IT Audit and Security Specialist

Responsibilities

• Support the planning and execution of internal IT and Information Security audits.
• Review general IT controls, including access management, user modifications, and segregation of duties.
• Audit change management processes for systems, applications, and infrastructure, verifying change requests and production approvals.
• Participate in operational continuity reviews, including disaster recovery and backup plans.
• Assist in information security reviews covering data protection, information classification, and incident management.
• Identify audit findings, root causes, risks, and provide recommendations for improvement.
• Follow up on action plans related to IT, security, and technology provider findings.

Requirements

• Bachelor's degree in Informatics, Systems, IT, or a related field.
• 1 to 2 years of experience in IT, internal control, technology risk, or information security.
• Knowledge of ISO/IEC 27001 and ISO/IEC 27002 standards.
• Familiarity with COBIT and ITIL frameworks.
• Proficiency in English.

About the Company

Grupo Peña Verde is a group of companies focused on insurance and reinsurance risk management. With over 65 years of experience, the group includes General de Seguros, General de Salud, Reaseguradora Patria, and more, maintaining a presence in Mexico, Chile, and London. We are proud to be recognized as a Great Place to Work.