Information Security Analyst III – Focus on Privacy, LGPD
Cooperativa Central Ailos
full-time
Posted on:
Location Type: Remote
Location: Brazil
Visit company websiteExplore more
About the role
- Support the DPO in building and maintaining privacy governance, including policies, standards, procedures and metrics.
- Develop, update and manage the Data Inventory (RoPA), data classifications and data flow mappings.
- Implement and maintain frameworks and references such as LGPD, ISO 27701, NIST Privacy Framework, ANPD guidelines, Privacy by Design and Privacy by Default.
- Embed privacy requirements from the early stages of products, systems and processes (privacy by design).
- Validate and support risk assessments for new projects, integrations and systems.
- Conduct Data Protection Impact Assessments (DPIA/PIA) and privacy risk analyses.
- Prepare Data Protection Impact Reports in accordance with the LGPD.
- Identify gaps, propose action plans and monitor their implementation.
- Perform internal audits related to LGPD and privacy practices.
- Monitor controls, internal practices and applicable legal requirements.
- Support the management and response to incidents involving personal data, including communication to the ANPD and to data subjects when necessary.
- Manage and guide the process of responding to data subject rights requests (access, erasure, portability, review of automated decisions, among others).
- Support internal teams in meeting deadlines and legal requirements.
- Assess privacy risks in vendors, contracts, integrations and data sharing.
- Support contract reviews, ensuring the inclusion and adherence of data protection clauses.
- Develop and deliver training on privacy, data protection and security best practices.
- Support ongoing awareness campaigns and initiatives.
- Advise technical teams on: data minimization, secure retention and disposal, anonymization and pseudonymization, security controls related to privacy (DLP, encryption, access management, etc.).
- Track emerging technologies with privacy impact (AI, big data, analytics).
Requirements
- Bachelor's degree in IT, Law, Computer Science, Information Systems or related fields.
- Solid experience in: LGPD and privacy best practices; Information Security in corporate environments;
- Risk management and audits; Incident handling and breach response; Data mapping and information lifecycle management.
- Knowledge of Privacy by Design, Privacy by Default, DPIA/PIA.
- Experience with security products: SIEM, DLP, IAM, encryption, etc. – a plus.
- Certifications such as CDPSE, CIPM, ISO 27001 Lead Auditor, ISO 27701, or similar – a plus.
- Experience with contract review and interaction with Legal/Compliance – a plus.
- Knowledge of cloud security and vendor governance – a plus.
Benefits
- Health Insurance – because having coverage is important
- Dental Insurance – we love smiles here
- Renascer Program – one life renews another
- Meaningful Dates – we value occasions that matter
- Education Investment – we support you on your learning journey
- Profit Sharing – we build together and celebrate together on Perten-ser Day!
- Individual Development Plan – we value your career ownership
- Private Pension Plan – we like to plan for future possibilities
- Life Insurance – important protection
- Time Together – we recognize those who enjoy being with us
- Meal and/or Food Allowance – delicious!
- Transportation Allowance – no deductions
- Childcare/Babysitting Assistance – because your child deserves a safe, welcoming place.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
LGPDPrivacy by DesignPrivacy by DefaultData Protection Impact AssessmentsRisk managementData mappingInformation lifecycle managementIncident handlingBreach responseData classifications
Soft Skills
communicationorganizationalleadershipproblem-solvinganalytical thinkingcollaborationtraining deliveryawareness campaign managementadvisory skillsmonitoring
Certifications
CDPSECIPMISO 27001 Lead AuditorISO 27701