IT – Compliance

TransUnion's Job Applicant Privacy Notice

What We'll Bring:

About Us
We are one of India’s leading credit information company with one of the largest collections of consumer information. We aim to be more than just a credit reporting agency. We are a sophisticated, global risk information provider striving to use information for good.
We take immense pride in playing a pivotal role in catalyzing the BFSI industry in the country. We got here by tapping into our excitement and passion of wanting to make a difference in the lives of our clients and consumers.
Culture and Values
Our culture is welcoming, energetic, and innovative. There’s an overall synergy that flows throughout the company, creating a sense of connect, belonging and unity in knowing that we’re all working to achieve the same overall goal. Our core values which we live by every day are integrity, People, Customer, and Innovation.
https://www.transunion.com/privacy/global-job-applicant
What is excitement and passion for us?
We define it as a blend of curiosity, ability to unlearn and yet continuously learn, able to connect with meaning and finally the drive to execute ideas till the last mile is achieved. This passion helps us focus on continuous improvement, creative problem solving and collaboration which ensures delivery excellence.
Dynamics of the Role
This is an exciting time in TransUnion CIBIL. With investments in our people, technology and new business markets, we are redefining the role and purpose of a credit bureau.

What You'll Bring:

Roles & Responsibilities

Responsibility:

• Lead the system-wide information security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies and regulations.
• Manage the governance, planning and risk management functions and ensures appropriate policies and controls are in place for effective service delivery. Manage all areas related to Release and Change Management.
• Execute strategy for dealing with increasing number of audits, compliance checks and external assessment processes for internal/external auditors.
• Establish and develop appropriate policies, procedures and practices in relations to governance and planning functions
• Communicate the governance activities, policies and decisions with the IT Management and Business Leadership and keep them informed of IT governance decisions that will affect IT services and projects.
• Ensure and Monitor effective implementations of the policies and procedures
• Monitors open audit issues and conducts post-audit follow-up to evaluate the adequacy of remediation efforts
• Prepares other ad-hoc reports and assists in special projects as required or requested by supervisor
• Ensure necessary awareness for the IT policies and procedures
• Assess and monitor the IT control environment to identify IT control objectives, risks, applications, third-party suppliers, and controls relevant to compliance with SOX.
• Evaluate the impact of IT related process changes on financial reporting risk, SOX compliance objectives, and the SOX control testing scope.
• Coordinate/Work effectively in the Internal Audit program with the Auditors.
• Prepare and maintain required documentation to a high standard of quality.
• Communicate IT SOX testing requirements, control gaps, and control deficiencies.
• Work with the Controllership Governance leader to define and prioritize data driven process monitoring, analysis, and automated testing goals.
• Keep abreast of regulatory developments within or outside of the company as well as evolving best practices in compliance control
• Prepare reports for senior management and external regulatory bodies as appropriate

Impact You'll Make:

Experience and Skills

• Bachelor's degree in Computer Science, Information Management, Finance, Accounting, or a related field.
• Minimum 7-8 years of experience in audit or SOX requiring knowledge of auditing principles, auditing standards, IIA standards, PCAOB, and SOX requirements.
• Experience in IT General Computer/Application controls and understanding of IT platforms, applications and related technology.
• Experience with the Committee of Sponsoring Organizations of the Treadway Commission (COSO) framework and its supplement the Control Objectives for Information and related Technology (COBIT) framework for IT controls.
• Recognized certification in Information Security such as: Certified Information System Auditor [CISA], Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP)
•  Practical experience in the implementation or use of document and/or records management systems such as SharePoint or similar technology.
•  ITIL V3 Foundation as a minimum; ITIL advanced practitioner qualifications would be desirable
  - ISO 27001:2013 or ISO 27001:2023 certification
• Knowledge of statistics and experience using statistical packages for analyzing datasets (Excel, SPSS, SAS etc

Essential Competencies

Ability to build trusting relationships - across all levels and in the immediate / extended team internationally, should be known and regarded as a trusted competent advisor.

Driving innovation – A believer in continuous improvement of services, processes and operational efficiency. Demonstrates curiosity and critical thinking.

Business Acumen – Spends time to ensure understanding of the business and aligns accordingly.

Change agent – Ability to diagnose correctly, design and execute interventions. Ensures communication through appropriate channels in a concise and proactive manner.

Execution champion – Focuses and ensures closure without compromising on quality of the output. Raises / flags issues as necessary and moves forward with a solutioning approach

This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week.

TransUnion Job Title

Specialist II, Governance Risk and Compliance