Chief Information Security Officer

Posted 4hrs ago

Employment Information

Industry
Education
Salary
Experience
Job Type
Location

Report this job

Job expired or something wrong with this job?

Job Description

Chief Information Security Officer focusing on governance and risk management in fintech company. Responsible for implementing information security management systems under ISO 27001 standards.

Responsibilities:

  • Posición: Chief Information Security Officer
  • Enfoque: Gobernanza, Gestión de Riesgos y Continuidad del Negocio.
  • Buscar un(a) CISO con trayectoria en diseño de arquitecturas resilientes en AWS y marcos de gobernanza (NIST, ISO 27001) para una Fintech que se encuentra en fase de crecimiento. La misión principal será estructurar e implementar el Sistema de Gestión de Seguridad de la Información bajo estándares como ISO 27001, asegurando que la operación nunca se detenga.
  • Tomar decisiones de alto nivel sobre la Política de Seguridad de la Información y su contenido.
  • Aprobar el resultado de las revisiones de seguridad relevantes.
  • Aprobar las solicitudes de excepciones que presenten valor de riesgo medio o bajo relacionadas con el Cuerpo Normativo de Seguridad de la Información.
  • Coordinar anualmente una valoración de riesgo para identificar nuevas amenazas y vulnerabilidades de los activos además de identificar los controles apropiados para mitigar cualquier nuevo riesgo.
  • Verificar que la Política de Seguridad de la Información, las Normas, los Procedimientos, Documentos Técnicos y Anexos sean revisados al menos una vez al año y de manera que los cambios en los objetivos del negocio o el entorno de riesgos queden reflejados.
  • Asegurarse que los terceros con quien se comparte información sean manejados de acuerdo a los estándares definidos por la compañia.
  • Convocar el Comité de Seguridad de la Información con objeto de informar acerca de los aspectos más relevantes de seguridad a la Dirección Corporativa.
  • Mantener actualizado y distribuir el Plan de Respuesta ante Incidentes
  • Confirmar anualmente con las diferentes unidades del negocio que cualquier nuevo canal aceptado para recibir tarjetas de crédito o débito ha sido incluido en el alcance del proceso. Cualquier cambio en el alcance debe ser actualizado en la Política de Seguridad de la Información.
  • Mantener actualizada la documentación de riesgos y activos de seguridad de la información.
  • Cuando el objeto está relacionado a Protección de Datos, deberá: o Fijar y aprobar anualmente los objetivos de nivel de riesgo de seguridad aceptable: Los objetivos deben ser vigentes y estar alineados con el propósito y la estrategia de la organización, ser medibles o estimables y coherentes con las presentes directrices. Se deberá verificar de forma anual la evolución de dichos objetivos. o Identificar a los Propietarios de los riesgos: pues son los conocedores de los riesgos inherentes y significativos del área y los activos que es responsable.
  • Definir y aprobar los niveles de riesgo de la organización: así como los planes de tratamiento de riesgo, asumiendo las funciones de propietario del riesgo.
  • Aprobar las medidas correctivas resultantes del análisis de riesgos formalizadas en el plan de tratamiento de riesgos. o • Proporcionar los recursos necesarios para asegurar el cumplimiento de los objetivos de seguridad.
  • Liderar el ciclo de vida de cumplimiento de PCI-DSS, desde el escaneo de vulnerabilidades hasta la auditoría anual de cumplimiento.
  • Establecer políticas de seguridad alineadas con el cumplimiento regulatorio.
  • Supervisar la implementación de tecnologías de tokenización, cifrado punto a punto.
  • Garantizar la seguridad en el ciclo de vida de desarrollo (backend y frontend).
  • Monitorear patrones de tráfico para detectar intentos de inyección, sniffing o ataques de denegación de servicio dirigidos a la pasarela.

Requirements:

  • Experiencia: ****+5 años en cargos afines.****
  • 3 años en sector fintech y/o bancario.

Benefits:

  • Contrato indefinido + salario en COP + 100% trabajo remoto

Marathon Talent

We simplify talent so it can amplify your business.

