Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Information Security Control Assurance Manager image - Rise Careers
Job details

Information Security Control Assurance Manager - job 2 of 2

Company Description

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to accomplish their financial goals and help them save time and money.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com.

Internal Grade C

Job Description

As an Information Security Control Assurance Manager, you will lead a team that evaluates security controls across systems both on-premise and in the cloud, to ensure they mitigate risks and comply with regulatory and industry standards. You will provide direction and oversee the team in conducting security control testing, to verify the design, implementation, and operational effectiveness of controls. You will work in an agile environment, ensuring the quality of security assessments through testing, automation, and collaboration with teams and multiple partners.

This is a UK-based, remote position, reporting to the Information Security Risk & Control Director.

Summary of Primary Responsibilities

  • Oversee information security control testing program following Experian's risk management framework, working with teams and partners across multiple regions.
  • Oversee a team of security control testers responsible for assessing information systems, platforms, and operating procedures following established corporate standards for security.
  • Design repeatable testing methodologies to support control assurance testing, including automated testing steps for cloud environments.
  • Ensure control tests are well-planned, including risk identification, sampling, selection of controls, testing methods, and reporting criteria.
  • Compile management reports, summary analysis, and detailed presentations to describe risk, controls, and control deficiencies to multiple partners.
  • Improve the efficiency of the control testing program by ensuring Goals are measurable and testing materials are standardized.

Qualifications

What your background is

  • Experience managing a team of IT auditors or Information Security control assessors.
  • Experience performing IT Audit or Information Security control assessments, with specific experience testing cloud security controls.
  • Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent.
  • Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT.
  • Experience with current automated and manual industry methods for evaluating security controls on prem and in cloud environments.

Important Skills

  • Knowledge of security controls provided by tools such as Sailpoint, Rapid7, Wiz.io, MS Defender.
  • Experience with cloud security controls within environments such as AWS and Azure.
  • Experience using automation, data driven testing techniques and generative AI to gain efficiency in control assurance.
  • Big 4 accounting experience.
  • Experience creating queries and reports using RSA Archer and ServiceNow.

Additional Information

Benefits package includes:

  • Great compensation package and discretionary bonus plan
  • Core benefits include pension, bupa healthcare, sharesave scheme and more
  • 25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

#LI-Hybrid

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here

Experian Glassdoor Company Review
4.2 Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon
Experian DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of Experian
Experian CEO photo
Jennifer Schulz
Approve of CEO
by Experian on Glassdoor

Average salary estimate

$95000 / YEARLY (est.)
min
max
$70000K
$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Information Security Control Assurance Manager, Experian

Join Experian as an Information Security Control Assurance Manager and play a critical role in shaping the security landscape of our global operations! At Experian, we harness the power of data and technology to unlock opportunities and drive innovation in various sectors. In this dynamic position based in Ruddington but with the benefit of remote work, you will lead a skilled team focused on evaluating security controls both on-premise and in cloud environments. Your expertise will guide the team as they conduct thorough security control testing, ensuring these measures effectively mitigate risks while adhering to regulatory standards. In addition to crafting repeatable testing methodologies, your responsibilities will include compiling detailed management reports to communicate risks and findings to stakeholders across different regions. By fostering an agile and collaborative environment, you're not only enhancing our security posture but also contributing to the overall mission of helping millions achieve their financial goals. If you're passionate about information security and eager to make an impact in a forward-thinking company, we invite you to explore this exciting opportunity with Experian!

Frequently Asked Questions (FAQs) for Information Security Control Assurance Manager Role at Experian
What are the primary responsibilities of an Information Security Control Assurance Manager at Experian?

As an Information Security Control Assurance Manager at Experian, you will oversee the information security control testing program, ensuring compliance with risk management frameworks. You’ll manage a team responsible for evaluating the effectiveness of security controls across various platforms, both on-premise and cloud-based. Additionally, you’ll be tasked with designing robust testing methodologies and compiling reports that detail risk assessments and control efficiencies.

Join Rise to see the full answer
What qualifications are necessary for the Information Security Control Assurance Manager position at Experian?

To qualify for the Information Security Control Assurance Manager role at Experian, you should have experience managing a team of IT auditors or security assessors, alongside a professional certification such as CISA, CISM, or CISSP. Familiarity with security standards and frameworks like NIST 800-53 and ISO 27001 is essential. Additionally, experience in automated and manual testing of security controls in cloud environments like AWS and Azure will be a significant advantage.

Join Rise to see the full answer
How does Experian support its Information Security Control Assurance Manager team in achieving their goals?

Experian supports its Information Security Control Assurance Managers by fostering an agile work environment and providing the resources needed for efficient security assessments. This includes access to industry-standard tools and technologies, along with comprehensive training to ensure the team remains at the forefront of security best practices. Additionally, the company encourages collaboration across teams to enhance testing methodologies and improve security outcomes.

