Information Security Specialist Lead

experian· Legal & Compliance
Apply Now ↗

About this role

Company Description

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more. Experian invests in people and new advanced technologies to unlock the power of data. We have an amazing team of 25,200 people in 32 countries. 

Job Description

Reporting to the Information Security Director, you will lead the identification, documentation, and formalization of security risk and controls framework across the Enterprise to meet the cybersecurity and risk requirements set by Experian.

The Information Security Specialist Lead will contribute to the team's goals of ensuring a sound security posture by assessing the risk-based design of security controls and security capabilities.

You will contribute the design and operation of best practice cyber risk management practices, collaborating with partners across all Security and IT teams in the Enterprise.

Responsibilities:

  • Lead the security risk and controls strategies in engaging with Regional BU and Centralized security and IT control owners across the Enterprise to populate the controls library.
  • Maintain and update the integrated risk and controls framework based on information security policies and industry best practices and standards.
  • Review control activities populated by control owners to ensure they align with requirements outlined in control standards and goals.
  • Identify, document, and report control activity gaps and provide recommendations for remediation.
  • Compile management reports, summary analysis, and detailed presentations to describe risk and controls program.
  • Develop and present content for controls implementation workshops with control owners across the Enterprise.
  • Ensure information security controls are aligned and mapped to applicable risks (risk types and risk register entries) in Archer GRC platform.
  • Monitor and stay informed about internal and external risk indicators for impacts and potential disruptions to Experian and our mission. Provide these risk indicators as inputs to control assurance and other EGSO activities.
  • Contribute to the efficiency of the risk and controls program by ensuring that processes and methodologies are standardized, and stakeholder feedback is captured to ensure improvement and an engagement model.

Qualifications

  • 5+ years of experience performing IT Audit, Information Security control assessments.
  • Experience with GRC tools, such as Archer.
  • Knowledge of information security frameworks such as ISO 27001/2, NIST CSF, PCI DSS, and HIPAA.
  • Knowledge of information security risk management management/analysis frameworks such as Open FAIR, NIST 800-37, NIST 800-39.
  • Knowledge of governance, risk, and controls principles and operational impacts of cybersecurity lapses.
  • Knowledge of IT technologies and methods to secure them with a knowledge of Cloud security. A working knowledge of AWS cloud environment is beneficial.
  • Guide the Risk and Control teams continuing maturity using new technologies such as AI and ML.
  • Proficient in security control design, implementation, and evaluation.
  • Proficient in performing impact/risk assessment.
  • Experience facilitating small to medium size group meetings with senior leadership audiences.
  • Bachelor's degree in computer science, management information systems or relevant field or equivalent demonstrable experience.
  • Certifications: CISA, CISM, CRISC, CISSP, ISO 27001 Lead Auditor, or comparable certifications.

Additional Information

Our uniqueness is that we celebrate yours. Experian's people first, inclusive and purpose driven culture is multi award-winning; World's Best Workplaces™ 2025 (Fortune Global Top 25), Great Place To Work™ in 26 countries to name a few. Check out Experian Life on social or explore our Careers Site to understand why. Experian is also proud to be an Equal Opportunity and Affirmative Action employer. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Experian is proud to be an Equal Opportunity Employer for all groups protected under applicable federal, state and local law, including protected veterans and individuals with disabilities. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.

#LI-Remote

This is a remote position.

Frequently Asked Questions

Is the salary disclosed for the Information Security Specialist Lead position at experian?
The salary for this Information Security Specialist Lead role at experian is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Where is the Information Security Specialist Lead position at experian located?
This Information Security Specialist Lead role at experian is based in Heredia, Heredia, Heredia, Costa Rica, cr. The position is listed as on-site or hybrid. Check the full job description or apply directly to confirm the work arrangement.
Is the Information Security Specialist Lead role at experian full-time or part-time?
This is listed as a Full time position. It is posted as a Information Security Specialist Lead role in the Legal & Compliance department at experian.
Which team or department does the Information Security Specialist Lead at experian belong to?
This Information Security Specialist Lead position is part of the Legal & Compliance department at experian. See the full job description for more information about the team structure and responsibilities.
How do I apply for the Information Security Specialist Lead position at experian?
Click the "Apply Now" button on this page. You will be redirected to experian's official application portal hosted on smartrecruiters where you can submit your application directly.
When was the Information Security Specialist Lead job at experian posted?
This Information Security Specialist Lead position at experian was posted on May 22, 2026. Apply as soon as possible — early applications are often reviewed first.
Information Security Specialist Lead
experian
Apply for this role ↗

You'll be redirected to experian's official application page on SmartRecruiters.