RecruitmentB2B
WebsiteLinkedIn
View all jobs at Marathon Talent

Report this job

Job expired or something wrong with this job?

Similar Jobs

SailPoint logo
11hr

Cybersecurity Governance Analyst

SailPoint

Governance Analyst contributing to Cybersecurity governance at SailPoint. Involve in policy documentation and compliance activities aligned with industry best practices.

View job details
🇲🇽 Mexico
Full-time
Junior
Mid Level
👮‍♂️ Security Engineer
Cyber Security
Sentara Health logo
1d

Senior Cloud Cyber Security Engineer

Sentara Health

Senior Cloud Cyber Security Engineer designing secure cloud architectures and ensuring compliance for Sentara Health. Conducting security assessments and collaborating with cross-functional teams to enhance cloud security.

View job details
🇺🇸 United States
Full-time
Senior
👮‍♂️ Security Engineer
AWSAzureCloudCyber SecurityGoogle Cloud Platform
Amgen logo
1d

Senior Manager, Product Security

Amgen

Senior Manager of Product Security at Amgen developing strategies to counter threats to the global supply chain. Responsible for overseeing security initiatives and collaborating across diverse teams.

View job details
🇺🇸 United States
Full-time
$133,866 - $181,112 per year
Senior
👮‍♂️ Security Engineer
C++
Sensiba LLP logo
1d

Account Executive – Cybersecurity, Risk Assurance

Sensiba LLP

Account Executive managing complex B2B sales for Sensiba’s cybersecurity and risk assurance services. Focusing on ISO/IEC 27001, SOC 1, and SOC 2 engagements with C-suite executives.

View job details
🇦🇺 Australia
Full-time
A$80,000 - A$100,000 per year
Mid Level
Senior
👮‍♂️ Security Engineer
Cyber Security
Lincoln Financial logo
1d

Social Security Claims Specialist

Lincoln Financial

Social Security Specialist at Lincoln Financial handling Social Security Disability Insurance claims. Acts as liaison between internal teams, claimants, and legal representation.

View job details
🇺🇸 United States
Full-time
$23 - $32 per hour
Mid Level
Senior
👮‍♂️ Security Engineer
PwC logo
1d

Senior Manager, Cloud Security Consultant

PwC

Senior Manager in cloud security at PwC focusing on cybersecurity threats. Leading development and implementation of cloud security strategies with advanced technologies.

View job details
🇺🇸 United States
Full-time
$124,000 - $280,000 per year
Senior
👮‍♂️ Security Engineer
AWSAzureCloudCyber SecurityGoogle Cloud PlatformKubernetes
UMGC Ventures logo
2d

Adjunct Faculty, Fundamentals of Networking – Cybersecurity

UMGC Ventures

Adjunct Faculty teaching online course Fundamentals of Networking at UMGC. Engaging adult learners and fostering collaboration in a remote setting.

View job details
🇺🇸 United States
Part-time
$806 - $1,645 per hour
Mid Level
Senior
👮‍♂️ Security Engineer
pco GmbH & Co. KG logo
2d

IT Sales Manager – Modern Infrastructure, Cyber Security, Managed Services

pco GmbH & Co. KG

IT Sales Manager responsible for driving B2B sales in Modern Infrastructure, Cyber Security, and Managed Services. Collaborating with consulting teams and establishing new markets in Germany.

View job details
🇩🇪 Germany
Full-time
Mid Level
Senior
👮‍♂️ Security Engineer
CloudCyber Security
Bask Health logo
2d

Head of Compliance – HIPAA and Security

Bask Health

Head of Compliance (HIPAA) leading strategic legal support and data governance for Bask Health. Overseeing compliance frameworks, training, and regulatory adherence in a remote setup.

View job details
🇺🇸 United States
Full-time
Lead
👮‍♂️ Security Engineer
CloudCyber Security
Serve Robotics logo
2d

Security Engineer

Serve Robotics

Security Engineer protecting Serve’s delivery platform and infrastructure while collaborating with IT and engineering teams. Ensuring security best practices across cloud infrastructure and applications.

