Cybersecurity Mergers and Acquisition Specialist

Experian

5d•Remote

About The Position

Experian's Global Cybersecurity M&A practice helps the Board and management understand and manage cybersecurity risk throughout the M&A lifecycle. Our approach is grounded in applicable regulatory guidance and industry best practices aligned to the needs of our business. We provide prioritized insights, applicable recommendations, and practical roadmaps to address gaps and reduce risk. Using methodologies, tools, and techniques, our cybersecurity specialists assess vulnerabilities, misconfigurations, and program gaps to strengthen overall security posture. The Global Cybersecurity M&A team is looking for a specialist to help grow Experian's investment portfolio and to assist with the divestiture of business units as we evolve. As part of the EGSO M&A team, you will work with newly acquired businesses across a range of industries, delivering thoughtful solutions to address transaction‑specific cybersecurity risks. As the threat landscape continues to evolve, our mission is to help Experian identify, understand, and manage cybersecurity risk across the enterprise. Individuals in this role partner with corporate development leaders and business units to identify, assess, and manage cybersecurity risks that can partake in valuation, transaction structure, and successful post‑close outcomes. You will report to the M&A Security Lead.

Requirements

8+ years of experience in cybersecurity advisory, transaction services, technology and security auditing, or related roles
Experience performing or leading cybersecurity due diligence and risk assessments for M&A transactions across industries
Experience with information security, risk, data privacy, and legal considerations in M&A contexts
Identify, assess, and communicate cyber risks that impact deal value, structure, and post close execution
Broad expertise across multiple security domains, with a solid technical background and the ability to discuss implementation details
Experienced in managing workstreams and deliverables end to end, including partner communication and coordination
Experience translating complex technical issues into clear, business relevant insights for nontechnical audiences
Experience delivering high quality reports and documentation
Comfortable managing multiple concurrent engagements independently
Collaborative and proactive team contributor, supporting knowledge sharing, tooling, process improvement, and professional development

Responsibilities

Lead cybersecurity due diligence for mergers, acquisitions, investments, and divestitures
Define the cybersecurity approach for each transaction by documenting the seller's technology environment, security and privacy posture, and third‑party due diligence results before deal close
Assess cybersecurity risks within the transaction, advise on prioritization, and recommend pre‑ and post‑close remediation actions
Identify material cyber risks that may affect valuation, deal structure, or integration planning
Communicate risk recommendations to corporate development leaders, executives, and technical partners
Contribute to practical remediation plans and post‑close cybersecurity roadmaps
Manage multiple concurrent diligence efforts
Produce clear, detailed cybersecurity and risk assessment reports for acquisitions, investments, and divestitures, requiring strong writing skills
Help with post‑close integration strategy development and the coordination of issue resolution throughout the integration process.
Contribute to the ongoing development of practice workbooks, processes, tools, and reporting as part of broader team responsibilities.