Coordinador de prevención y vulnerabilidades

At Spin, a leading Mexican FinTech, we're committed to developing secure, efficient, and scalable digital financial solutions. The Security Risk & Vulnerability Coordinator plays a critical role in ensuring our infrastructure, databases, and applications remain secure and compliant by proactively identifying, evaluating, and managing security risks. 

This position is responsible for validating the effectiveness of security controls, tracking the remediation of vulnerabilities, and supporting strategic business decisions through security insights. Working closely with information security, IT, and business teams, this role ensures our ecosystem is protected against threats and aligned with regulatory standards. 

Key Responsibilities 

• Periodically evaluate the performance of the broader security ecosystem and support strategic planning through insights and deviation analysis. 

• Ensure compliance with cybersecurity standards across infrastructure, databases, and applications. 

• Identify and classify high and critical vulnerabilities and recommend mitigation actions. 

• Follow up on remediation efforts and support business teams in implementing security best practices. 

• Provide clear, actionable reports on the security status of critical systems and applications. 

• Propose future-facing solutions and ensure alignment with SPIN’s broader ecosystem and strategic priorities. 

• Offer advisory support in solving complex issues and challenge conventional perspectives with informed, strategic insights. 

Required Knowledge and Experience 

• Bachelor’s degree in Systems Engineering, Computer Science, Information Security, or related field. 

• Prior experience in security controls implementation and vulnerability management. 

• Familiarity with FinTech regulations in Mexico (Fintech Law, CNBV), and international standards such as ISO 27001, NIST, GDPR, PCI-DSS. 

• Knowledge of vulnerability management methodologies and security audit processes. 

• Hands-on experience with tools like SIEM, DLP, WAF, firewalls, AWS security, etc. 

Core Competencies 

• Cybersecurity & Risk Management: Skilled in identifying threats and implementing controls using frameworks like ISO 27005, NIST CSF, COBIT. 

• Regulatory Compliance: Strong understanding of legal and regulatory requirements; ability to translate them into actionable processes. 

• Security Audits: Experience conducting internal and external audits to validate security posture. 

• Leadership: Ability to guide cross-functional teams across IT, Legal, Compliance, and Ops. 

• Effective Communication: Capable of translating technical risk into business terms for leadership and regulators. 

• Analytical Thinking: Strong skills in evaluating complex risks and proposing practical solutions. 

• Project Management & Adaptability: Experienced in planning and executing security initiatives in dynamic environments. 

This role is remote. The ideal candidate will be based in Mexico. 

Spin está comprometida con un lugar de trabajo diverso e inclusivo. 
Somos un empleador que ofrece igualdad de oportunidades y no discrimina por motivos de raza, origen nacional, género, identidad de género, orientación sexual, discapacidad, edad u otra condición legalmente protegida. 
Si desea solicitar una adaptación, notifique a su Reclutador.