Cybersecurity Compliance Associate

hace 5 meses


Heredia, Costa Rica Publicis Re:Sources Global A tiempo completo

Job Description

The Cybersecurity ComplianceAssociate provides IT compliance guidance and consulting to team members and stakeholders across the Publicis Groupe agencies to ensure compliance is met with the information security policies and governmental and industry regulations. This position is responsible for supporting complex compliance programs as a key member of Publicis Re:Sources – Global Security Office (GSO). This position works directly with technical and business leadership teams to ensure security and compliance requirements are maintained. Good project management, written, and technical skills are required.

Core Duties & Responsibilities

Manage and support multiple ISMS audits or assessments, including ISO 27001 external audits Risk scoring and analysis of security risk within the organization Refine assessment templates and perform related security assessments in compliance with regulatory/compliance frameworks Collect audit evidence from IT teams and validate clear and appropriate details are included prior to submitting to external auditors

Day to Day Activities

Interface with auditors and organizational stakeholders to facilitate audits and readiness reviews Support ISO 27001 , SSAE18, and/or Privacy compliance Perform risk assessments across multiple platforms or locations Mange third-party ISMS or SOC audits as the key liaison for the organization, driving compliance throughout the year and managing the audit with the organization’s third-party auditor Improve methods of capturing and presenting status of key compliance requirements in order to produce clear, concise data to enable appropriate decision making. Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitating the timely resolution of any audit findings Ensure compliance issues are correctly identified, evaluated, investigated, and resolved Identify gaps and advise on mitigating controls to reduce risk Provide consultative services to business areas on the appropriate controls needed to ensure ongoing regulatory compliance Ability to evaluate and recommend preventative and corrective controls to mitigate risk to the organization Conduct kickoff, status, and closing meetings with stakeholders Manage, review and present written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management Recognize and identifies potential areas where existing policies, standards and procedures require change Review vulnerability management reporting to identify and assess risk in compliance areas Design management action plans to address noted issues Assist in preparing reports to present to management Effective ability to identify and assess the severity and potential impact of risks & communicate risk assessment findings to risk owners. Recommend alternatives to reduce risk. Perform miscellaneous job-related duties as assigned

Qualifications

Associates or Bachelors degree required Minimum 3 years of experience in Security, Risk, and Compliance This role recommends one or more active certifications in any of CISSP, CRISC, CISA, CISM or other relevant information security, compliance or audit certifications Experience in applying SSAE-18 or PCI audit requirements to business and technical environments while providing a service-oriented leadership approach to maintaining compliance Familiarity with Information Security, Compliance & IT Management Standards; ISO27001, PCI-DSS, SSAE-18 SOC 1/2/3, SOX, HIPAA, Privacy, and NIST-CSF Understanding of technology frameworks, including NIST CSF and ISO 27001 Experience supporting security controls, compliance and audit activity within a service provider organization with multiple technologies and architectures; Windows, Unix/Linux, VMWare, Oracle, SQL, IPS/IDS, DLP, and other security technologies Project management skills Proficiency with Microsoft Office software, Excel (intermediate to advanced), Word, PowerPoint, Visio, and SharePoint Experience and detailed understanding of technology, regulations, and information security or compliance management best practice, processes or methods. Technical aptitude, with the ability to effectively communicate with a working knowledge of all areas of IT controls. Proficiency in Power BI (preferred) Experience in ServiceNow Strong understanding of business applications Knowledge of network infrastructure Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues

  • Heredia, Costa Rica Stryker A tiempo completo

    **Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: - Analyze cybersecurity threats related...


  • Heredia, Costa Rica Sysco Costa Rica A tiempo completo

    As a cyber engineer, you will be responsible for developing and implementing security measures to safeguard computer systems, networks, and data against cyber threats. You will work closely with other IT professionals to design and deploy secure solutions. **Responsibilities** - **Cybersecurity Strategy**: Develop and implement cybersecurity strategies,...


  • Heredia, Costa Rica Stryker A tiempo completo

    **Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: **Who we Want**: **Assertive...


  • Heredia, Costa Rica Sysco Costa Rica A tiempo completo

    **Requirements**: - Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring. - Work collaboratively with other cybersecurity teams and business units. - Drive the implementation of emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack. -...


  • Heredia, Costa Rica Boston Scientific Corporation A tiempo completo

    **Work mode**:Hybrid**Onsite Location(s)**:Heredia, H, CR**Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance** - At Boston Scientific, we recognize that nurturing a diverse and inclusive workplace helps us be more innovative and it is important in our work of advancing science for life and improving patient health....

