Company Description

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money.

We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com.

Job Description

The Senior Director of Threat Detection and Platform Engineering will lead Experian's Global Security Engineering Center of Excellence, which develops fully integrated cyber fusion security engineering capabilities and platforms. You will work across a global leadership community while leading a team of engineers who develop high-quality threat detection rules, informed by the most critical threats targeting Experian. You will also lead a team of security platform engineers across multiple capabilities and platforms, including deception grid, attack simulation, SOAR, SIEM, and UEBA. You will report to the SVP of Security Architecture and Engineering.

You'll have the opportunity to:

• Lead a team that creates and implements automated workflows in tools to enhance incident response capabilities and improve security operations.
• Oversee building high-quality threat detection rules, queries, and alerts based on identified use cases, threat scenarios, and structured threat intelligence, including MITRE ATT&CK™ Tactics, Techniques and Procedures (TTPs).
• Provide leadership and vision to security engineering planning functions, including short-, mid-, and long-term engineering proposal solutions, technical and complex product planning, technical innovation, and strategic platform integrations.
• Participate in the Security Architecture and Engineering EGSO leadership team to help create our vision, mission, and strategic goals.
• Collaborate with a community of executives across EGSO leadership teams to deliver KPI/KRI threat detection metrics and progress reporting and strategy.
• Collaborate with teams, including Security Operations Center (SOC) analysts, Incident Responders, and Threat Intelligence researchers, to understand and respond to latest threats.
• Evaluate the recommendations and implementations of new security tools, techniques, and processes that enhance our threat detection and response capabilities by the team.
• Assess the management of detection rules and automated workflows to ensure optimal performance, effectiveness, and accuracy.
• Oversee and participate, when needed, in incident response activate and provide directives.
• Stay current on regulatory changes, latest threats, and evolving technologies, and implement appropriate control mechanisms and security architecture based on risks within Experian's environment.
• Participate in Breach Response exercises, including the establishment and validation of procedures to restore business to BAU activities.

Qualifications

• 10+ years of leadership experience in a technical capacity.
• 8+ years of information security related experience in areas such as: security operations, incident analysis, incident handling, vulnerability management or testing, system patching, log analysis, intrusion detection, or security device administration.
• Expertise in Splunk or other SIEM tools, including rule creation, query writing, and alert management.
• Proficient in platforms such as SOAR and implementing automated workflows and playbooks.
• Proficient experience with MITRE ATT&CK™ framework, cyber threat landscapes, attack vectors and threat actors.
• Demonstrated technical skills in the following areas:
• In-depth packet analysis skills, core forensic familiarity, incident response skills, and data fusion skills based on multiple security data sources.
• System administration on Unix, Linux, or Windows.
• Network forensics, logging, and event management.
• Defensive network infrastructure (operations or engineering).
• Vulnerability assessment and penetration testing concepts.
• Malware analysis concepts, techniques, and reverse engineering.
• In-depth knowledge of network and host security technologies and products (firewalls, network IDS, scanners)
• Security monitoring technologies, such as WAF, Web Proxies, UEBA, DLP, among others.
• Knowledge with common cybersecurity frameworks such as NIST, or other leading practices, and industry standards.
• Relevant security certifications such as CISSP, GCIH, GCIA, or similar are a plus.

Benefits/Perks:

• Great compensation package and bonus plan.
• Core benefits, including medical, dental, vision, and matching 401K.
• Flexible work environment, ability to work remotely, hybrid, or in-office.
• Flexible time off, including volunteer time off, vacation, sick, and 12-paid holidays.

#LI-Remote

Additional Information

Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; World's Best Workplaces™ 2024 (Fortune Top 25), Great Place To Work™ in 24 countries, and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.

Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.