55 Ofertas de Information Security en Argentina

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.

Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.

How will you make an impact in this role?

• Act as the market Information Security Officer and single point of contact for cyber security, including regulatory activities.
• Represent the Regional Information Security Office (RISO) in Argentina risk committees.
• Analyze changes to the regulatory environment and develop action plans in coordination with business and technology stakeholders.
• Assist in preparing responses to internal and external audits and examinations related to cyber security.
• Perform risk assessments on business and technology initiatives including new digital products to determine the residual risk and develop action plans to mitigate risks.
• Develop and implement the cybersecurity incident management plan for the market.
• Support tracking, analysis, and reporting of cyber security incidents and operational risk events.
• Manage market cyber security risks, ensuring alignment with the organization's risk appetite, compliance standards, regulatory requirements and industry best practices.
• Maintain key risk indicators, prepare dashboards showing trends and risk indicator reports for senior management within the market.
• Supervise the development and maintenance of comprehensive risk management frameworks, ensuring that all risk management activities are standardized, documented, and consistently applied across the organization.
• Prepare and present risk assessments to senior leadership and stakeholders, including mitigating actions and compliance status.
• Develop and lead training programs to improve awareness of cyber risks and controls.

Education and Knowledge

• Bachelor's degree in computer science, Information Systems, Cybersecurity, and/or comparable experience.
• Advanced knowledge of global technology standards and applicable regulations.
• Advanced knowledge of technology and cyber control domains such as Identity & Access Management, Security Architectures, Security Governance & Operations, IT General Controls, Security Testing, and Cloud Security.
• Proficiency in enterprise risk management with an emphasis on operational risk management, technology and cyber risk.
• Excellent communication skills in Spanish and English, knowledge of Portuguese is an asset.

Work Experience

• Experience in technology risk & control and information security.
• Experience working in large and complex organizations and financial regulations.
• Experience in risk assessment methodologies such as the NIST Risk Management Framework and ISO 27001.
• Experience with Compliance Management and Risk Assessment tools such as ServiceNow GRC, SAP GRC, LogicGate, RSA Archer
• Experience with Data Visualization and Reporting tools such as Tableau and PowerBI.

Licenses & Certifications

• CISSP, CISM, CRISC

We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:

• Competitive base salaries
• Bonus incentives
• Support for financial-well-being and retirement
• Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
• Generous paid parental leave policies (depending on your location)
• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
• Free and confidential counseling support through our Healthy Minds program
• Career development and training opportunities

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.

Job Requirements and Preferences:

Minimum Years of Experience: 4 year(s) of progressive professional roles involving information security and/or IT management.

Preferred Qualifications : Undergraduate Degree (e.g., BA, BS) or equivalent experience and industry certification Degree Preferred: Bachelor’s degree

Summary Description You will focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhance security of our data, network and protect our firm's intellectual assets.
This role will be tasked with building and implementing Cloud network security. The ideal candidate will have knowledge of networking, network security and cloud networking and cloud network security experience.

What we’re looking for :

• Working understanding of the following areas: IP Networking Protocols, VPN, Firewalls and DNS
• Experience working with one or more Cloud Service Provider - Azure or AWS preferred.
• Proven skills utilizing Python and Bash
• Working knowledge of PaloAlto Next Generation Firewalls Ability to work with and interact with various API content
• Experience working with Automation & Orchestration tools such as ADO Pipelines, Ansible, Git and/or Terraform
• Self-motivated; being able to work independently to identify opportunities for improvement Quick Learner; proven ability to upskill quickly to deliver impactful results

• Experience implementing network security solutions
• Experience implementing designing, implementing Cloud networking and Cloud Network Security.
• Experience engaging business and technology stakeholders at all levels to gather long term goals and requirements.
• Understanding of how to design and build security technology solutions aligned to a global centralized service environment.
• Experience working in a complex global organization.
• Working knowledge of scripting, firewalls, IDS, IPS, WAF and networking.
• Working knowledge of multi-cloud networking and security.
• Understanding of security technology at an enterprise solution level.
• Hands on engineering experience with enterprise network security technologies.
• Experience driving the implementation and adoption of technology across large scale organizations.

