Senior Information Security Analyst
Brazil
Full Time
4 hours ago
No Sponsorship
Key skills
AIMachine LearningAnalyticsRisk Management
About this role
Role Overview
- Support the development, implementation and maintenance of policies, procedures and controls for data protection, privacy and information security, aligned with national and international legislation and industry best practices.
- Serve as a technical reference on privacy and data protection topics for internal areas such as IT, Legal, Compliance, Security and Business teams.
- Conduct Data Protection Impact Assessments (DPIA/PIA) and privacy risk analyses for initiatives involving the processing of personal data, including projects using AI, machine learning or automation.
- Apply Privacy by Design and Privacy by Default principles in support of projects and products.
- Contribute to the implementation and monitoring of technical and organizational controls, such as information classification, anonymization/pseudonymization and practices related to DLP.
- Assess risks related to the use of personal data in technological solutions, proposing practical mitigation recommendations.
- Support internal and external audits related to information security and privacy, including organizing evidence and documentation.
- Support the registration, analysis and follow-up of privacy and security incidents, collaborating on corrective action plans.
- Participate in the technical review of contractual clauses, terms and documents related to data protection and privacy.
- Monitor regulatory updates and trends in privacy, data protection and AI governance.
- Support internal training and awareness initiatives on privacy, data protection, responsible use of information and information security.
- Assist with improvements/automation of internal processes within the data protection team.
Requirements
- Education: Bachelor's degree in Law, Computer Science, Engineering, Information Security or related fields.
- Postgraduate degree, specialization or certification in Data Protection, Information Security or related areas is desirable.
- 3 to 5 years of experience in activities related to data protection, privacy or information security, with experience at a senior level.
- Experience in LGPD compliance projects and support for regulatory compliance.
- Prior experience working with large-scale data, digital platforms, automation or analytics.
- Applied knowledge of frameworks and standards such as ISO 27001, ISO 27701, NIST or similar.
- Experience with or exposure to data mapping, data discovery, consent management or DLP (Data Loss Prevention) tools is desirable.
- Strong knowledge of LGPD and GDPR and other international data protection regulations.
- Experience with DPIA/PIA, privacy risk management and Privacy by Design principles.
- Understanding of information security concepts applied to data and AI projects (e.g., data governance, bias risks, responsible use).
- Advanced English, especially for reading standards, technical materials, documentation and interacting with international stakeholders.
Benefits
- Anjo Azul
- Our program that supports Crew Members, providing psychosocial, legal and financial assistance.
- Cegonha Azul
- Program supporting pregnant employees and new mothers up to the baby's first year of life. Available to Crew Members and dependents.
- Wellhub and TotalPass
- Smoking Cessation Program
- NutriAzul
- Nutritional follow-up/support
- Zenklub – Online therapy for mental health support
- SEST SENAT
- Free courses, community centers, dental care, physiotherapy, nutritionists and psychologists
- Concierge
- All our wellness benefits at your fingertips
- Pharmacy discounts