Description: Responsibilities and Duties What we expect you to accomplish: * Experience in GRC (Governance, Risk, and Compliance). * Knowledge of frameworks such as NIST, CIS Controls, and ISO 27001. * Bachelor’s degree in fields including Information Security, Information Technology, Law, or related disciplines. * Basic knowledge of networking and secure development. Desired Qualifications * Intermediate Spanish; Responsibilities * Cyber Risk Management: Continuously assess threats and vulnerabilities, proposing effective mitigation plans. * Policy Governance: Ensure security policies and standards remain up-to-date and aligned with regulatory requirements, disseminating this knowledge across the organization. * Compliance: Support compliance with information security frameworks such as NIST, ISO 27001, and COBIT, guiding the implementation of controls and best practices. * Business Continuity: Actively participate in continuity management, supporting the definition and execution of response and recovery plans. * Cyber Resilience: Strengthen the company’s response capability through impact analyses (BIA) and readiness testing. * Third-Party Management: Assess and manage security and continuity risks associated with suppliers and partners. * Monitoring and Reporting: Generate executive reports and performance indicators (KPIs) on GRC to support strategic decision-making. * Security Culture: Develop information security awareness training programs. 2512010202191855237