Infosec GRC Specialist
Buenos Aires
Applications have closed
Ryz Labs
Unlock the power of LatAm's elite nearshore talent with Ryz Labs. Our top-tier staff augmentation services provide access to the brightest minds in software development, IT, sales, ops, and CS. Elevate your team and achieve unparalleled results...
Only for candidates in Argentina or Uruguay.
We are looking for a Infosec GRC Specialist for one of our clients teams. They are expanding their Information Security team and they are looking for an energetic and self-motivated Infosec GRC Specialist to join the global Infosec team. You will be tasked withleading our compliance initiatives across Data Privacy, PCI, Sarbanes-Oxley ITGCs, and SOC2.
Responsibilities:Lead and oversees strategic GRC programs and projects, from concept/definitionthrough planning, execution, delivery, and adoptionCoordinate compliance projects with key stakeholders throughout the company includingLegal, Internal Audit, IT & Information Security, and EngineeringBuild and maintain a unified information security control framework that will meetControl requirements across PCI, SOC2, ISO 27001, NIST CSF, GDPR, CCPA,and other relevant global data privacy regulations.Create and lead our internal vendor risk management programAttend regular cross departmental security meetings as the GRC point of contactEnsure that cyber security risks are logged, tracked and scored in accordance withRisk Management PolicyTake ownership of the cyber risk register and track risks through the remediationphase with key stakeholders in Engineering, IT, and Business Applications.Create, update and maintain GRC Policy & ProceduresPrepare cyber risk reports and metrics to communicate the security posture forExecutives and Board of Directors.
Basic Qualifications:A Bachelor’s degree or higher or equivalent work experience5+ years of experience managing IT Risk & Compliance ProgramsExcellent written and verbal communication skills.Strong technical project management experience.Experience mapping unified controls across common security frameworksExperience with GRC Tools such as ZenGRC, OneTrust, Pathlock, Riskonnect,AuditBoard, etc.Knowledge of Security Frameworks including ISO27001, SOC2, Data Privacy (GDPR,CCPA), NIST CSF, and PCIExperience implementing repeatable processes and driving automation orstandardizationAbility to work across different levels in the organization from Individual contributor toC-Level Executives.Strong analytical and problem solving skills
Bonus:IT Audit BackgroundExperience in a global organizationExperience in building 3rd Party/Vender Risk Programs
We are looking for a Infosec GRC Specialist for one of our clients teams. They are expanding their Information Security team and they are looking for an energetic and self-motivated Infosec GRC Specialist to join the global Infosec team. You will be tasked withleading our compliance initiatives across Data Privacy, PCI, Sarbanes-Oxley ITGCs, and SOC2.
Responsibilities:Lead and oversees strategic GRC programs and projects, from concept/definitionthrough planning, execution, delivery, and adoptionCoordinate compliance projects with key stakeholders throughout the company includingLegal, Internal Audit, IT & Information Security, and EngineeringBuild and maintain a unified information security control framework that will meetControl requirements across PCI, SOC2, ISO 27001, NIST CSF, GDPR, CCPA,and other relevant global data privacy regulations.Create and lead our internal vendor risk management programAttend regular cross departmental security meetings as the GRC point of contactEnsure that cyber security risks are logged, tracked and scored in accordance withRisk Management PolicyTake ownership of the cyber risk register and track risks through the remediationphase with key stakeholders in Engineering, IT, and Business Applications.Create, update and maintain GRC Policy & ProceduresPrepare cyber risk reports and metrics to communicate the security posture forExecutives and Board of Directors.
Basic Qualifications:A Bachelor’s degree or higher or equivalent work experience5+ years of experience managing IT Risk & Compliance ProgramsExcellent written and verbal communication skills.Strong technical project management experience.Experience mapping unified controls across common security frameworksExperience with GRC Tools such as ZenGRC, OneTrust, Pathlock, Riskonnect,AuditBoard, etc.Knowledge of Security Frameworks including ISO27001, SOC2, Data Privacy (GDPR,CCPA), NIST CSF, and PCIExperience implementing repeatable processes and driving automation orstandardizationAbility to work across different levels in the organization from Individual contributor toC-Level Executives.Strong analytical and problem solving skills
Bonus:IT Audit BackgroundExperience in a global organizationExperience in building 3rd Party/Vender Risk Programs
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
0
0
Category:
Compliance Jobs
Tags: Audits Automation CCPA Compliance GDPR ISO 27001 NIST Privacy Risk management SOC 2
Region:
South America
Country:
Argentina
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Product Security Engineer jobsInformation Security Specialist jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsSystems Engineer jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSenior Information Security Analyst jobsInformation Security Manager jobsCyber Security Specialist jobsSenior Network Security Engineer jobsIT Security Analyst jobsChief Information Security Officer jobsIT Security Engineer jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsSecurity Specialist jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
SaaS jobsEncryption jobsEDR jobsJava jobsBash jobsThreat detection jobsTop Secret jobsSplunk jobsRMF jobsTerraform jobsIDS jobsSDLC jobsIPS jobsMalware jobsSOC 2 jobsSQL jobsFinance jobsForensics jobsDocker jobsCompTIA jobsActive Directory jobsGIAC jobsIntrusion detection jobsDoDD 8570 jobsITIL jobs
VPN jobsOWASP jobsIT infrastructure jobsCRISC jobsTCP/IP jobsHIPAA jobsAnsible jobsOSCP jobsBanking jobsClearance Required jobsData Analytics jobsMITRE ATT&CK jobsCCSP jobsNIST 800-53 jobsZero Trust jobsIndustrial jobsDNS jobsUNIX jobsEndpoint security jobsSAP jobsCISO jobsPolygraph jobsSOAR jobsJira jobsSOX jobs