Talent.com
Esta oferta de trabajo no está disponible en tu país.
Senior Information Security (Infosec) Analyst

Senior Information Security (Infosec) Analyst

EPAM SystemsChile
Hace 29 días
Descripción del trabajo

Senior Information Security (Infosec) Analyst

We are looking for a detail-oriented Senior Information Security Analyst to join our dedicated team.

This position involves supporting third-party risk assessments and contributing to enterprise risk management efforts, ensuring regulatory compliance and safeguarding data within our vendor network.

Responsibilities

  • Evaluate third-party risks with a focus on Information Security and GRC, enabling informed decisions regarding inherent and residual risks
  • Conduct due diligence on prospective and current vendors, emphasizing cybersecurity controls, regulatory compliance (e.g., GDPR, SOC 2, ISO 27001), and data protection measures
  • Ensure the integrity, consistency, and audit-readiness of third-party data within the GRC platform to meet reporting and regulatory standards
  • Collaborate with teams in Information Security, Privacy, Legal, Procurement, and Business Units to share findings and support enterprise risk management activities
  • Handle third-party offboarding processes, verifying risk management protocols and reviewing data retention, access, and continuity measures
  • Prepare documentation and responses for external audits, internal reviews, or regulatory inquiries related to third-party risk management matters
  • Maintain and refine TPRM policies, playbooks, and program metrics to aid program advancement

Requirements

  • 3+ years of experience in third-party risk management, information security, IT audit, or GRC, ideally within Gaming, Technology, or Consulting industries
  • Basic understanding of security risk frameworks and practices (e.g., NIST, ISO 27001, SIG, CSA, etc.)
  • Familiarity with tools like JIRA and GRC platforms (e.g., OneTrust, ServiceNow) with flexibility to learn and support data analysis and system enhancements
  • Ability to assess security, privacy, and operational risks while applying analytical and solutions-based approaches
  • Strong verbal and written communication skills to cultivate collaboration across teams and organizational stakeholders
  • Adaptability in handling cross-functional tasks amid ambiguity or evolving requirements
  • General understanding of vendor management and data security regulations and standards
  • Awareness of IT risk management principles coupled with familiarity with S-SDLC and Agile Methodology
  • Fluent English communication skills at a B2+ level
  • We offer

  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn
  • #J-18808-Ljbffr

    Crear una alerta de empleo para esta búsqueda

    Information Security • Chile