Address
Form of workWe are inviting applications for the role of DLP Consultant/Senior Consultant (Banking / Capital Markets)
The role will reside within the Internal Audit's Technology team in New York. The team covers application technology, infrastructure and cyber security audits. Technology Auditors focus on the application and system infrastructure controls that handle business risks and are responsible for understanding, analyzing, and testing the technology controls.
Primary Responsibilities (Day Job)
The role will reside within the Internal Audit's Technology team in New York. The team covers application technology, infrastructure and cyber security audits. Technology Auditors focus on the application and system infrastructure controls that handle business risks and are responsible for understanding, analyzing, and testing the technology controls.
Primary Responsibilities (Day Job)
- Work within Internal Audit, to handle/execute risk-based audits
- Demonstrated ability to leverage DLP capabilities across multiple technologies to enforce DLP policy
- Strong written and verbal communication skills to represent TransUnion's DLP capabilities to stakeholders, provide direction to DLP team members, and engage with company employees on DLP escalations
- Ability to build strong relationships with business and technology stakeholders, self-motivation, personal drive and high energy are highly valuable for this position
- Verify if the security configurations are in-line with approved SecArch
- Experience with DLP solutions that leverage multiple tools to create an effective DLP program
- Provide DLP policy recommendations based on findings from analytical efforts
- Understand audit scope, prepare audit planning documentation, and plan and conduct walkthroughs
- In- Depth Knowledge of the following messaging systems (Skype, Slack, Google Chat, WeChat, Bloomberg Anywhere, Microsoft Team, Amazon online chat)
- Industry knowledge and hands-on experience evaluating messaging platform application security configuration and integration with data loss prevention tools.
- Masters'/ Bachelors' Degree (Computer Science or IT related preferred)
- CISA, CISSP or CPA certification (preferred, though not required)
- Two to three years of relevant experience in auditing technology controls, system interfaces, and data processing and security infrastructure, preferably with a good exposure to auditing front/middle/back office systems in Investment Banking companies
- Familiarity with COBIT, SOX, NIST and FFIEC
- Solid understanding of IT general controls
- Demonstrable ability to handle and collaborate within teams, especially in a multi-regional team structure
- Excellent written and verbal communication skills
- Demonstrated ability to learn quickly and think critically
- Demonstrable ability to work independently on multiple assignments, while meeting the timeframe.