Join Rise to see the full answer
What kind of technology and tools will I work with as an Information Security Control Assurance Manager at Experian?

As an Information Security Control Assurance Manager at Experian, you will work with various security tools, including Sailpoint, Rapid7, and Azure Security Center, among others. You’ll also utilize automation and data-driven testing techniques to optimize the control assurance process, ensuring your team is equipped to meet the evolving challenges in information security.

Join Rise to see the full answer
What benefits does Experian offer to its Information Security Control Assurance Manager team?

Experian offers an attractive benefits package for its Information Security Control Assurance Manager team, including competitive compensation, a discretionary bonus plan, health care benefits, a pension scheme, and opportunities for professional development. Employees also enjoy 25 days of annual leave, flexible work arrangements, and additional leave options, all aimed at promoting work-life balance.

Join Rise to see the full answer
Common Interview Questions for Information Security Control Assurance Manager
Can you explain your experience with managing security control assessments?

In answering this question, highlight specific instances where you managed assessments, detailing the methodologies applied and tools used. Discuss how your leadership helped your team navigate complex security challenges and ensure compliance with industry standards.

Join Rise to see the full answer
What automated testing methods have you implemented in your previous roles?

Describe the automated testing methods you’ve used, focusing on their effectiveness in streamlining processes. Emphasize any tools or technologies that you leveraged to improve testing efficiency while maintaining control quality.

Join Rise to see the full answer
How do you prioritize risk when assessing security controls?

Discuss your approach to risk prioritization, including the criteria you use to evaluate risks. Share examples of how prioritizing risks informed your decision-making during assessments, aimed at maximizing the impact of control measures.

Join Rise to see the full answer
How familiar are you with NIST and ISO standards?

Explain your familiarity with NIST and ISO standards, including how you’ve utilized them in your work to guide security assessments. Provide examples of how these frameworks have influenced your methodologies and reinforced compliance in your team’s operations.

Join Rise to see the full answer
What challenges have you faced in security control testing, and how did you overcome them?

Provide detailed examples of specific challenges such as resource constraints or technological barriers. Explain the strategies you employed to overcome these obstacles, emphasizing your problem-solving skills and adaptability.

Join Rise to see the full answer
Can you describe a time when you identified a significant security vulnerability?

Share a narrative about a significant vulnerability you identified, detailing how you discovered it and the impact it had on your organization. Discuss the steps you took to mitigate the risk and communicate findings to stakeholders.

Join Rise to see the full answer
How do you keep your knowledge of information security current?

Discuss the resources you utilize to stay informed, such as industry publications, webinars, or certifications. Emphasize your commitment to continual learning and how you’ve applied new knowledge to improve security practices.

Join Rise to see the full answer
What experience do you have working in a multi-regional environment?

Describe your experience collaborating with teams or stakeholders in different regions. Highlight any challenges faced due to cultural or regulatory differences, and explain how you adapted your approach to ensure effective communication and results.

Join Rise to see the full answer
How do you handle reporting findings to senior management?

Explain your approach to reporting, focusing on clarity and actionable insights. Discuss how you tailor presentations to your audience, ensuring they understand the significance of findings and recommended actions.

Join Rise to see the full answer
What do you consider the most important quality in a security control assurance team?

Articulate your perspective on qualities such as collaboration, transparency, and a proactive mindset. Discuss how these attributes contribute to the overall effectiveness of the security assurance process, citing examples from your experience.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Experian Remote Mount St, North Sydney NSW 2060, Australia
VIEW
Posted 8 days ago
Photo of the Rise User
Experian Hybrid 475 Anton Blvd, Costa Mesa, CA 92626, USA
VIEW
Posted 8 days ago
B
Blend Technologies S.A. Remote No location specified
VIEW
Posted 9 days ago
A
Armada External Careers Remote United States (Remote)
VIEW
Posted 4 days ago
Photo of the Rise User
City of New York Remote New York City, NY
VIEW
Posted 3 days ago
Photo of the Rise User
Red Canary Remote Remote
VIEW
Posted 15 hours ago
T
Talent Worx Remote No location specified
VIEW
Posted 8 hours ago
C
Constellation Technologies, Inc Hybrid No location specified
VIEW
Posted 3 days ago
Photo of the Rise User
RR Donnelley Remote Warrenville, IL
VIEW
Posted 4 days ago
C
Cambridge Isotope Laboratories, Inc. Hybrid No location specified
VIEW
Posted yesterday
Photo of the Rise User Experian

We pride ourselves on being certified as a Great Place To Work and firmly believe that creating a positive company culture is less about ping pong tables and more about transparency, connection, and "work with purpose." The unique perspective of e...

803 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
INDUSTRY
TEAM SIZE
HQ LOCATION
EMPLOYMENT TYPE
Full-time, remote
DATE POSTED
March 19, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok