IT Security Analyst II - Mexico
Job Type: Full time
Job Number: JR-019407
Location: Guadalajara, MXIf you're passionate about building a better future for individuals, communities, and our country-and you're committed to working hard to play your part in building that future-consider WGU as the next step in your career.
Driven by a mission to expand access to higher education through online, competency-based degree programs, WGU is also committed to being a great place to work for a diverse workforce of student-focused professionals. The university has pioneered a new way to learn in the 21st century, one that has received praise from academic, industry, government, and media leaders. Whatever your role, working for WGU gives you a part to play in helping students graduate, creating a better tomorrow for themselves and their families.
Essential Functions and Responsibilities:
Conduct IT Audits: Plan, execute, and report on IT internal security audits, ensuring the effectiveness and efficiency of IT systems and processes.
Technical Assessment: Evaluate information systems security, reliability, and integrity through detailed technical assessments.
Risk Identification: Identify and assess potential risks in IT systems and recommend mitigation strategies to enhance security and compliance.
Compliance Verification: Conduct thorough audits to ensure compliance with relevant industry standards, regulations, and internal policies.
Control Testing: Test IT controls' design and operational effectiveness to ensure they meet organizational objectives.
Technical Expertise: Leverage technical knowledge in areas such as network security, database management, and application security during audits.
Report Creation: Prepare clear, concise audit reports highlighting findings, risks, and recommendations for improvement.
Collaboration with IT Teams: Work closely with IT to understand system architectures, processes, and controls.
Continuous Improvement: Recommend improvements to enhance the efficiency and effectiveness of the internal security audit processes.
Security Best Practices: Stay updated on the latest security threats and best practices to provide informed guidance during audits.
Project Management: Manage multiple audit projects simultaneously, ensuring timely completion and high-quality deliverables.
Business Alignment: Verify compliance with relevant industry standards and internal governance requirements.
Stakeholder Communication: Communicate audit results effectively to senior management and other stakeholders, providing actionable insights.
Follow-Up Audits: Conduct follow-up audits to ensure that previously identified issues have been adequately addressed.
Documentation Review: Review and assess IT documentation, including policies, procedures, and standards, for adequacy and compliance.
Competencies:
Organizational or Student Impact:
Works on assignments of medium to complex level.
Structure project plans and manages cost-effective execution of tasks.
Limit errors to prevent impact to client operations, costs, or schedules.
This individual will follow established processes and protocols.
Problem Solving & Decision Making:
Individual meets department and personal goals with some direction/ supervision.
An important player on large technical projects and programs.
Uses discretion to help design and implement solutions to somewhat complex problems.
Communication & Influence:
Communicates with contacts both within and outside of function on matters that require explanation, interpretation, and advising; typically has responsibility communicating to parties outside of the organization.
Works to influence parties within the function at an operational level regarding policies, practices, and procedures.
Leadership & Talent Management:
May be responsible for providing guidance, coaching, and training to other employees within the technical area.
May manage technical projects at this level, requiring responsibility for the delegation of work and reviewing others' work products.
Job Qualifications:
Minimum Qualifications:
Bachelor's Degree: A degree in Cyber Security, Information Security, Computer Science, or a related field.
Professional Experience: 3-4 years of experience in security awareness, risk management, or compliance roles.
IT Audit Practices: Demonstrated experience with IT audit practices.
Technical Proficiency: Competency with frameworks and standards such as NIST, COBIT, GLBA, FERPA, PCI, HIPAA, SOX, GDPR, SOC 2, or ISO 27001.
Preferred Qualifications:
Security Certifications: Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC).
Analytical Skills: Strong analytical skills to assess IT systems and identify potential risks and vulnerabilities.
Problem-Solving Abilities: Excellent problem-solving skills to develop effective remediation strategies.
Communication Skills: Ability to clearly communicate complex technical issues to technical and non-technical stakeholders.
Regulatory Knowledge: In-depth understanding of industry-specific regulations and compliance requirements.
Location: Guadalajara, Mexico
Physical Requirements:
Prolonged periods sitting at a desk and working on a computer.
Must be able to lift up to 15 pounds at times.
Learn more about our WGU Mexico Team by clicking here.