Specialist III - Controls, Compliance & Risk (IT)

TransUnion's Job Applicant Privacy Notice

What We'll Bring:

What We’ll Bring:

We are seeking a highly motivated and skilled associate to come join our Global Finance Controls, Compliance and Risk team. The role will be responsible for leading and performing IT Sarbanes Oxley (SOX) compliance program testing, which includes obtaining an understanding of the general IT environment, identifying risk points and designing and testing the controls that address the identified risks. The successful candidate will manage testing of the IT SOX program, while developing relationships with cross-functional teams.

At TransUnion, we strive to build an environment where our people are in the driver’s seat of their professional development, while having access to help along the way from colleagues and mentors. We encourage everyone to pursue passions and take ownership of their careers. Our people have the opportunity to learn new things and be a leader every day. We have a welcoming and energetic environment that values passion towards collaboration and innovation. We embrace a culture of diversity of thought and strive for continuous improvement and learning.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology

What You'll Bring:

What You’ll Bring: 

• Bachelor’s degree in Computer Science, Management Information Systems (or related field) 

• 3-5 years of experience in an IT Audit, IT Assessor, or Information Security role (experience in a public accounting is strongly preferred)  

• Industry certification such as CISSP, CISA (or equivalent certification) strongly preferred   

• Strong understanding of SOX legislation and IT frameworks including COSO and COBIT. Including demonstrated in-depth knowledge of IT risk concepts, best practices and controls in a breadth of Information Security areas/domains. These include governance & risk management, access controls, cybersecurity, physical security, security architecture and design, network security, application & operations security. Specific understanding of ITGCs including logical access, change management, program development, and IT dependent controls (i.e. key reports and automated controls) preferred. 

• Demonstrated ability to understand complex technologies, business processes, and relevant emerging risks. Including a strong technical and/or IT audit background with practical knowledge of a wide variety of technologies including server infrastructure & operating systems, network & web infrastructures, and database architecture. 

• Ability to run audit related reports within workflow systems (e.g. IAM and security logging tools such as BMC Remedy, Sailpoint, IDMart and Splunk) a plus.  

• Project management skills including demonstrated ability to handle multiple priorities and deadlines as well as prioritizing tasks, anticipating and recognizing problems, and escalating issues appropriately is desired. 

• Ability to work as a team as well as independently. 

• Ability to leverage critical thinking skills to problem solve, analyze risks (paying close attention to detail), and determine solutions. 

• Ability to lead others and provide coaching and feedback to encourage growth and improvement. 

• Ability to adapt to agile/dynamic environment. 

• Strong written and oral communication and interpersonal skills, positive attitude, and an eagerness to learn. 

 

Impact You'll Make:

• The Specialist III – Controls, Compliance & Risk (IT) will support SOX ITGC audit planning and system/application scoping, fieldwork (testing and documentation), and reporting for domestic and international locations. Opportunity to support further enhancements of TU’s SOX ITGC compliance program and financial reporting control framework in cooperation with the Manager and key stakeholders. This position will report directly to the Manager – Controls, Compliance & Risk. 

• Ability to build collaborative working relationships with IT and business process owners/control owners and cross-functional teams (US and International) to provide ongoing support and ensure controls are designed and operating effectively including ensuring their understanding of associated risks, root causes, and any action needed to remediate controls (as necessary). 

• Demonstrated ability to lead and conduct walkthrough meetings to gain an understanding of systems landscape and architecture, information/data flows, underlying IT risks, and controls in place.  Including the ability to understand and articulate IT risks and objectives and purpose of the work being performed. Ability to design, identify, and /or document key controls and develop the necessary test procedures at the direction of team management.  

• Collaborate with the external auditors and provide assistance as needed during the SOX compliance phases/activities. 

 

This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week.

TransUnion Job Title

Specialist III, Audit and Advisory