IT Analyst – Governance

Hesselbach Company

IT Analyst focusing on governance, risk, and compliance at Hesselbach Company. Involves risk assessments, policy maintenance, and support for audits.

Posted 5/5/2026full-timeSão Paulo • 🇧🇷 BrazilMid-LevelSeniorWebsite

Tech Stack

Tools & technologies

Cloud

About the role

Key responsibilities & impact

Conduct IT risk assessments and develop risk treatment plans
Maintain and enhance information security policies, standards, and procedures
Support internal and external audits by providing evidence and artifacts
Monitor compliance controls against ISO 27001, LGPD, SOX and other frameworks
Prepare risk reports for leadership
Conduct third-party/vendor risk management processes
Support information security awareness campaigns
Participate in compliance and certification projects

Requirements

What you’ll need

Degree in IT, Computer Science, Information Security or a related field
Experience in GRC, IT audit, or information security
Strong knowledge of ISO 27001/27002, NIST CSF, and CIS Controls
Experience with LGPD (Brazilian Data Protection Law)
Skilled in conducting risk and maturity assessments
Analytical mindset, clear communication, and a business-oriented perspective
Certifications such as CISA, CRISC, ISO 27001 Lead Auditor/Implementer or equivalents
Experience with GRC tools
Experience developing business continuity plans
Experience with cloud environments from a compliance perspective

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account Hesselbach Company Website LinkedIn All Job Openings 201 - 500 employees Founded 1995 🤝 B2B 💸 Finance B2B
Finance Hesselbach Company is a Brazil-based business services firm that provides BPO, tax and financial consulting, outsourcing, and on-site workforce solutions (CMO) to corporate clients. The company also delivers process-technology solutions (Inflow / Inflowcare) for real-time monitoring and operational automation, and emphasizes efficiency, ISO 9001-certified quality, and sustainable growth through process mapping and people-focused service. Hesselbach serves other businesses with finance, accounting, payroll and fiscal expertise to reduce costs and improve operational performance. IT Analyst – Governance 🔥 30 minutes ago 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required Apply Now Find Hiring Managers Customize resume for this job Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Conduct IT risk assessments and develop risk treatment plans
Maintain and enhance information security policies, standards, and procedures
Support internal and external audits by providing evidence and artifacts
Monitor compliance controls against ISO 27001, LGPD, SOX and other frameworks
Prepare risk reports for leadership
Conduct third-party/vendor risk management processes
Support information security awareness campaigns
Participate in compliance and certification projects 🎯 Requirements
Degree in IT, Computer Science, Information Security or a related field
Experience in GRC, IT audit, or information security
Strong knowledge of ISO 27001/27002, NIST CSF, and CIS Controls
Experience with LGPD (Brazilian Data Protection Law)
Skilled in conducting risk and maturity assessments
Analytical mindset, clear communication, and a business-oriented perspective
Certifications such as CISA, CRISC, ISO 27001 Lead Auditor/Implementer or equivalents
Experience with GRC tools
Experience developing business continuity plans
Experience with cloud environments from a compliance perspective Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score Similar Jobs Risk Analyst – IAM, SailPoint IIQ 🔥 57 minutes ago EY 10,000+ employees 💸 Finance Website LinkedIn All Job Openings Risk Analyst managing IAM projects for large financial clients with growth opportunities. Ensure compliance and enhance access controls in financial technology services. 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required Lead – Cyber Risk Specialist 🕒 4 days ago Laqus 51 - 200 💳 Fintech 💸 Finance ☁️ SaaS Website LinkedIn All Job Openings Líder em Segurança da Informação estruturando governança e controles em ambiente regulado. Atuando como parceiro das áreas de negócio e tecnologia para crescimento sustentável. 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required Systems Quality Analyst (Mid-Level) – Governance 🕒 5 days ago GrupoSC Distribuidora de Medicamentos 10,000+ employees 💊 Pharmaceuticals 🤝 B2B Website LinkedIn All Job Openings Role in IT governance focusing on continuous improvement and quality assurance within GrupoSC. Engage in incident management, risk mitigation, and quality service evaluation. 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required Information Security Analyst – Exposure Management, Vulnerability & Risk 🕒 5 days ago e-Safer Consultoria 51 - 200 🔒 Cybersecurity ☁️ SaaS Website LinkedIn All Job Openings Information Security Analyst focusing on Exposure Management (Vulnerability & Risk) within a consulting firm. Leading risk analysis and enhancing security posture through strategic decision-making. 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required Freight Management and Governance, Data, Mid-level 🕒 6 days ago IPIRANGA 51 - 200 Website LinkedIn All Job Openings Responsible for managing and issuing commercial contracts for Ipiranga. Collaborate with internal teams to ensure compliance and efficiency in contract processes. 🏢🏡 São Paulo – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 🎲 Risk 🗣️🇧🇷🇵🇹 Portuguese Required View More Risk Manager Jobs 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

IT risk assessmentsrisk treatment plansinformation security policiescompliance controlsrisk reportsthird-party/vendor risk managementrisk and maturity assessmentsbusiness continuity planscloud compliance

Soft Skills

analytical mindsetclear communicationbusiness-oriented perspective

Certifications

CISACRISCISO 27001 Lead AuditorISO 27001 Implementer