Key skills
Risk Management
About this role
Role Overview
- Solid knowledge of Information Security and data protection standards and frameworks (LGPD, ISO 27001, NIST CSF, COBIT, ITIL, etc.).
- Ability to develop and maintain organizational security controls.
- Understanding of corporate risk management as applied to IT and cybersecurity.
- Experience in incident management, especially cyber incidents, from a process and regulatory perspective.
Requirements
- Academic background: Bachelor’s degree in related fields such as Computer Science, Information Systems, Computer Engineering, Computer Networks, Information Security, or similar areas.
- Postgraduate degree or specialization in Information Security, LGPD, or Risk Management is desirable.
- Certifications (Desirable): ISO/IEC 27001 Lead Implementer or Auditor, ITIL Foundation or higher, CISM (Certified Information Security Manager) or CRISC (Certified in Risk and Information Systems Control).
- Experience in Information Security with a focus on defining and drafting policies, standards, processes, and audits.
- Creation and maintenance of corporate information security policies.
- Conducting information security risk assessments in computing environments.
Benefits
- Health insurance
- Dental insurance
- Meal or food allowance
- CLT employment | Remote (Home Office)
- Home-office allowance
- Childcare assistance (as per collective bargaining agreement)
- Wellhub