*This vacancy is from the Talenteca.com job board* ### **Vacancy at IT People Talent in Ecatepec de Morelos, State of Mexico** **About Us** * We are a 100% Mexican company specializing in mission-critical support (applications, servers, IT services), serving clients in the financial, banking, and retail sectors. We distinguish ourselves through strict adherence to processes and a people-centric approach. Currently, we are seeking a Bilingual Information Security Process Analyst for our team in CDMX, working under a hybrid arrangement. **Our Work Proposal** We offer financial stability, professional growth, and continuous training. We aim to build a multicultural, collaborative, and innovative team. Our offering also includes: * **Monthly salary** of MXN 38,000–40,000 (direct employment), food vouchers, training, insurance, and work-life balance. * **Working hours**: Monday to Friday, 9:00 AM–6:00 PM. * **Work location**: CDMX and remote (2–3 days per week in the office). **What We Are Looking For** * Minimum 3 years of experience as: ISO Consultant, Vulnerability Analyst, Security Engineer, Information Security Analyst, ISO Security Support, ITIL, Process Analyst for Information Security, SOC Engineer, ISO 27000 SOC Consultant, ISO Process Analyst, ITIL, COBIT, PCI DSS, or NIST. * Advanced conversational English for handling client tickets. * 3 years of experience implementing Information Security Governance and Information Security Management Systems (ISMS) compliant with ISO 27001, NIST, ITIL, and COBIT. * **2–3 years** identifying, evaluating, designing, mapping, and documenting policies, processes, procedures, risk detection, and vulnerability analysis. * Knowledge of identifying and assessing information security risks—including internal and external threats, vulnerabilities, and potential impacts—as well as developing and implementing information security policies, procedures, and regulatory compliance measures. * Managing and maintaining an incident response plan, and participating in coordinating responses to security threats. * Adherence to reporting requirements and service-level agreements (SLAs); preparing root cause analysis (RCA) reports; handling and managing audits, findings, action plans, awareness campaigns, threat identification, risk assessment, etc. * Desired familiarity with technology platforms and vendors for improvement proposals, such as Fortinet, Palo Alto, SonicWall, Cisco, etc. * Highly desirable: Certifications or courses such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC). **Desired Education Level:** Bachelor’s degree (in progress or incomplete) **Desired Experience Level:** Entry Level **Departmental Function:** Technology / Internet **Industry:** Information and Network Security **Skills:** * ISO ITIL COBIT ISMS PCI * Processes and procedures * Risks and vulnerabilities * SLA, policies, and governance * Audits and awareness campaigns *This vacancy is from the Talenteca.com job board:* *https://www.talenteca.com/anuncio?j_id=6940ae1c2f00002f0084f2b0&source=indeed*