About this role

Lead the development, review and maintenance of Information Security policies, standards, procedures and guidelines, ensuring adherence to industry best practices and regulatory requirements.
Participate in the evaluation of third-party vendors from an Information Security perspective, including risk assessments, security questionnaires, evidence collection and remediation/action plans.
Lead and support the Information Security awareness program, including campaigns, internal communications, training and educational activities.
Support and monitor internal and external audits related to Information Security, assisting with evidence collection, remediation of non-conformities and action plans.
Support monitoring of cybersecurity risks, working together with the corporate risk team to keep inventories, metrics and records up to date.
Contribute to the continuous improvement of governance processes, controls and Information Security metrics.
Support regulatory and compliance-related requirements and requests related to Information Security.

Bachelor's degree.
Experience drafting formal documents such as policies, standards and procedures.
Knowledge of risk management, internal controls and compliance.
Desirable: solid understanding of fundamental Information Security and Cybersecurity concepts.

Information Security Analyst I

Key skills