**Publication Date:** Jan 9, 2026 **Location:** Medellin, Antioquia, CO **Company:** SURA **LEVEL** Analyst**AREA** TECHNOLOGY **PEOPLE REPORTING** NO**KEY RESPONSIBILITIES** * Define and strengthen the cybersecurity strategy to protect our platforms, APIs, and cloud systems. * Manage vulnerability assessments and penetration testing (Pentesting) for web applications and critical services. * Monitor threats and manage security incidents, ensuring efficient response times. * Track security incidents of critical severity that may affect one or more organizational subsidiaries. Tracking shall begin from the incident’s origin, guaranteeing communication to stakeholders and validating its closure, while ensuring root cause analysis, lessons learned, and their implementation across the organization. * Collaborate with technology and compliance teams to ensure alignment with financial and insurance regulations. * Research, evaluate, and define selection criteria for new information security and cybersecurity solutions aligned with the security architecture. **KNOWLEDGE: EDUCATION LEVEL** University degree**KNOWLEDGE: SPECIFY FIELD OF STUDY** Systems Engineering and/or related fields.**KNOWLEDGE: SPECIFY OTHER KNOWLEDGE** * Knowledge of security tools: SIEM, IDS/IPS, WAF, SAST, DAST, and log management. * Solid knowledge of OWASP, API security, Zero Trust Architecture, and threat monitoring. * Skills in forensic analysis and security incident response. * Standards such as ISO 27001, NIST, or CIS. **LANGUAGES** INTERMEDIATE in ENGLISH**YEARS OF EXPERIENCE** 4**AREA OF EXPERIENCE** 4 years or more in cybersecurity, with focus on web applications, cloud, and DevSecOps.