Key skills
CloudIAMSaaSRisk Management
About this role
Role Overview
- Serve as the reference and coordinator for GRC applied to Technology and Cybersecurity, ensuring the advancement of maturity in Information Security, Risk, and Compliance.
- Lead the implementation and evolution of frameworks and standards (ISO 27001/27002, SOC 2, NIST, CIS Controls, and LGPD), ensuring regulatory compliance and alignment with the risk strategy.
- Coordinate IT and cybersecurity risk management, including identification, assessment, treatment, monitoring, and executive reporting, integrated with the Corporate Risk Program.
- Conduct maturity assessments and gap analyses, supporting structured improvement plans.
- Develop and maintain Information Security and Technology policies, standards, and controls, ensuring regulatory adherence and practical applicability.
- Oversee security controls (IAM, SoD, logging, hardening, and access management).
- Coordinate Third-Party Risk Management (TPRM), including assessment and monitoring of risks from vendors, cloud, and SaaS.
- Support data protection and LGPD compliance, including information classification and DLP initiatives.
- Coordinate operational continuity and resilience (BIA, Business Continuity Plan
- BCP, and Disaster Recovery Plan
- DRP).
- Prepare executive reports, KPIs and KRIs, acting as the interface with Committees, the Executive Board, auditors, and regulators.
- Promote a culture of security and governance, serving as the focal point for the GRC team.
Requirements
- Proven experience in GRC applied to Technology and Cybersecurity.
- Hands-on knowledge of frameworks and standards such as ISO 27001/27002, NIST CSF, CIS Controls, SOC 2, and LGPD.
- Experience in IT, cybersecurity, and third-party risk management (TPRM).
- Experience leading teams and strategic/transformational projects.
Tech Stack
- Cloud
Benefits
- Meal allowance and/or meal voucher.
- Health and dental insurance.
- Life insurance.
- Partnerships with TotalPass and ZenKlub.
- Extended maternity and paternity leave.
- Childcare assistance.
- Up to 50% discounts on postgraduate and MBA programs from top institutions such as FIA, FAAP, and PUCRS.
- No strict dress code: wear what makes you comfortable.
- #HappyBirthday: Day off on your birthday.
- Baby gift: present for newborns.