*This job posting originates from the Talenteca.com job board.* ### **Job opening at People Hackers in Álvaro Obregón, Mexico City** **About Us** * We are a 100% Mexican company specializing in mission-critical support (applications, servers, IT services), serving clients in the financial, banking, and retail sectors. We distinguish ourselves through strict adherence to processes and a people-centric approach. Currently, we are seeking a Bilingual Information Security Process Analyst/Consultant for our Mexico City team, working under a hybrid model. **Our Work Proposal** We offer financial stability, professional growth, and continuous training. We aim to build a multicultural, collaborative, and innovative team. Our benefits package includes: * **Monthly salary** of MXN 38,000–40,000 (direct employment), food vouchers, training, insurance, and work-life balance. * **Working hours:** Monday to Friday, 9:00 AM to 6:00 PM. * **Work location:** Mexico City and remote work (2–3 days per week in the office). **What We’re Looking For** * Minimum 3 years of experience as: ISO Consultant, Vulnerability Analyst, Security Engineer, Information Security Analyst, ISO/ITIL Security Support Specialist, Information Security Process Analyst, SOC Engineer, ISO 27000 SOC Consultant, ISO/ITIL/COBIT/PCI DSS/NIST Process Analyst. * Advanced conversational English for handling client tickets. * 3 years of experience implementing Information Security Governance and Information Security Management Systems (ISMS) compliant with ISO 27001, NIST, ITIL, and COBIT. * **2–3 years** of experience in identifying, evaluating, designing, mapping, and documenting policies, processes, procedures, risk detection, and vulnerability analysis. * Knowledge of information security risk identification and assessment—including internal and external threats, vulnerabilities, and potential impacts—as well as developing and implementing information security policies, procedures, and regulatory compliance measures. * Managing and maintaining an incident response plan, and participating in coordinating responses to security threats. * Adherence to reporting requirements and SLA performance levels; preparing root cause analysis (RCA) reports; handling and managing audits, findings, action plans, awareness campaigns, threat identification, risk assessments, etc. * Desired familiarity with technology platforms and vendors for improvement proposals, e.g., Fortinet, Palo Alto, SonicWall, Cisco, etc. * Highly desirable: Certifications or courses such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC). **Desired Education Level:** Bachelor’s degree (incomplete or completed) **Desired Experience Level:** Entry-level **Departmental Function:** Technology / Internet **Industry:** Cybersecurity and Network Security **Skills:** * ISO, ITIL, COBIT, ISMS, PCI * Processes and procedures * Risks and vulnerabilities * SLA, policies, and governance * Audits and awareness campaigns *This job posting originates from the Talenteca.com job board:* *https://www.talenteca.com/anuncio?j_id=6940ae1652000026006941ea&source=indeed*