Accomplishing the mission of SANDBOX Cybersecurity & Information Security program requires a CISO with strong leadership skills, executive presence, security knowledge and effective placement within the organization. The attributes of the required CISO are:

• Leadership: The CISO must provide executive leadership in developing, planning, coordinating, administering, managing, staffing and supervising all information security-related operations. The CISO must provide overall leadership to the Information Security program and its coordination with complimentary programs including Corporate Continuity, Privacy, Regulatory Compliance, Corporate Security, Risk Management, Corporate Sourcing, Human Resources and Legal Counsel as well as integrate closely with Line of Business executives.

Executive Presence: The CISO serves as a spokesperson for the Information Security program including presentations to the Board of Directors, addressing concerns expressed by Auditors, vendors, and customers, and appearing as a featured speaker in Industry and regional information security seminars, symposia, courses, etc. The CISO must have the executive presence to effectively represent the company’s position regarding information security matters and the ability to influence other company executives in the achievement of their business objectives in a manner consistent with the security program objectives. Simultaneously, the CISO must possess effective communication skills and an ability to interact with personnel at all levels in the organization.

• Security Knowledge: The CISO will decide or recommend the company’s stance on numerous information security issues and, as such, must have a solid basis of security knowledge upon which to draw. The CISO must possess strong analytical and diagnostic abilities to understand and apply theoretical concepts to practical problems. The CISO must have strong information security skills derived from having at least ten years experience in Information Technology and five to seven years of direct Information Security experience. The CISO should be a Certified Information Systems Security Professional (CISSP).

The CISO is responsible for overseeing all aspects of information security within the organization. The CISO implements and supports all of the company's information security initiatives. CISO acts as a focus and resource for information security matters, taking direction from Upper Management and Chief Technology Officer. CISO investigates and recommends secure solutions that implement information security policy and standards. CISO coordinates Corporate Information Security (CIS) activities and manages CIS staff. CISO oversees, implements and monitors regulatory requirements and Company’s information security posture against those requirements.

The fundamental job responsibilities of this position are:

• Leadership of Company’s Cybersecurity & Information Security program – Represent Company’s Information Security program, internally and externally, directing the focus, activities, and priorities. Work directly with senior management to identify, define and confirm the key threats to the information and financial assets of the Company.
• Direct and monitor security procedures and practices – Define roles and responsibilities regarding information security operations and review the various reports and logs available. Investigate and report on irregularities. Develop a management control program that proactively identifies threats to the organization including conducting periodic risk assessments.
• Develop security policies and standards – Develop and enhance existing security policies to adequately reflect Company’s strategy for securing information assets. Policies will reflect business needs, changing technologies and potential threats to the organization.
• Promote security awareness – Provide information on Company’s security policies and practices to employees and company affiliates.
• Create an environment that encourages the participation of business managers, External and Internal Audit, insurance and legal staff in the Information Security program.
• Coordinate security-related activities including Corporate Continuity, Privacy, Cybersecurity Regulatory Compliance, Cyber Risk Management, Cybersecurity aspects of Corporate Sourcing and Legal Counsel. Ensure all security related tasks are completed and that adequate provisions and practices are in place.
• Ensure adequate security provisions for existing and new applications and systems – Be aware of and review the security features of new applications and systems to ensure that they meeting existing security policies and standards.
• Take leadership role in the design, development, testing, integration, implementation and maintenance of security systems that protect key information assets. Maintain configuration profiles of all systems.
• Maintain awareness of changes in industry and threats – Attend courses and seminars as required to maintain a high level of proficiency in the field of information security. Network with other industry security professionals. Develop security skill sets of the CIS staff.

• Degree in technology-related field required.
• Professional security management certification would be an asset.
• Minimum of 3 years of experience in a combination of risk management, information security and IT jobs.
• Excellent written and verbal communication skills and high level of personal integrity.
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
• Experience with contract and vendor negotiations and management including managed services.
• Technical background: AWS CLOUD, DNS, Routing, authentication, VPN, proxy, DDOS, threat modeling, Firewalls, intrusion detection, protocols, digital identity & authentication technologies.
• Knowing of regulation standards: PCI, HIPAA, GLBA.
• Experience in Crypto, Smart Contracts Desirable.

Accomplishing the mission of SANDBOX Cybersecurity & Information Security program requires a CISO with strong leadership skills, executive presence, security knowledge and effective placement within the organization. The attributes of the required CISO are:

• Leadership: The CISO must provide executive leadership in developing, planning, coordinating, administering, managing, staffing and supervising all information security-related operations. The CISO must provide overall leadership to the Information Security program and its coordination with complimentary programs including Corporate Continuity, Privacy, Regulatory Compliance, Corporate Security, Risk Management, Corporate Sourcing, Human Resources and Legal Counsel as well as integrate closely with Line of Business executives.

