Equifax is where you can power yours possibly. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you.
Equifax is a dynamic organization committed to maintaining the highest standards of compliance and data security. We are actively seeking an ISO 27001/HIPAA Compliance Analyst who thrives in fast-paced environments and is focused on delivering results within budget and schedule. This role is integral to our commitment to ISO 27001 and HIPAA compliance and will report directly to the Senior Director of Compliance.
**What you'll do**
- Collaborate with various departments and customers to analyze, respond to, and document Due Diligence packages.
- Foster relationships with key stakeholders in security, software engineering, operations, and business to enhance security governance and risk management.
- Facilitate ISO 27001 and HIPAA audit engagements, including data/artifact collection, exception remediation, and ongoing monitoring.
- Assist in the development of audit reports and summarize findings to facilitate remediation tasks for IT operational teams.
- Contribute to the maintenance and updating of a library of information security control policies and standards, focusing on ISO 27001 and HIPAA compliance.
- Stay abreast of changes or updates in security control frameworks, compliance laws, and statutes, and assess their impact on the organization's security posture.
- Conduct or participate in cross-training sessions with the Operations team on the management and configuration of security tools and technical controls.
- Provide regular updates, status reports, and completion information to leadership.
**What experience you need**
- English proficiency B2+ minimum (Belt)
- 2+ years of experience in a security-related role.
- 2+ years of experience in conducting audit interviews and performing comprehensive audit testing related to ISO 27001 & HIPAA Frameworks.
**What could set you apart**
- Bachelor's Degree in Information Technology or Cybersecurity
- Professional training or education in cybersecurity is a plus, including certifications such as CISSP, CCSP, CompTIA Security+, or Network+.
- Knowledge of cybersecurity frameworks and standards such as NIST, ISO 27001, HIPAA, and PCI-DSS.
- Broad understanding of cybersecurity and technical concepts including cloud technologies, services, and networking.
- Excellent communication skills, with the ability to engage with a variety of people effectively.
- Strong analytical and problem-solving skills, with the ability to determine or drive solutions.
- Experience with data visualization, Google app script coding, or other methods of building automation in programs.
We offer comprehensive compensation and healthcare packages, on-site doctor, paramedics service 24/7, life insurance, gym facilities, collaborative workspaces, free transportation and parking, subsidized cafeteria, solidarity association, and organizational growth potential through our online learning platform with guided career tracks.
Equifax is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
