Job Description:
Security Assurance Analyst:
At dentsu, we are committed to protecting our clients’ brands and data, therefore information security is at the forefront of our business.
If you're a proactive, detail-oriented professional with a passion for cybersecurity and a desire to make a meaningful impact, we encourage you to apply and be part of our mission to protect what matters most.
If you're a proactive, detail-oriented professional with a passion for cybersecurity and a desire to make a meaningful impact, we encourage you to apply and be part of our mission to protect what matters most.
The purpose of this role is to work as part of a team providing a security third party assurance for vendors across the regional and global business and/or to assess and monitor control effectiveness across our in-scope brands, markets and functions.
As a Regional Security Assurance Analyst on the Americas Security team, you'll take a pivotal role in safeguarding our digital ecosystem by assessing third-party risks, monitoring control effectiveness, and promoting a culture of proactive information security. In this dynamic position, you'll collaborate with international and local stakeholders, contribute to incident response and root cause analysis, and help shape security awareness initiatives across our region. You'll also support ongoing audit and assurance cycles, influence continuous improvement, and grow your expertise in security governance, risk analysis, and compliance.
Job Description
- Build positive stakeholder relationships in the region and globally
- Participate in incident management, following appropriate policies and procedures. Perform "root cause” analysis for incidents to identify and remediate information security issues
- Report on the design and operation effectiveness of security controls
- Actively contribute to security training initiatives to increase employee awareness
- Evangelize a culture of Information Security awareness across the region
- Tracks in-flight assessments to ensure third parties respond within the agreed timeframes
- Supporting third party relationship leads in the completion of internal third-party security assurance activities
- Maintains audit and assessment schedules as part of the business’ third-party security continual assessment cycle
- Maintains assurance log to effectively monitor, measure and report control effectiveness and business performance for managing third party risk
- Develops relationships with key business understanding processes with cross-dependencies (BIA’s, DPIA’s).
- Pro-actively engages with the security education and awareness function to ensure third party security assurance is promoted through future education and awareness initiatives
- Ensures processes and procedures are documented and reviewed on a continual basis
- Influences continuous improvement across third party security assurance and the wider security function
Candidate Profile
- Working knowledge of security practices, technologies, architectures, and philosophies in the Cyber/Information Security portfolio
- Ability to multi-task, prioritize, manage workload and adapt to changing business conditions
- Proactive, upbeat and collaborative communication style, with the ability to be direct, tactful, and transparent
- Ability to work effectively as part of a team
- Solid problem-solving skills. Ability to analyze problems and risk from multiple perspectives
- Comfortable with managing uncertainty, ambiguity, and change to make decisions and prioritize tasks
- Understanding of security risk analysis techniques
- Ability to explain technical complex concepts to non-technical audiences combined with excellent communication and organizational skills
- Is demonstrably self-motivated, pro-active, action orientated to achieve deadlines
- Proactive development of trending knowledge and skills within information security community
- Interest in their own personal development within security governance
- Experienced with IT assurance functions and auditing techniques (desirable)
- Understanding of network architecture, protocols and principles (desirable)
- Achieved or working towards an information security qualification (CISSP, CISM, CISA, CRISC – desirable)
- Fluency in Spanish and English is required. Portuguese proficiency is highly desirable.
#LI-RR1
Location:
Buenos Aires
Brand:
Dentsu
Time Type:
Full time
Contract Type:
Permanent
Reportar empleo