Executive Presence: The CISO serves as a spokesperson for the Information Security program including presentations to the Board of Directors, addressing concerns expressed by Auditors, vendors, and customers, and appearing as a featured speaker in Industry and regional information security seminars, symposia, courses, etc. The CISO must have the executive presence to effectively represent the company’s position regarding information security matters and the ability to influence other company executives in the achievement of their business objectives in a manner consistent with the security program objectives. Simultaneously, the CISO must possess effective communication skills and an ability to interact with personnel at all levels in the organization.

• Security Knowledge: The CISO will decide or recommend the company’s stance on numerous information security issues and, as such, must have a solid basis of security knowledge upon which to draw. The CISO must possess strong analytical and diagnostic abilities to understand and apply theoretical concepts to practical problems. The CISO must have strong information security skills derived from having at least ten years experience in Information Technology and five to seven years of direct Information Security experience. The CISO should be a Certified Information Systems Security Professional (CISSP).

The CISO is responsible for overseeing all aspects of information security within the organization. The CISO implements and supports all of the company's information security initiatives. CISO acts as a focus and resource for information security matters, taking direction from Upper Management and Chief Technology Officer. CISO investigates and recommends secure solutions that implement information security policy and standards. CISO coordinates Corporate Information Security (CIS) activities and manages CIS staff. CISO oversees, implements and monitors regulatory requirements and Company’s information security posture against those requirements.

The fundamental job responsibilities of this position are:

• Leadership of Company’s Cybersecurity & Information Security program – Represent Company’s Information Security program, internally and externally, directing the focus, activities, and priorities. Work directly with senior management to identify, define and confirm the key threats to the information and financial assets of the Company.
• Direct and monitor security procedures and practices – Define roles and responsibilities regarding information security operations and review the various reports and logs available. Investigate and report on irregularities. Develop a management control program that proactively identifies threats to the organization including conducting periodic risk assessments.
• Develop security policies and standards – Develop and enhance existing security policies to adequately reflect Company’s strategy for securing information assets. Policies will reflect business needs, changing technologies and potential threats to the organization.
• Promote security awareness – Provide information on Company’s security policies and practices to employees and company affiliates.
• Create an environment that encourages the participation of business managers, External and Internal Audit, insurance and legal staff in the Information Security program.
• Coordinate security-related activities including Corporate Continuity, Privacy, Cybersecurity Regulatory Compliance, Cyber Risk Management, Cybersecurity aspects of Corporate Sourcing and Legal Counsel. Ensure all security related tasks are completed and that adequate provisions and practices are in place.
• Ensure adequate security provisions for existing and new applications and systems – Be aware of and review the security features of new applications and systems to ensure that they meeting existing security policies and standards.
• Take leadership role in the design, development, testing, integration, implementation and maintenance of security systems that protect key information assets. Maintain configuration profiles of all systems.
• Maintain awareness of changes in industry and threats – Attend courses and seminars as required to maintain a high level of proficiency in the field of information security. Network with other industry security professionals. Develop security skill sets of the CIS staff.

• Degree in technology-related field required.
• Professional security management certification would be an asset.
• Minimum of 3 years of experience in a combination of risk management, information security and IT jobs.
• Excellent written and verbal communication skills and high level of personal integrity.
• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
• Experience with contract and vendor negotiations and management including managed services.
• Technical background: AWS CLOUD, DNS, Routing, authentication, VPN, proxy, DDOS, threat modeling, Firewalls, intrusion detection, protocols, digital identity & authentication technologies.
• Knowing of regulation standards: PCI, HIPAA, GLBA.
• Experience in Crypto, Smart Contracts Desirable.

