Cybersecurity Governance Analyst

TL;DR

Cybersecurity Governance Analyst (GRC): Enable and build cybersecurity governance documentation, policies, standards, and procedures with an accent on alignment with laws, regulations, industry frameworks, and best practices. Focus on assessing policy effectiveness, facilitating GRC deliverables, supporting audit readiness, and collaborating with Cybersecurity, IT, and Engineering teams.

Location: This position is based in Mexico. Remote. No regular travel expected.

Company

Leader in AI-driven identity security providing an autonomous governance platform for modern enterprises.

What you will do

• Document policies, standards, and procedures; assess policy effectiveness and compliance.
• Build cybersecurity documentation aligned with laws, regulations, frameworks, and best practices.
• Collaborate with Cybersecurity, IT, and Engineering teams to manage security documentation.
• Facilitate execution of GRC deliverables and utilize GRC tools for policy management.
• Support internal and external audit readiness and compliance with emerging regulations.

Requirements

• 2-3+ years in cybersecurity, compliance, or related field with focus on technical writing and documentation
• Excellent written and oral communication skills in English
• Willingness to learn and adapt in a dynamic, technical environment
• Strong analytical, problem-solving, and organizational skills
• Strong communicator capable of influencing without authority
• Methodical, detail-oriented approach to analytical problem-solving

Nice to have

• Experience with ISO 27001, SOC2, FedRAMP
• Familiarity with NIST, ISO, CIS frameworks
• Certifications: CISSP, CISA, CISM, CRISC

Culture & Benefits

• Collaborative team culture embodying values of Individual, Impact, Innovation, and Integrity
• Fast-paced environment encouraging quick learning and new skill development
• "Best Place to Work" for 15 consecutive years