Back to Remote jobs >
Software Development
Cyber Security Governance, Risk, and Compliance Analyst
@J.S. Held LLC
[Hiring] Cyber Security Governance, Risk, and Compliance Analyst @J.S. Held LLC
Mar 25, 2025 - J.S. Held LLC is hiring a remote Cyber Security Governance, Risk, and Compliance Analyst. 💸 Salary: unspecified. 📍Location: Colombia.
This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.
Role Description
The Cyber Security Governance, Risk, and Compliance Analyst will support the Cyber Security team to drive the design, implementation, and ongoing delivery of:
- Formal Cyber Security Risk Management
- Cyber Security Policies
- Cyber Security Compliance
- Participate in the review and assessment of third-party vendor security controls to ensure compliance with Cyber Security standards
- Third Party Risk Assessments
- M&A Cyber Security Due Diligence
- Disaster Recovery/Business Continuity Planning (DR/BCP)
- Help monitor and ensure compliance with relevant regulatory requirements, such as GDPR, HIPAA, ISO 27001, CMMC, NIST CSF, Cyber Essentials+, among others
- Support the development of training and awareness programs for employees to promote a security-conscious culture and adherence to J.S. Held
- Assist in coordinating internal and external audits and examinations related to Compliance and Cyber Security
- Aid in the preparation and presentation of GRC reports, metrics, and key performance indicators as needed
- Coordinate annual external penetration tests and security assessments utilizing 3rd party
- Contribute to incident response activities, including updating the directory, documenting and reporting security incidents, and participating in post-incident analysis to identify areas of improvement
- Stay updated on emerging Cyber Security trends, regulatory changes, and industry standards to assist in keeping the organization's GRC practices current and effective
- Establish a process for continuous improvement of the Cyber Security program based on lessons learned from incidents, audits, and assessments
Qualifications
- Professional Level / English Fluency (B2)
- Experienced in building and executing technology risk frameworks, assessments, reports, metrics, KRIs, and utilizing risk management tools to analyze and model risk
- Ability to align frameworks and policies to address requirements from frameworks like COBIT, NIST CSF, and ISO, and regulations such as GDPR, HIPAA NY-500, and CCPA
- Experience designing and evaluating Cyber Security processes, risks, and controls
- Technical knowledge of Azure, Azure AD, O365, Windows 10/11, iOS, and technical controls used to secure technology assets (Data, Client and Server OS, Network, Applications, SaaS, IaaS, etc.)
- Hands-on Cyber Security compliance program experience, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations
- Strong oral and written communications skills appropriate for interacting with all levels of staff, vendors, and other stakeholders
- Ability to develop security standards and guidelines based on best practices and industry standards
- Excellent interpersonal, communication, and presentation skills, including formal report writing experience
- Proficiency in analyzing security risks, vulnerabilities, and controls within an IT environment
- Capability to work on multiple tasks with shifting and sometimes conflicting priorities
- Able to work effectively with other departments to develop effective and efficient solutions
- Experience designing and implementing information technology processes
- Demonstrated experience successfully collaborating with remote colleagues
- Experience working with vendors or managing vendor relationships
- Experience collaborating with Compliance, Legal, Infrastructure, HR, and Security teams
- Ability to deal with ambiguity and flexibility to work collaboratively with others in a dynamic environment
Requirements
- Bachelor’s degree in Computer Science or similar (preferred)
- Minimum 8 years of experience in IT Audit, Risk Management, or Compliance
- 5+ years of experience in Cyber Security (required)
- 3+ years of experience in Cyber Security - Governance, Risk, and Compliance (GRC) (required)
- Professional certifications such as CISA, CompTIA Security+, COBIT, CISM are a plus
Benefits
- Flexible work environment allowing employees to work remotely when needed
- Generous Annual Leave Policy
- Comprehensive Medical Insurance
Similar Remote Jobs
More jobs at J.S. Held LLC
-
All others $180,000 - $225,000 Latin America (LATAM)Mar 26, 2025
-
All others $135,000 - $160,000 USAMar 24, 2025
More AI / ML jobs
-
.png?1676993513)
Software Development $140,000 - $155,000 usd USAApr 01, 2025 -
Software Development unspecified Costa RicaApr 01, 2025
-
Software Development from £31.67 an hour UKApr 01, 2025
More jobs in Colombia
-
All others unspecified USA, Germany, France +17 moreApr 01, 2025
-
Customer Service unspecified USA, Germany, France +17 moreApr 01, 2025
Kickstart Your Job Search
Need advice to apply?
Join our free
Webinar « 3
Mistakes to Avoid When Looking For A Remote Startup Job (And What To Do Instead) »
Register for free
Unlock 54,509 additional remote jobs, advanced search & email notifications
Get Access Now
Too many emails? Declutter your inbox with Meco
Your home for reading newsletters
Try for free - no card required.
️
| 📍 | Be aware of the location restriction for this remote position: Colombia |
| ‼ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. |
Back to Remote jobs >
Software Development
Software Development
|
Salary
💸
unspecified
|
Remote
Location
Colombia
|
|
Job Type
full-time
|
Posted
Mar 25, 2025
|
️
| 📍 | Be aware of the location restriction for this remote position: Colombia |
| ‼ | Beware of scams! When applying for jobs, you should NEVER have to pay anything. Learn more. |
Cyber Security Governance, Risk, and Compliance Analyst
Apply for this position
Unlock
54,509
Remote Jobs