EY

Global Information Security Awareness Specialist :Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 900 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust.The opportunity :The Global Information Security Awareness Specialist is responsible for the creation, maintenance, and delivery of global Information Security awareness training and guidance through various learning and communication channels intended for EY leaders, stakeholders, and general staff.A successful applicant is analytical, creative, enthusiastic, and communicative. This role will engage with global community as it explores and proposes creative solutions to security awareness. To be a member of this team, strong oral and communication skills are essential.Your key responsibilities :- Create, update, and deliver cybersecurity awareness presentations and training materials for internal business users, IT professionals, and EY leaders- Verify the relevancy and accuracy of security awareness materials- Collaborate with Information Security, Information Technology, and Data Protection teams, as well as with business and technical partners on Information Security awareness- Brainstorm, recommend and implement improvements to global Information Security awareness materials- Support the writing and editing of proposals as neededSkills and attributes for success :- Understanding of information security concepts- Familiarity with principles of securely handling and protecting information- Strong analytical and research skills with a keen attention to detail- Strong written and verbal communication skills and the ability to communicate effectively with different levels within the organization- Ability to work well in a collaborative, team-oriented environment- Adept at learning new technologies- Strong experience with MS Office, especially Word and PowerPoint, is requiredTo qualify for the role, you must have :- Degree in Communications, Writing or related discipline, or equivalent work experienceIdeally, you’ll also have :- Two or more years of experience in Information Security or related work- Attained or desire to attain one or more of the following certifications:- CISSP, CRISC, CSAP, and/or SSAP- Involvement with awareness or communication programs- Familiarity of common information security standards, such as: IEC/ISO 27000, NIST, PCI DSS, ITIL, COBIT, SOC2- Experience working in a global virtual environment- Excellent interpersonal, communication and presentation skills- Good time management, organizational, and decision-making skills- Ability to understand and integrate cultural differences and motives, and ability to work with cross cultural teamsWhat we look for :We’re looking for someone who can collaborate globally with different regions and cultures. Problem-solves, thinks creatively, and has an open mind to new insights. Focus on customer service and building positive relationships with colleagues both across teams and globally. A highly motivated, diligent, and driven individual who seeks development and improvement opportunities and deliver quality services.What we offer :As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer:- Continuous learning : You will develop the mindset and skills to navigate whatever comes next.- Success as defined by you : We will provide the tools and flexibility, so you can make a significant impact, your way.- Transformative leadership : We will give you the insights, coaching and confidence to be the leader the world needs.- Diverse and inclusive culture : You will be accepted for who you are and empowered to use your voice to help others find theirs.EY is committed to being an inclusive employer, and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals

DaBrein Solutions is pre-selecting an Information Security Manager to join an important international company.Job Requirements and Preferences: 3 - 10 years of experience in a relevant role.Desired Certifications: Not mandatory, but preferred: CISSP, CISM, CISA, CCSK,.

American Express

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with.

Accenture

Responsible for performing pre-purchase IS risk reviews of potential acquisition targets, documenting and communicating the risks, and tracking remediation after acquisition purchase.- Experience in Information Security risk assessments or audits- Awareness of security.

EY

$ 9.750.000 – $12.500.000

Perimeter Security Specialist - EY Global DeliveryEYPerimeter Security Specialist. At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. We value your.

Veritran

$ .750.000 – $ 2.500.000

Press Tab to Move to Skip to Content LinkLocation: CABAOther locations: Primary Location OnlyDate: Jul 31, 2025Requisition ID: 1629742IAM Specialist – IdentityToday’s world is fueled by vast amounts of information, which means that data is even more valuable than ever.

Jam City

As a leading mobile games developer, Jam City is looking to “level up” our talent. We’re searching for innovators who consider themselves dynamic, collaborative, and thrive in a fast-paced environment.PERKS & BENEFITSCompetitive salariesBenefitsProfessional Development.

Job Locations:Argentina (Remote)Department: MarketingType:Regular, Full-TimeWorking hours:8:30 - 5:30 CSTVision: Building World Class TechnologistMission: Optimize Workforce Readiness & Personalize Training Using AI To Meet Goals & ObjectivesIn The News:- Moneta Ventures.

Qualifications- Bachelor's degree from accredited university including: Graphic Design, Industrial Design, Marketing and/or any other related career.- Customer service, consulting and negotiation experience.- Bilingual / Advanced English skills- Analytical skills & critical.

Company DescriptionEvery industry and market segment are moving toward using the cloud and becoming more digital. Doit Security supports cloud security companies and has been running for years to help shape the emerging SASE category. We provide enterprise-level services to.

Amex

You Lead the Way. We’ve Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers,.

JPMorganChase

JOB DESCRIPTIONQualifications:- Bachelor’s degree from accredited university including: Graphic Design, Industrial Design, Marketing and/or any other related career.- Customer service, consulting and negotiation experience.- Bilingual / Advanced English skills- Analytical.

