Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you.

As an intermediate level Security Compliance Analyst, you will report to the Security Compliance Manager and will be a key member of the Security, Governance and Compliance team. This position is focused on SOC1 and SOC2 compliance, working across multiple business units globally to ensure and deliver upon our annual SOC1 and SOC2 assessments and improve our security compliance posture overall. The Security Compliance Analyst will work closely with Information Security and Technology team members to build and maintain a strong security compliance practice, while ensuring ongoing delivery on our compliance obligations.

The role requires attention to detail, time management skills, control testing experience and a mix of business and technical acumen with strong people skills. Must have the ability to build trusted relationships and influence decisions around security risk and compliance management.

Sponsorship is not available for this position.

This position is based in Atlanta. This resource should be local to Atlanta and will be required to work from one of the following Equifax office locations - Alpharetta or Atlanta (Midtown).

To adhere to our Return To Office (RTO) weekly onsite requirements, Equifax has a hybrid work schedule that allows for 2 days of remote work (Monday and Friday), with 3 days onsite (Tuesday, Wednesday, Thursday) each and every week.

What you’ll do

• Support management of the SOC1 and SOC2 compliance process from end to end including pre-assessments, contracting, planning, scheduling, walkthroughs, control testing, evidence collection, reporting, and remediation.

• Facilitate interaction between the business and the Equifax external auditor

• Support evidence collection harmonization and automation efforts with regards to various security compliance frameworks including SOC1/2, PCI-DSS, FISMA, and ISO 27001

• Develop the strategy, goals, and objectives for meeting and sustaining SOC1 and SOC2 requirements.

• Collaborate with multiple departments and cross functional teams

• Assist with analysis of security control mapping and compliance efficiency improvements.

• Fulfill customer requests and administer access to external customers users to global Equifax security reports.

• Assist in maturing security compliance via automation or other tools

• Provide reporting and trending information of identified risks to SOC2 compliance timelines

• Organize, publish, and maintain audit evidence and related documents in such a way that information is easily accessible

• Assist Global Security Compliance team in other tasks as required

What experience you need

• Bachelor's Degree in Information Systems/Technology, Business or equivalent work experience

• 2 to 5 years experience managing SOC1 and/or SOC2 audits or directly related audit experience

• 1-3 years technical experience auditing cloud environments such as Google GCP or Amazon AWS

• 1-3 years experience in other regulatory mandates such as NIST 800-53, SOX 404, ISO27001, PCI-DSS, etc.

• Thorough understanding of information security practices and methodologies

• Thorough understanding of SOC2 compliance objectives and criteria

• Experience performing assessments of information security programs including detailed control testing

What could set you apart

• Professional consulting background (external auditing or consulting)

• A Security Certification such as CISSP, CISA, CISM, CRISC preferred

• Familiarity with various security & other tools preferred: Wiz, GitHub, Saviynt, ServiceNow

• Experience documenting business processes or technical procedures preferred

• Professional skills that include extreme attention to detail, excellent time management skills, ability to effectively communicate at multiple levels of management, inquisitive, problem-solving, with ability to understand large, complex systems in a global setting

• Strong organizational skills

• Ability to work independently and collaboratively in setting goals and priorities

#LI-Hybrid

#LI-JC2

We offer comprehensive compensation and healthcare packages, 401k matching, paid time off, and organizational growth potential through our online learning platform with guided career tracks.

Are you ready to power your possible? Apply today, and get started on a path toward an exciting new career at Equifax, where you can make a difference!

Primary Location:

USA-Atlanta-One-Atlantic-Center

Function:

Function - Security Governance and Compliance

Schedule:

Full time