Cyber Security Governance

hace 7 meses


Desde casa, Colombia J.S. Held A tiempo completo

and The Company

**Are you looking to join an organization that is growing and dynamic? What about a high-energy, collaborative environment that rewards hard work?**

J.S. Held is a global consulting firm providing technical, scientific, and financial expertise across all assets and value at risk. Our professionals serve as trusted advisors to organizations facing high-stakes events demanding urgent attention, staunch integrity, clear-cut analysis, and an understanding of both tangible and intangible assets. The firm provides a comprehensive suite of services, products, and data that enable clients to navigate complex, contentious, and often catastrophic situations**. **We have over 100 locations worldwide. We are highly committed to all members of our community, both employees and clients. Our organization focuses on promoting a sense of community and inspiring our people to achieve results that exceed goals.

The Team and Job Summary

**_ Please submit your resume in English._**

Job Responsibilities

The Cyber Security Governance & Risk Analyst will support the GRC Team to drive the design, implementation, and ongoing delivery of:

- Formal Cyber Security Risk Management.
- Cyber Security Policies.
- Cyber Security Compliance.
- Participate in the review and assessment of third-party vendor security controls to ensure compliance with Cyber Security standards.
- Third Party Risk Assessments.
- DR/BCP.
- Help monitor and ensure compliance with relevant regulatory requirements, such as GDPR, HIPAA, ISO 27001, CMMC, NIST CSF.
- Support the development of training and awareness programs for employees to promote a security-conscious culture and adherence to J.S. Held
- Assist in coordinating internal and external audits and examinations related to Compliance and Cyber Security
- Aid in the preparation and presentation of GRC reports, metrics, and key performance indicators as needed.
- Coordinate annual external penetration test and security assessments utilizing 3rd party.
- Contribute to incident response activities, including updating the directory, documenting and reporting security incidents, and participating in post-incident analysis to identify areas of improvement.
- Stay updated on emerging Cyber Security trends, regulatory changes, and industry standards to assist in keeping the organization's GRC practices current and effective.
- Asset Compliance Management.

Required Qualifications
- Professional Level / Full English Fluency (B2).
- Experienced building and executing technology risk frameworks, assessments, reports, metrics, KRIs, and utilizing risk management tools to analyze and model risk. Ability to align frameworks and policies to address requirements from frameworks like COBIT, NIST CSF and ISO, and regulations such as GDPR, HIPAA NY-500, and CCPA.
- Experience designing and evaluating Cyber Security processes, risks, and controls.
- Technical knowledge of Azure, Azure AD, O365, Windows 10/11, iOS, and technical controls us to secure Technology assets (Data, Client and Server OS, Network, Applications, SaaS, IaaS, etc.)
- Hands-on Cyber Security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations.
- Strong oral and written communications skills appropriate for interacting with all levels of staff, vendors, and other stakeholders.
- Ability to develop security standards and guidelines based on best practices and industry standards.
- Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
- Proficiency in analyzing security risks, vulnerabilities, and controls within an IT environment.
- Capability to work on multiple tasks with shifting and sometimes conflicting priorities.
- Able to work effectively with other departments to develop effective and efficient solutions.
- Experience designing and implementing information technology processes.
- Demonstrated experience successfully collaborating with remote colleagues.
- Experience working with vendors or managing vendor relationships.
- Experience collaborating with Application, Infrastructure, Network, HelpDesk, and Security teams.
- Ability to deal with ambiguity and flexibility to work collaboratively with others in a dynamic environment.

Preferred Qualifications
- Bachelor’s degree in Computer Science or similar.
- Minimum 8 years of experience in IT Audit, Risk Management or Compliance
- 5+ years (required) Cyber Security
- 3+ years (required) Cyber Security - Governance, Risk and Compliance (GRC)
- Professional certifications such as CISA, CompTIA Security+, COBIT, CISM are a plus.