Financecolombia

Our client’s Microsoft Business Solutions team is a Microsoft Gold Partner and leader in Microsoft software implementations for medium to large organisations, providing their clients with the ability to keep up with the ever-changing digital world by implementing.

Tink

Company DescriptionVisa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission.

Keyrock

2 weeks ago Be among the first 25 applicantsAbout KeyrockSince our beginnings in 2017, we've grown to be a leading change-maker in the digital asset space, renowned for our partnerships and innovation.Data ArchitectAbout KeyrockSince our beginnings in 2017, we've.

Sr. Manager, Sales Engineering -Issuing Risk and Identity SolutionsWe are seeking an experienced technology and commercially savvy, Sales Engineer to support the sale of advanced fraud prevention and risk solutions, with a specific focus on solutions such as,.

BETSOL

Company Description:Job Description:Objectives of this role- Drive awareness of requirements across business units and identify substandard systems processes through evaluation of real-time data- Serve as thought leader for technical business processes, developing systems.

EY

Senior DevOps Engineer - Cloud Services - Building BlocksEY is a global leader in assurance, tax, strategy, transaction and consulting services. Technology is at the heart of what we do and deliver at EY. Technology solutions are integrated in the client services we deliver.

EY

Role descriptionRole:Supervising Analyst/Lead AnalystGroup: GDS RMS GCO Support TeamLocation: Buenos Aires, ArgentinaThe opportunityThis is a fantastic opportunity for an experienced legal professional to be part of EY’s Global Delivery Services (GDS) team supporting the.

EY

Role descriptionRole:Analyst/Associate AnalystGroup: GDS RMS GCO Support TeamLocation: Buenos Aires, ArgentinaThe opportunityThis is a fantastic opportunity for a junior legal professional to be part of EY’s Global Delivery Services (GDS) team supporting the General.

DaBrein Solutions is pre-selecting an Information Security Manager to join an important international company.

Job Requirements and Preferences: 3 - 10 years of experience in a relevant role.

Desired Certifications: Not mandatory, but preferred: CISSP, CISM, CISA, CCSK, CCSP, CRISC.

Roles & Responsibilities:

• Engage business and technology stakeholders at all levels, converting architectural designs into practical implementations across Security Engineering phases - design, build, test, deploy, and improve.
• Map long-term business requirements and security standards to functional engineering implementations.
• Design and build security technology solutions aligned with a global central service environment.
• Utilize and apply security technology at enterprise and solution levels to meet control requirements.
• Perform Security Engineering tasks with autonomy.
• Demonstrate experience with at least two endpoint security technologies such as AV/AM, EDR, PAM, DLP, etc.
• Possess experience with multiple OS platforms (Mac, Windows, Linux), endpoint types (Laptop, Mobile, Servers), and cloud workload types (containers, serverless functions, SaaS resources).
• Possess experience in writing and refining technical documentation.

Mandatory Skills:

• Customer service skills to create an exceptional customer experience.
• Strong organizational and time management skills to support multiple concurrent reviews.
• Self-awareness.
• Knowledge of the Information Security Policy, Application Readiness Standard, and supporting documentation.
• Understanding of the purpose of the Application Readiness process.
• Ability to interact with customers and ensure they understand required actions.
• Ability to review documentation analytically and assess control compliance.
• Ability to extract facts and details related to controls from various documentation and diagrams.
• Interface with customers for clarifying questions, responses, guidance, and scheduling.
• Strong English written and verbal skills.

Key Skills:

• Strong communication and organizational skills; ability to manage multiple projects and teams.
• Knowledge of information security policies and application readiness standards.

Qu’s mission is to deliver world class enterprise software to help restaurant chains thrive in the face of increasing complexity, opportunities, and challenges.

Based in Rosslyn, VA, Qu is backed by leading Silicon Valley investors that have also backed Google, Uber, and Dropbox.

We are seeking an enthusiastic Information Security Compliance and Risk Analyst ready to join a talented, hard-working, and ambitious Infosec team.

What you’ll do here

As a key contributor to our security and compliance initiatives, you will apply a deep understanding of risk management principles and a strong command of global privacy regulations. You’ll bring hands-on experience in designing, implementing, and auditing comprehensive compliance programs aligned with leading industry standards, including PCI DSS, SOC 2, ISO 27001/27002, and the NIST Cybersecurity Framework. In this role, you will work cross-functionally with internal stakeholders to enhance the organization’s security posture, ensure adherence to data protection requirements, and drive ongoing improvements in response to evolving regulatory and industry demands.