  • Cybersecurity QA Lead

    hace 6 meses


    Heredia, Costa Rica Stryker A tiempo completo

    **Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: **Who we Want**: - ** Analytical problem...


  • Heredia, Costa Rica Boston Scientific A tiempo completo

    Additional Locations: Costa Rica-Heredia  Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance At our company, we value diversity and believe it is our greatest strength. We are committed to empowering women, supporting the LGBTQ+ community, and creating opportunities for individuals with disabilities. Our belief is...


  • Heredia, Costa Rica Moody's A tiempo completo

    Moody’s is seeking a Compliance and Regulatory Affairs Associate to join the Moody’s Local (ML) Compliance Surveillance and Investigations team. Based in Heredia, Costa Rica; Lima, Peru; or Buenos Aires, Argentina, this role will be part of the broader ML Compliance and Regulatory Affairs team within Moody’s Global Compliance and report to the VP -...


  • Heredia, Costa Rica AlignTech A tiempo completo

    **Join a team that is changing millions of lives.** - Transforming smiles, changing lives_ At Align Technology, we believe a great smile can transform a person’s life, so we create technology that gives people the confidence to take on whatever’s next. We revolutionized the orthodontic industry with the introduction of the Invisalign system, and we have...


  • Heredia, Costa Rica Sysco Costa Rica A tiempo completo

    The BISO is a dedicated security professional that is able to balance risk management and Cybersecurity requirements, leading a team of regional Business Information Security Officers. The role requires business acumen, technical acumen and strong consultative skills. Business operational understanding is critical because this role will engage with business...

  • Regional Compliance

    hace 6 meses


    Heredia, Costa Rica Moody's A tiempo completo

    Moody's is a global integrated risk assessment firm that empowers organizations to make better decisions. Moody’s is seeking a Compliance and Regulatory Affairs Associate to join the Moody’s Local (ML) Regional Compliance and Regulatory Strategy team and support the ML rating businesses in Latin America. Based in Heredia, Costa Rica; Lima, Peru; or...

  • HR Associate

    hace 7 meses


    Heredia, Costa Rica Experian A tiempo completo

    Full-time Employee Status: Regular Role Type: Hybrid Department: Human Resources Schedule: Full Time Shift: Day Shift **Company Description**: **Experian **is the world’s leading global information services company. During life’s big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new...

  • HR Associate

    hace 7 meses


    Heredia, Costa Rica Experian A tiempo completo

    **Company Description** Experian **is the world’s leading global information services company. During life’s big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower consumers and our clients to manage their data with confidence. We help individuals to take financial...


  • Heredia, Costa Rica Stryker Corporation A tiempo completo

    **Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: As a Cyber Security Assurance Analyst at...


  • Heredia, Costa Rica Stryker A tiempo completo

    **Why join Stryker?**: Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location specific. **Know someone at Stryker?**: As a Cyber Security Assurance Analyst at...


  • Heredia, Costa Rica IBM A tiempo completo

    Introduction In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of...


  • Heredia, Costa Rica 360training A tiempo completo

    **Principal Engineer Security Services** The Principal Engineer Security Services will play a crucial role in ensuring the ongoing security and protection of our company's information assets. They will be responsible for designing, developing, and overseeing the implementation of cybersecurity solutions to safeguard our systems, networks, and data. The...


  • Heredia, Costa Rica Moody's A tiempo completo

    Moody's is a global integrated risk assessment firm that empowers organizations to make better decisions. Individual contributor responsible for providing mainly office-based sales support for the Relationship Management and Business Development Teams. The associate will work to support team members to manage relationships while growing mandates and revenue...


  • Heredia, Costa Rica Sysco Costa Rica A tiempo completo

    Cyber Security Architect are responsible for guiding the design and implementation of secure solutions and services across our business and IT support areas. Driving the successful configuration and implementation of security solutions to reduce risk to an acceptable level. Duties will include providing support to internal and external teams to define and...


  • Heredia, Costa Rica Databricks A tiempo completo

    CSQ224R100 At Databricks, we are on a mission to empower our customers to solve the world's toughest data problems by utilizing the Lakehouse platform. As an Associate Customer Data Engineer, you will play a critical role during this customer journey. You will directly work with customers to help them onboard and deploy Databricks in a production...