Risk Analyst

Company Description

Discover the Unexpected 

Experian is the world’s leading global information services company. We are listed on the London Stock Exchange (EXPN) and are a constituent of the FTSE 100 Index. We’re passionate about unlocking the power of data in order to transform lives and create opportunities for consumers, businesses and society. For more than 125 years, we’ve helped businesses grow, consumers and small businesses gain access to financial services, and economies and communities flourish – and we’re not done.

Our 18k amazing employees in 40+ countries believe the possibilities for you, and the world, are growing. We’re investing in the future, through new technologies, talented people and innovation so we can help create a better tomorrow.

To do this we employ the greatest and brightest minds that share our purpose and want to make a difference. Experian Asia Pacific's culture, people and environments are key differentiators. We focus on what truly matters; diversity and inclusion, work/life balance, flexible working, development, equity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. We’re committed to fostering a strong sense of belonging and a place where you can bring your true self to work.

Our uniqueness is that we truly value yours. We’re an award winning organisation due to our strong people first focus. This includes Top Employer™ and Great Place To Work™ accreditations.

Learn more at www.experianplc.com

Job Description

An exciting opportunity to plan and execute IT Risk Reviews at Experian. The incumbent’s responsibilities include performing reviews that provide an independent and objective evaluation of risk within the business, technology, information security etc. under the guidance of Risk Head. Managing day to day risk related activities such as Risk & Control Self-Assessment (RCSA), DR reviews as per approved plan, Product and Process note review, risk events review, training, stakeholder management, report writing, open issue management, preparing deliverables for governance meetings and regulators etc.

What you will be doing

• Planning, designing and implementation of RCSA review plans including obtaining background information on the function being reviewed, research the best practices, performing a risk and control assessment, defining RCSA scope, objectives and develop work program
• Managing and execution of RCSA field work, including documenting work papers, advising management of gaps identified and track actionable. Ensure completion of assigned reviews and documentation of work papers on time.
• Review of new product programs, system developments, process, vendor engagements etc. from system security perspective
• Perform periodic testing to identify gaps or issues or non-adherence to security and RBI guidelines
• Track status of issues reported/ identified and assist in keeping relevant processes bench marked to Best Practices
• Provide improvement/ suggestions to existing process / systems to line management
• Evaluating adequacy and effectiveness of IT general controls and IT application controls.
• Having in-depth understanding of the processes, analyzing prevailing practice in the industry, determining gaps, highlighting risks.
• Handle Special Assignments as per Management direction & Investigations.
• Independently conduct RCSAs and responsible to participate in audits of various Businesses with particular emphasis on IT reviews

Qualifications

• 5 - 10 Years of related experience in Information Security / IT Risk/ IT Audit or relevant profile
• CISA, CISM, CISSP or equivalent certification with masters/ graduation degree preferably in computer science or information technology.
• Experience required in review of IT infrastructure, application development life cycle, cyber security, cloud infrastructure and applications, web security, end point protections. Exposure to RBI Cyber Security Framework is an added advantage
• Knowledge of IT governance and security standards such as NIST, ISO27001, COBIT, PCIDSS and equivalent.
• Knowledge/ understanding of banking products and practices, operations, regulatory, industry, banking competition, and potential risk area is preferred.
• Strong analytical and organizational skills.
• Ability to interpret quantitative and qualitative data, formulate sound conclusions, and make consultative recommendations.
• Excellent verbal and written communication skills.

Additional Information

Additional Information

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it reflects what we believe. See our DEI work in action! Experian's culture, people and environments are key differentiators. We focus on what truly matters; diversity and inclusion, work/life balance, development, innovation, collaboration, wellness, reward & recognition, volunteering... That's why we're an award winning organization for our people-first practices, something we’re very proud of.

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here