Job Details

Accreditation Specialist Lead (Remote)

As the Accreditation Specialist Lead, you will be part of the Global Security Office (GSO), which sets and ensures that the Information Security policy and standards are implemented across Experian. You will lead accreditation projects (SOC 1/2/3, ISO27001, PCI-DSS), and report to the Regional Lead of Client Security Assurance.

You'll have the opportunity to:

• Lead specific standards' compliance, such as PCI, HIPAA, ISO 27002, SOC 1/2/3, FISMA/FedRAMP.
• Maintain evidence repositories and work with relevant SMEs to refresh artifacts.
• Lead audits and certification efforts (including gap analysis) for the businesses and technology.
• Partner with client support functions to develop timelines and resources needed to complete accreditation projects.
• Partner with other stakeholders to establish the accreditation program and workstreams' governance framework, ensuring adherence to those standards thereafter.
• Establish, document, and communicate project scope, milestone/detailed plans, risks, and issues, and then use as a basis for all discussions across the program to ensure full agreement.
• Engage with key stakeholders and provide facilitation to allow full engagement and participation across the program.
• Provide ongoing status reports at the program level and collaborate with workstream owners to deliver reporting.
• Work with the Policy and Standards team to incorporate changes into the enterprise policy document based on compliance assessment results.
• Develop metrics and reporting to demonstrate standards compliance status and flag risks.
• Communicate the standards compliance posture and effectiveness to Management on a scheduled basis.
• Follow up on deficiencies identified in reviews and external audits to ensure appropriate remediation measures are achieved promptly. Track mitigation steps and ensure that risks are managed.
• Lead a complex group of accreditation projects as it relates to post-audit or readiness assessment activities.
• Monitor and report challenges within timelines, resources, project plans, action logs, status reports, and statistics to ensure milestones, goals, and commitments are met.

Qualifications include 8+ years of experience with cloud platforms such as Amazon Web Services (AWS), Azure, and Google Cloud Platform (GCP). Deep technical knowledge of specific security standards such as PCI, HIPAA, SOC 1/2/3, ISO 27001/2, FISMA/FedRAMP, CCM, NIST is required. Experience leading similar compliance audit programs and auditing cloud environments is necessary. Experience presenting to board level is also required. Project management skills running projects end-to-end; project initiation, planning/scheduling, execution, monitoring/reporting, and closure are essential. Plus: PMP, CISA, CISM, CCSP, PCI QSA, or comparable certifications are preferred.

Benefits/Perks include a great compensation package and bonus plan, core benefits including medical, dental, vision, and matching 401K, a flexible work environment, ability to work remote, hybrid or in-office, flexible time off including volunteer time off, vacation, sick and 12-paid holidays.