Information Security Risk Specialist

hace 4 días

Monterrey, México Nemak A tiempo completo

**Objective**

Ensure the security and compliance of SAP and IT critical systems within the organization by safeguarding sensitive information, managing access controls, and implementing measures to adhere to regulatory requirements. This role involves collaborating with various stakeholders, conducting audits, and implementing security best practices, define access control and roles models to maintain the integrity of SAP and IT Critical systems.

**Main Responsibilities**
- Design and implement security access management architecture models for SAP and other IT critical platforms, according to industry best practices.
- Utilize SAP GRC tools for efficient management of risk, compliance, and access controls.
- Support the creation and maintenance of SAP roles in alignment with organizational security policies.
- Conduct comprehensive risk assessments to identify vulnerabilities and threats across SAP.
- Develop and execute action plans for risk mitigation and SAP segregation of duties.
- Provide internal consulting on SAP projects, advising on security role models and best practice implementations.
- Manage user and role certification processes and schedules to ensure audit compliance.
- Leverage technology to digitalize and improve service delivery and compliance processes.
- Foster relationships with suppliers to enhance operational leverage and project delivery capabilities.
- Define and monitor KPIs, driving continuous improvement in service delivery and operational efficiency.
- Ensure compliance with internal governance models, maintaining accurate documentation of configurations and policies.

**Position Requirements**
- In-depth knowledge of SAP security concepts, roles, authorization, SAP PI, S4Hana Security Models, and SAP Solution Manager.
- Proficiency in SAP GRC Access and Process Control, with a strong understanding of the SAP Security Model (Transactions, Objects).
- Certifications in SAP Security and GRC are highly desirable.
- Solid experience in Governance, Risk, and Compliance within SAP environments.
- Extensive background in SAP security administration, GRC, and compliance management.
- Proven project management capabilities.
- At Nemak, Diversity, Equity and Inclusion (D&I) play a fundamental role in everything we do and are the underlying platform on which our culture is built. We foster a culture that is safe, respectful, fair and inclusive for all of our employees and job applicants. Our value proposition relies on innovation and cross-cultural teamwork, which is only possible when we strive for belonging and commitment to Diversity, Equity and Inclusion. We understand the impact equality and of varied perspectives that welcome better ideas to solve complex problems for improvement and transformation._
- We are proud to have bias-free conditions of employment, including recruiting, hiring, placement, and promotions, and we welcome all our employees and job applicants. We strongly prohibit any form of workplace harassment or discrimination based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status._

  • Information Security Risk Assessor

    hace 2 semanas

    Monterrey, México Nearshore Cyber A tiempo completo

    **Location: Monterrey or Matamoros, Mexico**:**Applications from persons not living in Mexico will NOT be accepted.**Information Security Risk Assessors report continuously on the state of risk, providing visibility and helping business leaders and risk managers understand where risk resides and where improvements must be made to protect the business. Such...

  • Global Information Security Risk and Compliance

    hace 4 días

    Monterrey, México Nemak A tiempo completo

    Objective As part of the Information Security organization, develop a strategic program to ensure compliance of regulatory requirements to support the organization's resilience. Through a process of Risk Management and the systematic evaluation of potential threats, the organization will be able to meet the law, regulations and contractual requirements and...

  • Security Risk Management Specialist

    hace 1 semana

    Monterrey, México Canonical A tiempo completo

    In security risk management we aim to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this we use...

  • Security Risk Management Specialist

    hace 2 semanas

    Monterrey, México Canonical A tiempo completo

    In security risk management we aim to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this we use...

  • Information Security Engineer

    hace 2 semanas

    Monterrey, México Nearshore Cyber A tiempo completo

    **Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.**The role also requires an understanding of business goals/strategy and operational requirements in a fast-paced environment.Throughout the roles key responsibilities, the Information Security Engineer must always consider opportunities to...

  • Information Security Consultant

    hace 1 semana

    Monterrey, México Endava A tiempo completo

    **Company Description**Technology is our how. And people are our why. For over two decades, we have been harnessing technology to drive meaningful change.By combining world-class engineering, industry expertise and a people-centric mindset, we consult and partner with leading brands from various industries to create dynamic platforms and intelligent digital...

  • Information Security Analyst

    hace 2 semanas

    Monterrey, México Nearshore Cyber A tiempo completo

    **Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.**The Information Security Analyst is responsible for activities relating to monitoring and responding to security events. The analyst receives, researches, triages, and documents all security events and alerts as they are received, supporting...

  • IT Security Specialist

    hace 3 semanas

    Monterrey, México Axented A tiempo completo

    A Security Specialist focused on app development and IT infrastructure plays a crucial role in ensuring the security and integrity of digital assets. They are responsible for identifying vulnerabilities, implementing security measures, and responding to security breaches. Below are the tools commonly used by Security Specialists to perform their duties...

  • Ot Risk

    hace 2 semanas

    Monterrey, México Axen A tiempo completo

    DescriptionAt AXEN IT Consulting we are growing exponentially with clients with great growth projections, We have more than 25 years of experience in the information technology services market, Focused on our growth and at the same time offering improvement plans to our talent, We are currently looking for " OT Risk & Compliance " with the profile:...

  • Third Party Risk Advisor

    hace 2 semanas

    Monterrey, México Nearshore Cyber A tiempo completo

    **Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.**The Third Party Risk Advisor is responsible for third-party information risk management related to suppliers and other third parties. The individual creates and leads an effective program to improve suppliers' information security maturity to...