Security Analyst

more at experianplc.com.

Description

Security Governance, Assurance & Risk Support

• Support security governance and assurance activities, including monitoring adherence to security policies, standards, and control frameworks

• Help with security risk assessments for projects, platforms, and services, documenting risks and recommended treatment plans.

• Support internal and external audits (e.g. ISO 27001, SOC 2, PCI DSS), including evidence collection, control testing, and remediation tracking

• Support control design, implementation, and operational effectiveness testing across security and IT controls

Security Metrics & Compliance Monitoring

• Monitor security metrics, dashboards, and control performance indicators under the guidance of senior team members

• Identify and record non‑compliance and control deviations against defined security standards, policies, and SLAs

• Perform initial analysis of trends and recurring issues and escalate

Non‑Compliance Tracking & Remediation Support

• Log and track security non‑conformities, findings, and control gaps

• Work with application owners and platform teams to support agreed remediation actions

• Track remediation progress and update records and dashboards

• Escalate overdue or higher‑risk items following defined processes

Report & Stakeholder Support

• Help prepare security reports, dashboards, and metrics summaries

• Collaborate with Risk Management, Internal Audit, and Technology teams to support identification of new risks and compliance gaps

• Contribute to continuous improvement programs to mature security processes, metrics, and reporting

• You will be reporting to a Senior Manager

• You will have to WFO 2 days a week as it is Hybrid working

Qualifications

• This requirement necessitates 2-4 years of experience in an information security, IT risk, compliance, or audit role (or relevant experience) on your part.
  • You need to have understanding of security and risk frameworks such as ISO 27001, SOC 2, or NIST
  • Familiarity with security metrics, control monitoring, and compliance reporting
  • Analyse information and document findings
  • Awareness of cloud, SaaS, or enterprise platforms
• Desirable Skills & Qualifications

  • Exposure to security audits, assurance, or compliance activities

  • Experience in regulated or data‑driven environments

  • Hands-on experience of security monitoring tools such as Panaseer, Checkmarx, Wiz.io

  • Security or risk‑related certifications e.g. ISO 27001 Lead Implementor/Auditor, CCSK, CySA+, Security+, CISA, CRISC, CISSP (or working towards)

Additional Information

Our uniqueness is that we truly celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what truly matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's strong people first approach is award winning; Great Place To Work™ in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is a critical part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, color, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.

Experian Careers - Creating a better tomorrow together

Benefits

Experian care for employee's work life balance, health, safety and wellbeing. In support of this endeavor, we offer best-in-class family well-being benefits, enhanced medical benefits and paid time off.

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here