M&A Cybersecurity Architect

TransUnion
Chicago, IL
03 Jul 2024

Vacancy expired!

TransUnion's Job Applicant Privacy Notice

What We'll Bring:TransUnion is a leading global provider of information and risk management solutions to businesses across multiple industries and to individual consumers. Our technology and services enable businesses to make more timely and informed credit granting, risk management, underwriting, fraud protection and customer acquisition decisions by delivering high quality data, and by integrating advanced analytics and enhanced decision-making capabilities. We have operations in the United States, Africa, Canada, Latin America, Asia Pacific and India and provide services in 25 countries. Since our founding in 1968, we have built a stable and highly diversified customer base of approximately 45,000 businesses in multiple industries, including financial services, insurance, healthcare, automotive, retail and communications.

At TransUnion, we know that finding the right people is the reason we're a global leader in credit information and information management services. We strive to provide an environment that allows our talented people to find success and satisfaction. Now, we're adding to the team and seeking a Cybersecurity Advisor for our M&A initiatives.

The Team's Focus:

TransUnion constantly analyzes market opportunities for growth through investments and acquisitions. To do this successfully requires a robust and mature M&A pipeline process. TransUnion's Information Security team plays a key part in M&A diligence and integration to ensure a clear and thorough understanding of risks associated with potential targets as well as appropriate planning and delivery of protection capabilities to acquired companies. As an M&A Cybersecurity Advisor, you will be part of the deal pursuit and integration teams that work across the globe, driving Information Security goals by helping to lead evaluations of investment and acquisition targets and, as applicable, their subsequent integrations.

What You'll Bring:
  • Security Diligence: Assist in evaluation of M&A targets' security postures-organizational structure, policies, processes, technical capabilities-based on TransUnion's playbook and standards. Work with M&A targets' technology and information security management to execute internal and 3rd party vendor assessments.
  • Security Integration Planning: Assist in development of the security integration hypothesis including merging of organizational structure and security capabilities. Be a key contributor to planning of security integration programs based on results of M&A diligence and security assessments as well as your knowledge of TransUnion's security posture, technology capabilities, and lessons learned from previous integrations.
  • Integration Cost Model Development: Assist in development of security integration cost models and financial forecasts while ensuring that they coincide and align with broader technology integration assumptions and milestones as well as TU's strategic direction for information security capabilities.
  • Security Architecture & Capability Planning: Working in conjunction of other parts of Information Security and technology teams, help lead development of security architecture plans and designs in accordance with integration objectives to bring acquired companies up to TransUnion's on-prem and cloud security standards.
  • Risk Management: As a technical subject matter expert, help lead security risk assessments, application and infrastructure remediation, and process improvements that are part of the M&A lifecycle. Help drive prioritization of remediation activities based on threat modeling/risk analysis, regulatory needs, and strategic imperatives.
  • Security Assessment Tooling: Help drive additional maturity and standardization in use of assessment tooling to evaluate acquired companies' security postures, particularly for cloud environments. Facilitate adoption of selected tools in the M&A playbook.
  • Collaboration: Closely collaborate across M&A teams and locations. Address issues expeditiously, define alternative solutions as needed, resolve conflict and create lasting, productive partnerships with stakeholders in acquired entities. Help ensure that resources and organizational structure exist to promote collaboration and meeting of integration objectives.
  • Communication: Convey goals and objectives to senior management and project team members in a clear and compelling manner. Actively listen during meetings and be comfortable clarifying ambiguity or technical areas beyond your comfort zone of knowledge. Assist in producing concise presentations and other deliverables on a timely basis. Promote open communication within the project team.
  • Change Management: Recognize the impact culture has on success and, if needed, tailor communication and delivery approach to local M&A teams and stakeholders to achieve outcomes. Assist in positioning projects and their objectives within the context of acquisition priorities to executives and sponsors. Effectively operate within different organizational cultures and norms to achieve M&A objectives.

We'd Love to See

As an Advisor, an ideal candidate will have 10 - 15 years of progressive experience in security architecture and engineering, involvement in acquisition and/or divestment projects as well as meet the following criteria:
  • Bachelor's degree in computer science, information security or related field
  • Security architecture experience with cloud and on-prem environments and security solutions
  • Development experience in Java, Python or other common languages sufficient to understand application security concepts
  • Hands-on security posture assessment tooling experience, particularly with cloud infrastructures (Cloud Compliance, Dome9/CloudGuard, or similar)
  • Familiarity with industry frameworks and standards such as NIST CSF, CIS, and ISO 27001/27002
  • Threat modeling and risk assessment experience
  • Experience in presenting to C-level executive stakeholders
  • Ability to work with and lead virtual teams
  • Attention to detail but with an eye on the big picture
  • Proficiency in Microsoft Office Suite (especially PowerPoint, Visio and Excel)
  • Information Security certification (CISSP or other)

Impact You'll Make:
  • Build and mature the function of this role.
  • Provide security architecture and evaluations of potential targets.
  • Develop and execute integration plans.
  • Develop deployment cost models.
  • Exposure and interaction with various leaders within TU.

#LI-KJ1

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.

During the COVID-19 pandemic, TransUnion has several safety protocols in place to protect associates, customers, and visitors. You may be required to be fully vaccinated against COVID-19 as a condition of employment and/or to participate in certain work-related activities. Exemption is available to qualified candidates as a reasonable accommodation.

TransUnion's Internal Job Title: Advisor, Info Sec Governance
  • ID: #43801683
  • State: Illinois Chicago 60601 Chicago USA
  • City: Chicago
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2022-07-03
  • Deadline: 2022-08-31
  • Category: Et cetera