Physical and Mental Job Qualifications
- Prolonged periods sitting at a desk and working on a computer.

J.S. Held is dedicated to becoming the global leader in providing multi-disciplinary consulting services to the construction, government, healthcare, industrial, insurance, energy, legal, and technology, communities. We have diver



  • Desde casa, Colombia Zayo Group A tiempo completo

    Company Description Zayo provides mission-critical bandwidth to the world’s most impactful companies, fueling the innovations that are transforming our society. Zayo’s 141,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo’s communications infrastructure solutions include...

  • Director, Application

    hace 6 meses


    Desde casa, Colombia Zayo Group A tiempo completo

    Company Description Zayo provides mission-critical bandwidth to the world’s most impactful companies, fueling the innovations that are transforming our society. Zayo’s 141,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo’s communications infrastructure solutions include...


  • Desde casa, Colombia Convergenz A tiempo completo

    Minimum Qualifications: Experience with NIST special publications and FIPS Experience with information security and assurance principles, including the NIST Cybersecurity Framework Experience with assisting and leading efforts involving the development and interpretation of SOPs, directives and other guidance documents. Experience with assessing NIST...

  • Security Researcher

    hace 7 meses


    Desde casa, Colombia Sonatype A tiempo completo

    Sonatype is the software supply chain management company. We're on a mission to change how the world innovates by making software development easier. From running the world's largest repository of Java open-source components (Maven Central) to inventing componentized software development and then software supply chain management to creating the only solution...

  • DevOps Project Manager

    hace 7 meses


    Desde casa, Colombia Doit Security A tiempo completo

    **C**ompany Description** **Doit Security** collaborates closely with established cloud security enterprises, contributing significantly to the evolution of the emerging SASE (Secure Access Service Edge) category. Our dedication lies in providing top-tier enterprise services that resonate on a global scale. **Doit Security** was established in 2021 to...

  • Security Analyst

    hace 2 días


    Desde casa, Colombia Koombea Inc A tiempo completo

    **Remote, Latam | Full Time | 3+ years experience | English (B2) | Competitive Salary** Did you know that Koombea is one of Latin America's fastest-growing software development companies? We help our clients all over the world build digital products that make users' lives better. By joining our team, you will not only receive amazing benefits and become...


  • Desde casa, Colombia Sonatype A tiempo completo

    Sonatype is the software supply chain management company. We're on a mission to change how the world innovates by making software development easier. From running the world's largest repository of Java open-source components (Maven Central) to inventing componentized software development and then software supply chain management to creating the only solution...

  • Cyber Security Analyst

    hace 7 meses


    Desde casa, Colombia STEFANINI LATAM A tiempo completo

    ¡Se parte de Stefanini! En Stefanini somos más de 30.000 genios, conectados desde 41 países, haciendo lo que les apasiona y co-creando un futuro mejor. ¡Seguro no te quieres quedar fuera! **Responsabilidades y atribuciones** Dirigir, planificar y controlar los proyectos de ciberseguridad y seguridad de la información dentro del alcance, presupuesto...

  • DevOps Engineer

    hace 7 meses


    Desde casa, Colombia Partner One Capital A tiempo completo

    Fidelis is a leading global provider of advanced threat detection and response solutions. We empower organizations to combat cyber threats with confidence through our innovative technologies and comprehensive cybersecurity expertise. Our solutions enable enterprises to proactively identify, hunt down, and neutralize sophisticated cyber threats, ensuring the...

  • Senior Data Engineer

    hace 7 meses


    Desde casa, Colombia Provectus A tiempo completo

    We are seeking a talented and experienced** Senior Data Engineer** to join our team at Provectus. You will encounter numerous technical challenges and have the opportunity to contribute to exciting open-source projects (e.g., ODD, UI for Kafka), build internal solutions, and engage in R&D activities, providing an excellent environment for professional...


