Reporting to the AMTH Controls Testing Senior Manager, the Controls Testing Lead will support the development of the testing methodology for the access management testing hub including the risk assessment, planning and execution of assurance activity over access management risks across the Experian global business, with the potential to expand into other areas of data security testing. .
The testing lead will be responsible for developing and executing controls testing plans and for communicating, agreeing and monitoring gaps in controls in line with Experian risk management processes and in collaboration with other assurance functions across the first, second and third line of defense.
The Controls Testing Lead will also support the Controls Testing Senior Manager in the development of testing methodologies, risk universe and integrated reporting.
Major Job Functions :
Support the Controls Testing Senior Manager in the identification and prioritization of testing activities as part of the assurance planning process.
Collaborate with the Data Analytics Lead to identify opportunities for converting manual testing into continuous monitoring activity and to follow up on the results of continuous monitoring and analytics.
Support the development and maintenance of the testing methodology for the access management hub aligning methodology with the other assurance functions through the Assurance Steering Committee and associated working groups.
Plans and executes control tests including coordinating the audit process with key stakeholders, managing the activities of control testing analysts (local and overseas), reviewing the quality of work performed.
Prepares draft reports reflecting the results of work performed and agrees the findings and proposed actions with the business owners.
Present findings to senior managers of the business and the relevant risk management forums.
Develop and maintain the risk universe to support the identification and prioritization of testing and reporting of results and coverage.
Required Experience :
Educated to degree level, preferably in a technical subject
Relevant professional qualifications (CISA, CISSP, CISM, QiCA or equivalent)
10 years’ experience in information security controls assurance or IT audit.
Big 4’ and / or internal audit experience desirable.
Essential Abilities :
Demonstrates high levels of personal integrity at all times.
Strong oral and written communication skills.
Influencing skills and gravitas, so that senior management will buy-in to changes being proposed.
The ability to work independently and proactively.
A commercial and pragmatic approach to governance and change.
A problem solver who proposes innovative solutions.
An approach that champions collaboration and consultation.
Ability to work independently and proactively
Problem solver who proposes innovative solutions
Experience in scoping, executing and reporting access management control testing.
Proven ability to identify key risks in access management and influence improvements in the control environment
Adept at queries, report writing and presenting findings
Experience of working in a multinational environment.
Experience of data analytics or continuous monitoring
Experience of identity and access management tooling
Experience of cloud computing (e.g. AWS)
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together.
We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work.
For us, this is and it ensures that we live what we believe.