View job details
🇺🇸 United States
Full-time
$122,769 - $162,700 per year
Mid Level
Senior
👮‍♂️ Security Engineer
AWSCloudDNSDockerFirewallsGoogle Cloud PlatformJavaScriptKubernetesLinuxPythonTCP/IPTerraform
Prime Intellect logo
2d

Member of Technical Staff – Security

Prime Intellect

First dedicated security hire responsible for building security practices at AI infrastructure company. Defining company-wide security strategy and collaborating with engineering and research teams.

View job details
🇺🇸 United States
Full-time
$180,000 - $350,000 per year
Lead
👮‍♂️ Security Engineer
CloudDistributed SystemsGoogle Cloud PlatformKubernetesPythonRust
Teal logo
2d

Cybersecurity Engineer

Teal

Cybersecurity Engineer responsible for maintaining security in compliance-driven environments for Teal. Protecting clients through security monitoring, vulnerability management, and incident response.

View job details
🇺🇸 United States
Full-time
$100,000 - $120,000 per year
Mid Level
Senior
👮‍♂️ Security Engineer
CloudCyber SecurityFirewalls
Intersect Power logo
3d

Cybersecurity Lead

Intersect Power

Lead Cybersecurity Strategy at Intersect, safeguarding critical systems in a cloud-first environment. Collaborate cross-functionally to integrate security practices for innovative energy solutions.

View job details
🇺🇸 United States
Full-time
$185,000 - $195,000 per year
Senior
👮‍♂️ Security Engineer
CloudCyber SecurityGoogle Cloud Platform
Metsi Technologies logo
3d

Principal, Multicloud Data Center Solutions – AI, Data Security & Resilience

Metsi Technologies

Lead development of solutions for enterprise Multicloud/Data Center, AI & Data and Security & Resilience at Dell Technologies. Engage with customers and drive transformative technology solutions.

View job details
🇺🇸 United States
Full-time
$204,850 - $265,100 per year
Lead
👮‍♂️ Security Engineer
NMS logo
3d

Lead Security Officer – Rotational

NMS

Lead Security Officer ensuring health, safety and security for clients in remote settings. Providing oversight, training, and recommendations based on security operations.

View job details
🇺🇸 United States
Full-time
Senior
👮‍♂️ Security Engineer
NMS logo
3d

Security Officer, Seasonal

NMS

Remote Security Officer monitoring and patrolling assigned areas for safety and security. Working in remote settings where health, safety, and security is a priority.

View job details
🇺🇸 United States
Full-time
Mid Level
Senior
👮‍♂️ Security Engineer
Cosuno logo
4d

Platform Engineer, Security

Cosuno

Platform & Security Engineer responsible for IT infrastructure and security at Cosuno. Leading compliance and operational excellence in a remote role.

View job details
🇩🇪 Germany
Full-time
€80,000 - €100,000 per year
Junior
👮‍♂️ Security Engineer
AWSCloudGoogle Cloud PlatformKubernetesTerraform
ONE logo
4d

Security and Threat Operations Engineer

ONE

Security and Threat Operations Engineer protecting the fintech environment at OnePay. Collaborating with teams to proactively identify and respond to security threats.

View job details
🇺🇸 United States
Full-time
$140,000 - $190,000 per year
Mid Level
Senior
👮‍♂️ Security Engineer
AWSCloudPython
Logically logo
4d

Security Implementation Engineer

Logically

Security Implementation Engineer responsible for deploying, configuring, and implementing cybersecurity solutions. Focused on security infrastructure projects across customer environments in Logically's client base.

View job details
🇺🇸 United States
Full-time
Mid Level
Senior
👮‍♂️ Security Engineer
CloudLinuxSwitching
Mashreq logo
5d

Senior Manager – Data Protection, Information Security Program

Mashreq

Senior Manager in Data Protection implementing controls and driving initiatives at leading MENA financial institution. Ensuring compliance and enhancing data protection controls across the organization.

View job details
🇮🇳 India
Full-time
Senior
👮‍♂️ Security Engineer