**About Chiper** Chiper is a technology startup present in Colombia and Mexico and Brazil. The platform offers mass consumption products at direct prices from manufacturers to independent businesses such as neighborhood stores, liquor stores, mini markets, etc. Our purpose is to create bridges between middle and low income people who are looking for better alternatives to buy their essential goods, their needs and opportunities of traditional and obsolete models with technology, always thinking about that end user and their alternatives. Our inspiration is the final buyer that is supplied in these independent businesses. Chiper was born as a project in 2018 and in 2019 was launched as a company. We have had an accelerated growth and we seek to add to our team entrepreneurs who dream of eating the world, who enjoy an environment of uncertainty and co-creation. We want people who first and foremost want to be the best at what they do and also help their peers to be the best. Chiper is looking for world-class engineers to work in our company. Are you passionate, proactive, analytic and hands-on? Do you want to evolve in one of the fastest growing startups of Colombia and Latin-America, building a product that will change people's day-to-day lives and disrupt the on-demand market? **Be part of a team where you will be**: **Your principal responsibilities will be**: - Support the development of policies, manuals, good practices related to information security and protection of personal data within the organization. - Establish and manage the security risks of the information and the processing of personal data. - Guarantee national and international regulatory compliance on information security and data protection standards. - Coordinate with the other areas the implementation and guarantee of compliance with information security and data protection policies and standards. - Manage, inventory and handle inventories of information assets including the personal databases of the organization, as well as make the corresponding reports of the databases before the competent authority. - Support the promotion of education and training programs on information security and personal data protection. - Define and execute information security and personal data protection audit plans, aimed at guaranteeing compliance with regulatory requirements and best practices. - Support in the design and evaluation of Information Security, Cybersecurity, and Personal Data Protection controls. **We are looking the next skills**: With knowledge and experience of at least 3 years in: - Courses, certifications and/or diplomas in ISO27001 standards, NIST, Law on the protection of personal data or habeas data. - Implementation of security controls in the cloud database - Implementation of SIEM, firewalls - Knowledge in vulnerability analysis and management - **We are look**ing these t**echnical skills**: Implementation, audit or maintenance of Information Security Management Systems, Personal Data Protection Programs and habeas data, - Information security risk management analysis and methodologies, information asset classification methodologies, design and implementation of information security and cybersecurity controls, generation or review of documents, policies, manuals and/or procedures defined by regulatory frameworks. - Management of security concepts: networks, encryption, security in cloud environments, security in the software development cycle, computer vulnerability management, access control models. **What you’ll find when working at Chiper**: An environment rewarding on the we work hard with energy and passion for what we do. We try always seeing the positive side in every situation, we try to be stay humble and get work done no matter our position and level in the company. If you believe you match these values ¡we look forward to meeting you! **For additional information on Chiper please visit**: - PERSONAL DATA PROTECTION POLICY. THE APPLICANT expressly declares to know and agree with the Data Handling Authorization Policy, which was duly shown and informed, and which is in force in the Company and applicable to any person who voluntarily delivers their personal data and / or sensitive to CHIPER SAS In addition, THE APPLICANT expressly declares to know the web location of the CHIPER SAS Data Management Authorization Policy referred to here, and which in any case can be consulted for the _Personal Data Protection Policy for Colombia_ and for the _Personal Data Protection Policy for Mexico_