CyberSecurity Strategy Risk & Compliance (Monterrey)

Introduction
Information and Data are some of the most important organizational assets in today's businesses. As a Security Consultant, you will be a key advisor for IBM's clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities

Responsibilities include, but may not be limited to the following:
Security Business Integration. Security Corporate Compliance Enforcement. Security Regulatory Compliance Enforcement. Audit Support (Cordination, evidence collection, response to audit requirements, finding reviews, remediation planning, remediation tracking, monthly reporting).

Business Continuity & Disaster Recovery Security Business Integration. Security Culture & Awareness. Communications & Training. Security Compliance Enforcement. Security Policy Management.

Required Technical and Professional Expertise
Bachelor's degree in Cybersecurity Information Technology Computer Science Accounting Finance or a related field.
Experience in IT auditing cybersecurity auditing or SOX compliance.
Resident of the City of Monterrey
Required English conversational fluid
Technical Skills:
Strong understanding of IT General Controls (ITGCs) and SOX compliance requirements.
Proficiency in auditing frameworks and standards such as COSO COBIT and NIST.
Familiarity with ITGC areas such as access management change management and data integrity controls.
Strong knowledge of governance risk management frameworks (e.g. COSO COBIT) and regulatory compliance requirements.
Familiarity with BCP methodologies risk assessment techniques and TPRM processes.

Preferred Technical and Professional Expertise
Expertise with risk management methodologies compliance tools and audit processes.
Familiarity with GRC platforms (e.g. RSA Archer OneTrust) and industry-specific regulatory standards (e.g. NIST ISO 27001 GDPR PCI-DSS) and regulations (e.g. GDPR HIPAA CCPA) o Strong expertise in Microsoft Office applications including Excel Word PowerPoint and Outlook • Soft Skills: o Strong analytical and problem-solving abilities.
Excellent documentation and report-writing skills.
Strong analytical strategic thinking and problem-solving skills.
Exceptional communication and interpersonal skills with experience communicating technical concepts to executive audiences.
Ability to lead multiple projects prioritize tasks and manage client expectations effective