Back to jobs
The ideal candidate is a continuous learner with a strong drive to improve and advance vulnerability management capabilities. This role contributes to evolving processes, policy alignment, security assessments, and automation initiatives while supporting enterprise-wide efforts to secure TransUnion’s business. Success in this role requires strong attention to detail, collaborative mindset, and the ability to effectively coordinate across global teams.
This is a hybrid position requiring a minimum of two days per week at a designated TransUnion office location.
Come be a part of our team, you’ll collaborate with talented professionals, work on innovative security initiatives, and help address evolving cybersecurity challenges on scale.
Job Description
TransUnion's Job Applicant Privacy Notice
What We'll Bring:
We are seeking a seasoned cybersecurity professional to join our Global Vulnerability and Threat Management team. This role provides technical expertise and strategic advisory across the end-to-end vulnerability management lifecycle, including asset discovery, assessment, analysis, and reporting. The position requires a strong combination of technical depth, cross-functional collaboration, and analytical rigor to help strengthen and mature TransUnion’s overall security posture.The ideal candidate is a continuous learner with a strong drive to improve and advance vulnerability management capabilities. This role contributes to evolving processes, policy alignment, security assessments, and automation initiatives while supporting enterprise-wide efforts to secure TransUnion’s business. Success in this role requires strong attention to detail, collaborative mindset, and the ability to effectively coordinate across global teams.
This is a hybrid position requiring a minimum of two days per week at a designated TransUnion office location.
Come be a part of our team, you’ll collaborate with talented professionals, work on innovative security initiatives, and help address evolving cybersecurity challenges on scale.
What You'll Bring:
- Min 10 years of experience with vulnerability management processes, application security, network security and security testing procedures for attack surface reduction.
- Deep expertise across the vulnerability management lifecycle, encompassing attack surface management, application security, enterprise-scale security capabilities, emerging threat vectors, and industry-standard vulnerability assessment methodologies.
- Advanced understanding of operating system hardening, configuration management and Network technologies and protocols (TCP/IP, DNS, UDP, etc.)
- Strong experience in automation and scripting to enable scaling and operational efficiency
- Proven ability to analyze large-scale vulnerability and configuration data to identify systemic risks and drive strategic remediation initiatives
- Experience operating as an advisor / lead individual contributor, influencing cross-functional teams and driving enterprise-wide outcomes
- Stay current with emerging threats, vulnerabilities, and mitigation techniques
- Configure and maintain the technical stack to support attack surface management and align with changing business needs per security requirements.
- Reduce false positives in vulnerability reports through technical triage, tool tuning and validation.
- Prepare documentation, reports, dashboards, and metrics for leadership reviews and decision-making.
- Conduct regular compliance checks and support internal/external audits.
- Demonstrated experience with industry security frameworks such as NIST, CIS, ISO.
- Experience working in a team-oriented, collaborative environment requiring analytical and proactive problem-solving skills
- Ability to operate with minimal oversight in a fast-paced environment
- Willingness to work with multi-faceted, diverse teams and an empathetic team player who can think, plan and deliver out of the box projects
Qualifications and Education:
- Bachelor’s degree in computer science, Cybersecurity, Information Security, or equivalent professional experience.
- Experience with agile practices and delivery models
- Hands-on experience with cloud platforms (e.g., AWS, GCP), scripting languages (e.g., Python), containerization, orchestration technologies, and security monitoring tools.
- Strong analytical mindset with a data-driven approach to security; capable of generating meaningful metrics to inform decision-making.
- Familiarity with modern development methodologies and automation practices for scalable security operations.
- Demonstrated ability to work effectively in diverse, cross-functional teams; empathetic collaborator with a creative and solution-oriented mindset.
- Excellent communication skills, with the ability to articulate complex technical concepts clearly and concisely.
- Awareness of industry trends, particularly in artificial intelligence, and their impact on vulnerability management practices
Impact You'll Make:
- Drive critical vulnerability management initiatives across on-premises and cloud environments, contributing directly to the organization's security resilience.
- Conduct in-depth research on emerging threats and exploits using trusted public sources and intelligence platforms, enabling proactive risk mitigation.
- Utilize a combination of automated tools and manual techniques to identify, validate, and assess vulnerabilities with precision.
- Clearly communicate the business impact and technical risk of identified vulnerabilities, providing actionable mitigation strategies to stakeholders.
- Collaborate with engineering, infrastructure, and application teams to ensure security standards are embedded into system design and implementation practices.
- Identify gaps in existing vulnerability management processes and drive continuous improvement initiatives across vulnerability management capabilities.
TransUnion Job Title
Advisor, InfoSec Engineering