Mexico City, CDMX, Mexico

Cybersecurity Auditor/Advisor - FT - Mexico City

 Job Description:

This opportunity is part of a cybersecurity labor market research project. By submitting your information, youll not only contribute to shaping industry insights but also ensure we can match you with job and contract opportunities as they arise. Participants will receive free access to our research findings, including the next edition of Nearshore Cyber Quarterly, a comprehensive summary and analysis of the Latin American cybersecurity job market.

Esta oportunidad forma parte de un proyecto de investigación sobre el mercado laboral en ciberseguridad. Al enviar tu información, no solo contribuirás a generar valiosos conocimientos para la industria, sino que también te ayudaremos a conectar con oportunidades laborales y de contrato a medida que surjan. Los participantes recibirán acceso gratuito a los resultados de nuestra investigación, incluyendo la próxima edición de Nearshore Cyber Quarterly, un resumen y análisis completo del mercado laboral de ciberseguridad en América Latina 

Job Description:

A Cybersecurity Auditor/Advisor assesses an organization's information security policies, procedures, and systems to ensure compliance with regulatory requirements and industry best practices. They identify security gaps, evaluate risks, and provide recommendations for improving the overall security posture. This role involves conducting thorough audits, analyzing complex security environments, and advising stakeholders on effective security strategies and solutions.

Skills and Experience:

- Comprehensive knowledge of information security principles and best practices

- Strong understanding of regulatory frameworks and compliance standards (e.g., ISO 27001, NIST, GDPR, HIPAA, PCI DSS)

- Experience in conducting security audits and assessments

- Familiarity with risk assessment methodologies and tools

- Knowledge of various security technologies and controls

- Understanding of network architectures and protocols

- Experience with cloud security and associated compliance requirements

- Ability to analyze complex systems and identify security weaknesses

- Strong analytical and problem-solving skills

- Excellent communication skills for presenting findings to both technical and non-technical audiences

- Experience in developing security policies and procedures

- Familiarity with security governance and risk management frameworks

Language Requirement:

Strong English language abilities at a minimum of EFSET C1 level

Required Certifications:

- CISA (Certified Information Systems Auditor)

- CISSP (Certified Information Systems Security Professional)

Optional Certifications:

- CIA (Certified Internal Auditor)

- CRISC (Certified in Risk and Information Systems Control)

- CGEIT (Certified in the Governance of Enterprise IT)

- CISM (Certified Information Security Manager)

- CompTIA Security+

- ISO 27001 Lead Auditor

  Required Skills:

Information Security Communication Skills Regulatory Requirements Risk Assessment Information Systems Risk Management Security English Communication Management