Responsibilities

• Support the development, implementation, and enforcement of information security policies, standards, procedures, and controls to meet legal, regulatory, and contractual obligations.
• Assist in evaluating the organization’s existing IT architecture against applicable security frameworks (e.g., NIST CSF, NIST 800-53) to ensure compliance and identify areas for enhancement.
• Oversee and support the implementation of compliance controls and operational processes aligned with recognized security frameworks and best practices.
• Plan and execute regular internal audits to ensure ongoing compliance with key security standards such as PCI DSS, SOC 2, and ISO/IEC 27001.
• Enhance and maintain a comprehensive Risk Management and Incident Response framework to ensure effective identification, mitigation, and response to security threats.
• Conduct audits and assessments to validate adherence to data protection policies and ensure alignment with global privacy and data protection regulations.
• Design and deliver privacy and security training programs, including awareness campaigns to foster a security-conscious culture across the organization.
• Monitor regulatory developments and maintain compliance with evolving privacy laws, including but not limited to CCPA, GDPR, PIPEDA (Canada), and LFPDPPP (Mexico).
• Bachelor's degree in Information Security, Computer Science, or a related field.
• Minimum of 3-5 years of experience in Information Security, with a focus on GRC, PCI DSS, SOC 2, ISO 27001, and privacy regulations.
• Knowledge in privacy regulations and data protection laws in the USA (e.g., CCPA, Texas Act), Canada (e.g., PIPEDA), and Mexico (e.g., LFPDPPP).
• Experience with risk management practices, security audits, and compliance frameworks, including but not limited to NIST, OWASP, SANS, ISO-27001/2, and Cloud Security Alliance.
• Strong attention to detail and the ability to work independently.
• Excellent problem-solving skills with a proactive attitude toward risk mitigation.
• Strong ethical standards and commitment to data security and privacy.

Nice to have

• General knowledge of cloud environments.
• Experience working with Governance Risk and Compliance technologies.
• Experience implementing Data Privacy Technologies.
• Certifications such as CISA, ITIL Expert, Certified Governance Risk and Compliance (CGRC)

Join to apply for the (LATAM) Information Security Compliance and Risk Specialist role at Qu

13 hours ago Be among the first 25 applicants

Join to apply for the (LATAM) Information Security Compliance and Risk Specialist role at Qu

Get AI-powered advice on this job and more exclusive features.

Qu’s mission is to deliver world class enterprise software to help restaurant chains thrive in the face of increasing complexity, opportunities, and challenges.

Based in Rosslyn, VA, Qu is backed by leading Silicon Valley investors that have also backed Google, Uber, and Dropbox.

We are seeking an enthusiastic Information Security Compliance and Risk Analyst ready to join a talented, hard-working, and ambitious Infosec team.

What You’ll Do Here

As a key contributor to our security and compliance initiatives, you will apply a deep understanding of risk management principles and a strong command of global privacy regulations. You’ll bring hands-on experience in designing, implementing, and auditing comprehensive compliance programs aligned with leading industry standards, including PCI DSS, SOC 2, ISO 27001/27002, and the NIST Cybersecurity Framework. In this role, you will work cross-functionally with internal stakeholders to enhance the organization’s security posture, ensure adherence to data protection requirements, and drive ongoing improvements in response to evolving regulatory and industry demands.

Responsibilities

• Support the development, implementation, and enforcement of information security policies, standards, procedures, and controls to meet legal, regulatory, and contractual obligations.
• Assist in evaluating the organization’s existing IT architecture against applicable security frameworks (e.g., NIST CSF, NIST 800-53) to ensure compliance and identify areas for enhancement.
• Oversee and support the implementation of compliance controls and operational processes aligned with recognized security frameworks and best practices.
• Plan and execute regular internal audits to ensure ongoing compliance with key security standards such as PCI DSS, SOC 2, and ISO/IEC 27001.
• Enhance and maintain a comprehensive Risk Management and Incident Response framework to ensure effective identification, mitigation, and response to security threats.
• Conduct audits and assessments to validate adherence to data protection policies and ensure alignment with global privacy and data protection regulations.
• Design and deliver privacy and security training programs, including awareness campaigns to foster a security-conscious culture across the organization.
• Monitor regulatory developments and maintain compliance with evolving privacy laws, including but not limited to CCPA, GDPR, PIPEDA (Canada), and LFPDPPP (Mexico).
  
