Senior Cybersecurity

We are looking for a senior cybersecurity leader to oversee and grow our security and compliance service line. This person will lead a team of security engineers, pentesters, and security researchers, while directly engaging with clients to deliver high-quality advisory, compliance, and audit support. This role is ideal for someone with CISO-level experience, strong knowledge of SOC 2, ISO 27001, PCI DSS, HIPAA, and hands‑on experience creating documentation, policies, and evidence for audits. The ideal candidate is comfortable being both strategic and hands‑on, guiding the team, leading client conversations, and helping improve our internal delivery processes. You will be responsible for a core part of our business. Role Description This is a full‑time hybrid role located in Bogotá, D.C., with opportunities for remote work. The Senior Cybersecurity Specialist will oversee the design, implementation, and management of application, network, and information security measures. Responsibilities include monitoring and mitigating security risks, conducting security assessments, managing compliance with SOC 2, ISO27001, and PCI standards, and guiding security best practices. This role requires collaboration across teams to ensure secure product development and deployment, while also providing technical leadership in cybersecurity strategy and execution. Key Responsibilies Lead a multidisciplinary security team (pentesters, cloud security engineers, auditors, researchers). Assign, supervise, and review security work to ensure high‑quality and timely delivery. Mentor junior and mid‑level security engineers. Improve internal processes, workflows, and documentation standards. Drive continuous improvement to make the team more efficient and scalable. Act as the primary technical and advisory contact for clients needing guidance on: SOC 2 ISO 27001 PCI DSS HIPAA General infosec and risk management Run kickoff calls, discovery meetings, advisory sessions, and Q&A with clients. Translate security concepts into clear business terms. Ensure customer satisfaction and long‑term relationships. Aligned with Linda Mar’s current services: Oversee clients’ security programs, roadmaps, and risk management strategies. Review, write, and update security policies, processes, and controls. Provide high‑level and tactical security guidance to accelerate compliance readiness. 4. SOC 2 / ISO 27001 / PCI / HIPAA Support Oversee and lead audit readiness projects. Review and approve documentation, policies, procedures, and evidence collected by the team. Guide clients through gap assessments, remediation plans, and control implementation. Coordinate with auditors, ensure evidence packages are complete, and oversee corrections. 5. Cloud & Technical Security Oversight (Aligned with your Cloud Security Assessment services) Review cloud configurations (AWS, GCP, Azure) at a high level. Validate client infrastructure security posture using CSA CCM and cloud best practices. Support the technical team when deeper assessments are required. 6. Internal Growth & Strategy Help shape and grow the Infosec and Compliance practice. Identify new opportunities, new services we should offer, and internal improvements. Create documentation templates, workflows, and playbooks to make delivery faster and more consistent. Help scale the team as the business grows. Required Experience Technical & Compliance Expertise 5–7 years in cybersecurity, with at least 1–2 years in a lead or CISO‑like role. Strong experience preparing and supporting clients for: SOC 2 Type I & II ISO 27001 PCI DSS HIPAA Deep understanding of security policies, risk management, controls, and evidence collection. Experience working directly with auditors and guiding organizations through compliance cycles. Leadership & Management Proven experience leading security teams or managing security engineers. Ability to delegate, review work, and build repeatable processes. Strong project management and coordination skills. Client-Facing Skills Excellent communication and ability to work with executive, technical, and non‑technical stakeholders. Comfortable leading meetings, walking clients through findings, and advising on controls. Preferred Experience & Certifications (Not mandatory, but ideal) Experience with Vanta, Drata, Tugboat Logic, or similar platforms. Experience in fast‑paced consulting, MSP, or startup environments. Exposure to cloud (AWS, GCP, Azure) at a high or intermediate level. Strong attention to detail. High sense of ownership and accountability. Ability to lead diverse teams and motivate them. Problem‑solving and solution‑oriented mindset. Ability to manage multiple projects simultaneously. Process‑oriented thinking to improve and standardize workflows. Direct applications are also welcome at: #J-18808-Ljbffr