  • Desde casa, Colombia Absolute Software A tiempo completo

    Absolute Software is seeking a driven **Sales Coordinator** in the LATAM region (for example; Colombia or Ecuador) to join our fast-growing Global Accounting Team. Absolute is a global cyber-security technology company. We help organizations recover and resume normal operations in the face of security breaches. Absolute envisions a world where security and...


  • Desde casa, Colombia Absolute Software A tiempo completo

    Absolute Software is seeking a driven **Sales Coordinator** in the LATAM region (for example; Colombia or Ecuador) to join our fast-growing Global Accounting Team. Absolute is a global cyber-security technology company. We help organizations recover and resume normal operations in the face of security breaches. Absolute envisions a world where security and...

  • Data Engineer

    hace 7 meses


    Desde casa, Colombia TEAM International Services A tiempo completo

    Our client is a global professional services firm committed to delivering quality in assurance, advisory, and tax services. Financial Crime team works at the forefront of risk management, leveraging advanced technologies and analytics to combat financial crimes and safeguard our clients' interests. Data Pipeline Development: - Design and implement robust,...

  • Iam/iag Engineer

    hace 8 meses


    Desde casa, Colombia Provectus A tiempo completo

    **Provectus** is a leading technology company dedicated to empowering businesses through cutting-edge solutions and digital innovation. With a strong focus on leveraging emerging technologies and data-driven strategies, we help our clients achieve their goals and stay ahead in today's dynamic market. Join our team as an **IAM/IAG Engineer** and take charge...

  • Senior DevOps Engineer

    hace 7 meses


    Desde casa, Colombia Definity First A tiempo completo

    We are seeking a highly skilled and motivated **Senior DevOps Engineer** to join our team. As a **remote position** based in **México **&** LATAM. **In this role, you’ll deliver multiple DevOps projects by collaboratively working with our DevOps, software engineering teams, and other stakeholders. These DevOps projects are designed to automate the build...

  • Tableau Consultant

    hace 7 meses


    Desde casa, Colombia Allshore Virtual Staffing A tiempo completo

    **About AllShore Virtual Staffing**: AllShore Virtual Staffing is a leading remote staffing company, offering top-tier professionals working 100% remote to businesses worldwide. Specializing in IT and software development, design, administrative support, digital marketing, and more. AllShore connects organizations with skilled talent to meet diverse business...

  • Senior Data Engineer

    hace 7 meses


    Desde casa, Colombia Provectus A tiempo completo

    **Responsibilities**: - Collect and manage large volumes of varied data sets; - Work directly with Data Scientists and ML Engineers to create robust and resilient data pipelines that feed Data Products; - Define data models that integrate disparate data across the organization; - Design, implement, and maintain ETL pipelines; - Develop and continuously test...

  • Website Developer

    hace 7 meses


    Desde casa, Colombia Life Academy A tiempo completo

    **Life Academy Overview** **Job Overview** **Main Responsibilities** - Build functional and easy-to-use websites using no-code and low-code solutions; - Ensure compatibility across different browsers and devices; - Develop and deploy landing pages and web forms for marketing and sales events; - Regularly update content, images, and multimedia elements on...

  • Full Stack Engineer

    hace 7 meses


    Desde casa, Colombia 1840 & Company A tiempo completo

    Our client is one of Switzerland’s leading players in cyber security, its expertise is recognized by businesses, institutions, and the media. Our experts are regularly solicited on consulting, protection, and incident response projects. **Rate in USD: $13.0 (Per Hour)** **Responsibilities** - Utilize React.js and Material-UI for frontend development,...

  • Director of Technology

    hace 7 meses


    Desde casa, Colombia Rob Levine Law A tiempo completo

    We are seeking an experienced and strategic Director of Technology to lead our company's technology initiatives and drive innovation across our organization. The Director of Technology will be responsible for overseeing the development and implementation of technology solutions that align with our business objectives and support our growth and expansion...