Regional Cybersecurity Advisor

With 75 years of experience, our focus is on helping the most vulnerable children overcome poverty and experience fullness of life. We help children of all backgrounds, even in the most dangerous places, inspired by our Christian faith.

Come join our 31,000+ staff working in nearly 100 countries and share the joy of transforming vulnerable children’s life stories!

Key Responsibilities:

Homeworking position. Open to applicants in Latin American and Caribbean countries where World Vision International (WVI) is registered to operate.

JOB PURPOSE

We are seeking a Regional Advisor – Cybersecurity to support the design, implementation, and oversight of cybersecurity strategies across the organization. This role plays a critical part in protecting our data, systems, and digital infrastructure while ensuring compliance with internal policies and industry standards.

This role will act as a strategic liaison, serving as a cyber business partner between designated business units across North and Latin America and the Cybersecurity Team. This position involves working collaboratively and in close partnership with the RITD, embedding security into business processes and fostering a strong security culture.

MAJOR RESPONSIBILITIES

The primary responsibility of this role is to serve as a trusted advisor, ensuring that the activities and objectives of the business unit are both supported and secured in alignment with the organization's overarching cybersecurity strategy.

Other responsibilities include, but are not limited to:

• Convert the enterprise-wide security strategy and policies into a practical roadmap for the business unit that aligns with its specific needs and objectives.
• Work with business leaders to help them understand cybersecurity risks within their context and advise them on how to manage risks without disrupting business operations.
• Integrate security requirements into new projects, products, and processes from the design phase, also known as "shift-left" security or “secure by design”.
• Serve as a subject matter expert between cybersecurity and assigned business units in the adoption or development of appropriate policies, standards, and frameworks.
• Coordinate cybersecurity resources and initiatives to achieve outcomes.
• Partner and collaborate with technical teams on cybersecurity related matters.
• Follow all risk remediation protocols to ensure issues are mitigated, risks are accounted for and exceptions are tracked in accordance with frameworks, policies and standards set by the organization.
• Work with GTD and business units to align funding requirements with strategic initiatives.
• Participate in cybersecurity and business-related councils or working groups as necessary.
• Educate stakeholders on cybersecurity-related matters to increase awareness and improve culture.
• Constructively engage business leaders regarding cybersecurity issues.
• Establish risk ownership and accountability within the business unit.
• Inform business leaders of the risk implications of critical decisions by combining empirical analysis with expert judgment to assess business decisions.
• Act as the primary point of contact for cybersecurity incidents, coordinating communication and response efforts between the business unit and the Cyber Incident Response Team.
• Develop and deliver targeted security training and communications for the business unit's employees and leadership, addressing specific risks and promoting a strong security culture.
• Translate complex, technical security concepts into business-friendly language for non-technical audiences, and conversely, represent the business's needs related to cybersecurity to GTD and the Cybersecurity Team.
• Manage and monitor the implementation of security projects and programs within the business unit, ensuring timely execution and delivery.
• Monitor emerging cyber threats and trends relevant to the business unit and report findings to leadership.
• Identify functional challenges and drive continuous improvement initiatives to enhance the efficiency of security controls within the business unit.
• Build strong networks with industry peers, regulators, and cybersecurity communities to share intelligence, collaborate on threats, and align with best practices.

REQUIRED KNOWLEDGE/QUALIFICATIONS FOR THE ROLE

• Bachelor’s Degree in Computer Science, Information Systems or other related field, or equivalent work experience.
• Requires in-depth knowledge of PCI-DSS, privacy laws, security standards, security best practices, and security regulations.
• A high proficiency level in threat management, risk management, vulnerability management, and compliance management are required.
• Requires Security Certification (i.e., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Global Information Assurance Certification (GIAC).
• Typically requires 10 - 15 years of combined IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration.
• At least 5 years of experience managing cyber security incident response teams.
• Experience designing and implementing security solutions.

PREFERRED KNOWLEDGE/QUALIFICATIONS FOR THE ROLE

• At least 10 years of experience as a senior manager or information security officer is preferred.

Language Requirements:

• Fluency/high level of professional and technical spoken and written Spanish and English. Other language(s) is an added advantage.

Travel and/or Work Environment Requirement:

• This position is homeworking/remote.
• The position requires the ability and willingness to travel nationally and/or internationally up to 10% as necessary.

Applicant Types Accepted:

Local Applicants Only

World Vision is a Christian humanitarian organisation with a mission centred on following Jesus Christ in service to the world´s most vulnerable children. Therefore, in all locations to the fullest extent legally permissible, the successful applicant will affirm our core documents, observe conduct compatible with Christian principles, serve at a high level of professional ethics and strive to act in accordance with cultural sensitivities. Furthermore, regular attendance with team and office devotions, chapel and prayer gatherings are expected in line with policies in the World Vision host location and its departments.