Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Thomson Reuters

Governance and Compliance Analyst

Thomson Reuters

Governance and Compliance Analyst supporting control testing and audit programs at Thomson Reuters. Collaborating with control owners and automation teams to enhance compliance efforts.

Posted 6/13/2026full-timeMexico City • 🇲🇽 MexicoJuniorWebsite

Tech Stack

Tools & technologies
CloudServiceNow

About the role

Key responsibilities & impact
  • Support the assessment, challenge, and testing of the design and operational effectiveness of controls using TR’s control framework.
  • Assist in executing testing plans by communicating requirements to control owners, reviewing evidence submitted, documenting deficiencies found.
  • Assist in liaising for both external and internal audits; identify procedures and practices that are not compliant with industry frameworks.
  • Support stakeholders making changes to address non-compliance issues, and help compile reports on audit results.
  • Build awareness about security risks, best practices and policy/standard requirements that are essential to ensure compliance.
  • Contribute to the implementation of automated compliance controls by working with the Automation & AI team.
  • Help maintain documentation of automation workflows, logic, and validation processes to ensure transparency and auditability.

Requirements

What you’ll need
  • Bachelor’s degree in IT, Accounting, Finance, Computer Science, or equivalent education and experience.
  • 1–3 years of relevant experience in SoX (ITGC), SOC 2, PCI DSS, or ISO frameworks.
  • Foundational understanding of control frameworks such as NIST CSF, ISO Frameworks, SOC 2 TSC, and PCI DSS.
  • Exposure to working with or alongside internal audit, risk, or compliance teams.
  • Awareness of common security vulnerabilities in web and cloud environments.
  • Strong ethical principles and understanding of business and information security ethics.
  • Good oral and written communication skills in English; additional fluency in French, Spanish, or another language is an asset.
  • Familiarity with GRC platforms such as ServiceNow, ProcessUnity, RSA Archer, MetricStream, or Protecht is an asset.

Benefits

Comp & perks
  • Hybrid Work Model: We’ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role).
  • Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities.
  • Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrow’s challenges.
  • Industry Competitive Benefits: We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing.
  • Social Impact: We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SoXITGCSOC 2PCI DSSISO frameworksNIST CSFcontrol frameworkssecurity vulnerabilitiesautomation workflowsvalidation processes
Soft Skills
communication skillsethical principlesbusiness ethicsinformation security ethics