  

• Bachelor's degree in Information Security, Computer Science, or a related field.
• Minimum of 3-5 years of experience in Information Security, with a focus on GRC, PCI DSS, SOC 2, ISO 27001, and privacy regulations.
• Knowledge in privacy regulations and data protection laws in the USA (e.g., CCPA, Texas Act), Canada (e.g., PIPEDA), and Mexico (e.g., LFPDPPP).
• Experience with risk management practices, security audits, and compliance frameworks, including but not limited to NIST, OWASP, SANS, ISO-27001/2, and Cloud Security Alliance.
• Strong attention to detail and the ability to work independently.
• Excellent problem-solving skills with a proactive attitude toward risk mitigation.
• Strong ethical standards and commitment to data security and privacy.
  
  

• General knowledge of cloud environments.
• Experience working with Governance Risk and Compliance technologies.
• Experience implementing Data Privacy Technologies.
• Certifications such as CISA, ITIL Expert, Certified Governance Risk and Compliance (CGRC)

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Qu by 2x

Santa Fe, Santa Fe, Argentina 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Qu’s mission is to deliver world class enterprise software to help restaurant chains thrive in the face of increasing complexity, opportunities, and challenges.

Based in Rosslyn, VA, Qu is backed by leading Silicon Valley investors that have also backed Google, Uber, and Dropbox.

We are seeking an enthusiastic Information Security Compliance and Risk Analyst ready to join a talented, hard-working, and ambitious Infosec team.

What you’ll do here

As a key contributor to our security and compliance initiatives, you will apply a deep understanding of risk management principles and a strong command of global privacy regulations. You’ll bring hands-on experience in designing, implementing, and auditing comprehensive compliance programs aligned with leading industry standards, including PCI DSS, SOC 2, ISO 27001/27002, and the NIST Cybersecurity Framework. In this role, you will work cross-functionally with internal stakeholders to enhance the organization’s security posture, ensure adherence to data protection requirements, and drive ongoing improvements in response to evolving regulatory and industry demands.

Responsibilities

• Support the development, implementation, and enforcement of information security policies, standards, procedures, and controls to meet legal, regulatory, and contractual obligations.
• Assist in evaluating the organization’s existing IT architecture against applicable security frameworks (e.g., NIST CSF, NIST 800-53) to ensure compliance and identify areas for enhancement.
• Oversee and support the implementation of compliance controls and operational processes aligned with recognized security frameworks and best practices.
• Plan and execute regular internal audits to ensure ongoing compliance with key security standards such as PCI DSS, SOC 2, and ISO/IEC 27001.
• Enhance and maintain a comprehensive Risk Management and Incident Response framework to ensure effective identification, mitigation, and response to security threats.
• Conduct audits and assessments to validate adherence to data protection policies and ensure alignment with global privacy and data protection regulations.
• Design and deliver privacy and security training programs, including awareness campaigns to foster a security-conscious culture across the organization.
• Monitor regulatory developments and maintain compliance with evolving privacy laws, including but not limited to CCPA, GDPR, PIPEDA (Canada), and LFPDPPP (Mexico).
• Bachelor's degree in Information Security, Computer Science, or a related field.
• Minimum of 3-5 years of experience in Information Security, with a focus on GRC, PCI DSS, SOC 2, ISO 27001, and privacy regulations.
• Knowledge in privacy regulations and data protection laws in the USA (e.g., CCPA, Texas Act), Canada (e.g., PIPEDA), and Mexico (e.g., LFPDPPP).
• Experience with risk management practices, security audits, and compliance frameworks, including but not limited to NIST, OWASP, SANS, ISO-27001/2, and Cloud Security Alliance.
• Strong attention to detail and the ability to work independently.
• Excellent problem-solving skills with a proactive attitude toward risk mitigation.
• Strong ethical standards and commitment to data security and privacy.

Nice to have

• General knowledge of cloud environments.
• Experience working with Governance Risk and Compliance technologies.
• Experience implementing Data Privacy Technologies.
• Certifications such as CISA, ITIL Expert, Certified Governance Risk and Compliance (CGRC)