Companies you'll love to work for

ONEVC
ONEVC
32
companies
189
Jobs

Security Compliance Analyst

Yuno

Yuno

IT, Legal
Bogotá, Bogota, Colombia
Posted on Wednesday, February 7, 2024
COME JOIN US AT YUNO! 💜
We are seeking an experienced Security Compliance Analyst to join our dynamic team.
As a Security Compliance Analyst at Yuno, your role includes enhancing the risk and compliance program, automating processes, and helping us maintain our cloud secure and aligned with the main security frameworks.
At Yuno we are looking to solve the complexity of the online payment’s ecosystem. Allowing merchants and commerce to accept payments in an easy way, accessing a variety of payment services with just one integration and enabling end users to pay in an easy and secure way.
🟣 What would be my challenge at Yuno?
- Responsible for running and improving Yuno risk and compliance program. Maintain continuous compliance tooling, integrate it with Yuno’s systems, and manage the compliance programs such as SOC 2, ISO 27001, ISO 27701 and PCI DSS.
- Automating processes seeking task simplification and management optimization.
- Implementing tools in the cloud and using IaC for deploying solutions.
- Identify, research, and assess compliance requirements for ISO 27001, PCI DSS and other certifications.Partner with internal teams to ensure alignment with compliance requirements.
- Support sales with security requests.
🟣 What skills do I need?
- At least 4 years of experience in information security with exposure to implementing or assessing security controls across all security domains, such as access management, encryption methods, vulnerability management, network security, etc
- Knowledge of cloud platforms such as AWS is a must
- Systems engineering or related
- Knowledge of implementing, managing, and auditing security & compliance regulations, standards, and frameworks (SOC, PCI DSS, ISO 27001 or GDPR).
- Having knowledge in programming languages such as Python or/and Golang
Desirable:
Industry-related compliance, risk, or security management certification is preferred (CISA, CRISC, CISM, CISSP, ISO27000 Lead Auditor).Skills in NetworkingProficiency in Infrastructure as Code (IaC) technologies such as Terraform