role
As our IT Security Analyst, This role requires a motivated self-starter. Someone who has strong analytical and problem-solving skills, a deep understanding of risk and compliance management principles, excellent communication and report-writing abilities, and knowledge of industry-specific regulations, standards, and frameworks. You are passionate about security and believe in due diligence. Responsibilities include but are not limited to:
What you’ll do
-
You will be identifying, analyzing, remediating, and reporting on vulnerabilities data across Equifax Canada infrastructure.
-
Responsible for conducting penetration tests and coordinating with teams on remediation plans.
-
Assessing and validating security controls and suggesting adequate compensating controls to identified vulnerabilities and/or control gaps.
-
Engaging stakeholders to drive remediation of application and infrastructure vulnerabilities.
-
Take a proactive and risk-based approach to identifying and addressing defects in order to protect systems, networks, and data from cyber-attacks.
-
Assist in tracking and improving the security posture and incident response engagements
-
Assist in Asset management and compliance reporting on overall Equifax canada infrastructure.
-
Create and support vulnerability and asset health metrics, remediation-related dashboards, and reports.
-
Work with Internal and External Audit functions to facilitate information gathering and reporting.
-
Support evidence collection with regards to various security compliance frameworks including NIST, PCI-DSS, ISO 27001, and SOC assessments
What experience you need
-
Minimum 5+ years in security and 2+ years of hands-on experience with the design, implementation, operation of a vulnerability management program and strong application security background.
-
Good understanding of technical security controls, secure coding standards and Hands-on experience with cloud such as GCP and AWS.
-
Strong understanding of PKI, encryption standards, Microservices architectures, Kubernetes security.
-
Providing recommendations to the Information Security Officer on the risks posture that are related to the Equifax Canada environment.
-
Experience with ServiceNow or other reporting platform tools including creating workflows, dashboard creation, and optimization.
-
Pays attention to team needs and pivots his/ her approaches accordingly to support the delivery of business value.
-
Experience with enterprise vulnerability management tools, SAST and DAST.
-
Expert in ability to communicate to advanced Technical teams as well as brief management on technical risks and issues
-
Exposure to audits like PCI, SOC, ISO 27001
-
Familiarity with common security frameworks NIST, COBIT, ITIL, ISO
-
Proactive, detail oriented and able to work independently and efficiently
What could set you apart
-
Passionate about Cybersecurity.
-
Bilingual ( french language is an asset)
-
Previous experience working in cyber security and vulnerability management at a large company
We offer comprehensive compensation and healthcare packages, paid time off, and organizational growth potential through our online learning platform with guided career tracks.
Are you ready to power your possible? Apply today, and get started on a path toward an exciting new career at Equifax, where you can make a difference!
El trabajo en Equifax
Creemos en una mentalidad de crecimiento. En Equifax, esto incluye brindar a nuestros empleados oportunidades para desempeñarse al máximo y aprender nuevas habilidades a lo largo del camino para inspirar y desarrollar carreras profesionales satisfactorias