Cyber security Advisor

TransUnion's Job Applicant Privacy Notice

What We'll Bring:

We are seeking a seasoned cybersecurity professional to join our Global Vulnerability and Threat Management team. This role provides technical expertise and strategic advisory across the end-to-end vulnerability management lifecycle, including asset discovery, assessment, analysis, and reporting. The position requires a strong combination of technical depth, cross-functional collaboration, and analytical rigor to help strengthen and mature TransUnion’s overall security posture.
The ideal candidate is a continuous learner with a strong drive to improve and advance vulnerability management capabilities. This role contributes to evolving processes, policy alignment, security assessments, and automation initiatives while supporting enterprise-wide efforts to secure TransUnion’s business. Success in this role requires strong attention to detail, collaborative mindset, and the ability to effectively coordinate across global teams.
This is a hybrid position requiring a minimum of two days per week at a designated TransUnion office location.
Come be a part of our team, you’ll collaborate with talented professionals, work on innovative security initiatives, and help address evolving cybersecurity challenges on scale.

What You'll Bring:

• Min 10 years of experience with vulnerability management processes, application security, network security and security testing procedures for attack surface reduction.
• Deep expertise across the vulnerability management lifecycle, encompassing attack surface management, application security, enterprise-scale security capabilities, emerging threat vectors, and industry-standard vulnerability assessment methodologies.
• Advanced understanding of operating system hardening, configuration management and Network technologies and protocols (TCP/IP, DNS, UDP, etc.)
• Strong experience in automation and scripting to enable scaling and operational efficiency
• Proven ability to analyze large-scale vulnerability and configuration data to identify systemic risks and drive strategic remediation initiatives
• Experience operating as an advisor / lead individual contributor, influencing cross-functional teams and driving enterprise-wide outcomes
• Stay current with emerging threats, vulnerabilities, and mitigation techniques
• Configure and maintain the technical stack to support attack surface management and align with changing business needs per security requirements.
• Reduce false positives in vulnerability reports through technical triage, tool tuning and validation.
• Prepare documentation, reports, dashboards, and metrics for leadership reviews and decision-making.
• Conduct regular compliance checks and support internal/external audits.
• Demonstrated experience with industry security frameworks such as NIST, CIS, ISO.
• Experience working in a team-oriented, collaborative environment requiring analytical and proactive problem-solving skills
• Ability to operate with minimal oversight in a fast-paced environment
• Willingness to work with multi-faceted, diverse teams and an empathetic team player who can think, plan and deliver out of the box projects

Qualifications and Education:

• Bachelor’s degree in computer science, Cybersecurity, Information Security, or equivalent professional experience.
• Experience with agile practices and delivery models
• Hands-on experience with cloud platforms (e.g., AWS, GCP), scripting languages (e.g., Python), containerization, orchestration technologies, and security monitoring tools.
• Strong analytical mindset with a data-driven approach to security; capable of generating meaningful metrics to inform decision-making.
• Familiarity with modern development methodologies and automation practices for scalable security operations.
• Demonstrated ability to work effectively in diverse, cross-functional teams; empathetic collaborator with a creative and solution-oriented mindset.
• Excellent communication skills, with the ability to articulate complex technical concepts clearly and concisely.
• Awareness of industry trends, particularly in artificial intelligence, and their impact on vulnerability management practices

Impact You'll Make:

• Drive critical vulnerability management initiatives across on-premises and cloud environments, contributing directly to the organization's security resilience.
• Conduct in-depth research on emerging threats and exploits using trusted public sources and intelligence platforms, enabling proactive risk mitigation.
• Utilize a combination of automated tools and manual techniques to identify, validate, and assess vulnerabilities with precision.
• Clearly communicate the business impact and technical risk of identified vulnerabilities, providing actionable mitigation strategies to stakeholders.
• Collaborate with engineering, infrastructure, and application teams to ensure security standards are embedded into system design and implementation practices.
• Identify gaps in existing vulnerability management processes and drive continuous improvement initiatives across vulnerability management capabilities.

This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week.

TransUnion Job Title

Advisor, InfoSec Engineering