Analyst Information Security

TransUnion's Job Applicant Privacy Notice

What We'll Bring:

We are looking for techno functional profiles to fill TU CIBIL Information Security contractual / full time positions. Candidates with decent experience and good skill set in information security and knowledge of security technologies and solutions will fit the bill.  Please find the job description below and share your referrals.

What You'll Bring:

We are looking for techno functional profiles to fill TU CIBIL Information Security contractual / full time positions. Candidates with decent experience and good skill set in information security and knowledge of security technologies and solutions will fit the bill.  Please find the job description below and share your referrals.    

Basic Requirements:

• 2-3 years of experience in information security – audits & assessments, security operations
• At minimum, one security certification
• Hands on experience with client audits and risk assessments
• Preferably based out of Mumbai and willing to work in a hybrid model
• Must have good communication skills and be able to drive communications with internal teams and banks / partners

Job Responsibilities:

• Candidate shall be responsible to build strong relationship with internal and external stakeholders to drive customer / partner risk assessments
• Must carry good understanding of different security domains – network security, end point security, server security, logging and monitoring, technology integrations, etc.
• Must ensure that technology and process risks are identified and reported, adequate recommendations are made and tracked for timely closure of assurance actions
• Must be familiar with regulatory requirements – RBI Cyber Security Framework, Regulatory Advisories, CICRA, 2006, etc.
• Good to have good security policy and process documentation skills and carry hands on experience in drafting SOPs
• Carry good knowledge on industry security standards and frameworks – ISO27001, SOC 2, NIST, PCI DSS and hand on at least one of them
• Plan and execute day-to-day compliance activities to maintain company’s ISO27001, SOC 2 certifications
• Must have good technical knowledge on minimum baselines and hardening benchmarks for various flavors of server OS and network devices and must have skills to carry out configuration reviews
• Be able to work closely with IT Infra and Applications to understand the technical intricacies of IT and Security projects
• Must have good knowledge on vulnerability and threat management process and carry an audit lens to improve efficiency of the VTM program
• Must be able to articulate audit requirements from Internal and External Auditors

Impact You'll Make:

Swati Sharma will be responsible for the below:
1) ISO27001 certification and compliance.
2) SOC Type I and Type II
3) Handling Client/Member audits
4)Responding to client questionnaires and RFP
5) Handling BCP process for Mumbai India

TransUnion Job Title

Analyst, Information Security