Senior Principal M&A Security Architect
What We'll Bring:At TransUnion, we strive to build an environment where our associates are in the driver’s seat of their professional development, while having access to help along the way. We encourage everyone to pursue passions and take ownership of their careers. With the support of colleagues and mentors, our associates are given the tools needed to get where they want to go. Regardless of job titles, our associates have the opportunity to learn new things and be a leader every day.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
At TransUnion, we know that finding the right people is the reason we’re a global leader in information services. We strive to provide an environment that allows our talented people to find success and satisfaction. Now, we’re adding to the team and seeking a Senior Principal in Information Security for our Merger & Acquisition (M&A) initiatives.
This role is to support M&A security diligence and integration as a security architect dedicated to M&A projects.
TransUnion constantly analyzes market opportunities for growth through investments and acquisitions. To do this successfully requires a robust and mature M&A pipeline process. TransUnion’s Information Security team plays a key part in M&A diligence and integration to ensure a clear and thorough understanding of risks associated with potential targets as well as appropriate planning and delivery of data protection capabilities to acquired companies. As an M&A Information Security Sr. Principal Architect, you will be part of the deal-pursuit and integration teams that work across the globe, driving Information Security goals by helping to lead evaluations of investment and acquisition targets and, as applicable, their subsequent integrations.
What You'll Bring:
As a Senior Principal in M&A Information Security, an ideal candidate would have at least 10+ years of progressive experience in a mix of technology, information or cybersecurity, and M&A or large-scale projects. Other criteria include:
Bachelor’s degree in computer science, management systems, information security or related field
At least 5 – 7 years of hands-on security engineering experience within a particular domain such as Application Security, IAM, or Network Security
Familiarity with current technologies and industry best-practices across Information Security domains
At least 5 – 7 years of experience in security solution architecture
Knowledge and experience with both cloud (ideally, GCP and AWS) and on-prem security solutions
Familiarity with industry frameworks and standards such as NIST CSF, CIS, and ISO 27001/27002
Experience in presenting to C-level executive stakeholders and in influencing stakeholders to achieve mission critical outcomes
Experience in and ability to influence successful delivery of projects under tight deadlines
Ability to work with virtual teams across the globe and multiple time zones
Working knowledge of financial forecasting and data analysis
Attention to detail but with an eye on the big picture
Proficiency in Microsoft Office Suite (especially PowerPoint, Excel and Visio)
Information Security certification (CISSP or other) preferred
Impact You'll Make:
Security Diligence: Lead evaluations of M&A targets’ security posture—organizational structure, policies, processes, technical capabilities—based on TransUnion’s Information Security playbook and standards. Working with M&A targets’ technology and information security leaders, oversee execution of TU-led and 3rd party vendor assessments. Present findings to TransUnion’s executive leadership. Ensure quality of deliverables—including diligence briefings, security integration plans and cost models—and their alignment with overall approach for business and technology objectives.
Security Integration Planning: In collaboration with senior domain and delivery leads from Global Technology and Information Security, support development of the security integration hypothesis, including merging of organizational structure, processes and security capabilities. Lead technical planning of security integration programs based on results of M&A diligence and security assessments as well as your knowledge of TransUnion’s security posture, technology capabilities, and lessons learned from previous integrations.
Integration Cost Model Development: Support development of security integration cost models and financial forecasts while ensuring that they coincide and align with broader technology integration assumptions and milestones for the acquisition as well as TU’s strategic direction for information security capabilities.
Security Architecture & Capability Planning: Working in conjunction of other parts of Information Security and technology teams, own development of security architecture plans and designs in accordance with integration objectives to bring acquired companies up to TransUnion’s on-premise and cloud security standards.
Security Posture Assessment Tooling: Help drive additional maturity and standardization in use of assessment tooling to evaluate acquired companies’ security postures, particularly for cloud environments. Lead technical adoption of new tools and processes in the M&A playbook.
Collaboration: Closely collaborate across M&A teams and locations. Address issues expeditiously, define alternative solutions as needed, resolve conflict and create lasting, productive partnerships with stakeholders in acquired entities. Help ensure that resources and organizational structure exist to promote collaboration and meeting of integration objectives.
Communication: Convey goals and objectives to senior management and project team members in a clear and compelling manner. When necessary, distill technical details to salient points in a manner that is tailored to the audience. Actively listen during meetings and be comfortable clarifying ambiguity or technical areas beyond your comfort zone of knowledge. Produce concise presentations and other deliverables on a timely basis. Promote open communication within the project team.
Change Management: Recognize the impact culture has on success and, if needed, tailor communication and delivery approach to local M&A teams and stakeholders to achieve outcomes. Effectively position projects and their objectives within the context of acquisition priorities to executives and sponsors. Successfully operate within different organizational cultures and norms to achieve M&A objectives.
Additional responsibilities related to M&A Information Security Integration to be considered depending on the background and skillset of a successful candidate.
TransUnion provides flexible benefits including flexible time off for exempt associates, paid time off for non-exempt associates, tuition reimbursement, additional (following any short-term disability) 10 weeks of parental leave with gradual return, adoption assistance, fertility coverage, spousal and domestic partner benefits, charity gift matching, employee stock purchase plan, retirement contributions with employer match, organizational growth potential through our online learning platform with guided career tracks, and access to TransUnion’s Employee Resource Groups.
We are committed to being a place where diversity is not only present, it is embraced. As an equal opportunity employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, genetic information, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.
TransUnion's Internal Job Title:Sr Director, Infosec Architecture