IBLISS Digital Security

Cybersecurity Governance Consultant

IBLISS Digital Security

full-time

Posted on:

Location Type: Hybrid

Location: São Paulo • 🇧🇷 Brazil

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

About the role

  • Support and execute governance, compliance and business continuity projects.
  • Develop, implement and review policies, standards, processes and technical documentation.
  • Conduct internal and external audits.
  • Perform vendor assessments (cyber risk, contractual and technical requirements).
  • Monitor adherence to laws and frameworks such as ISO 27001/27701, ISO 27005, ISO 22301, LGPD, NIST CSF, NIST SP 800-53, BACEN regulations, and others.
  • Support analysis, response and remediation of incidents when required.
  • Work in an integrated manner with privacy topics, ensuring that policies, processes and controls follow best practices.
  • Act as a technical reference, guiding internal teams and clients on security and governance best practices.
  • Participate in meetings, committees, strategic projects and presentations to executive-level stakeholders.
  • Plan and run internal and external educational campaigns.
  • Produce content such as trainings, presentations, scripts, activities, workshops and videos.
  • Deliver lectures, trainings and workshops on security and digital ethics.
  • Support engagement actions and initiatives that strengthen the security culture.

Requirements

  • Proven experience in Governance, Risk, Compliance and Awareness.
  • Degree in IT, Information Security or related fields (undergraduate or postgraduate).
  • ISO 27001 Lead Auditor certification or equivalent.
  • Experience with internal/external audits and interactions with regulators.
  • Solid knowledge of standards, laws and frameworks (LGPD, ISO 27000 family, NIST, CIS, PCI, COBIT, ITIL, etc.).
  • Experience with vendor assessments and business continuity.
  • Excellent communication skills and ability to translate technical topics into educational content.
  • Desirable experience as a speaker, instructor or facilitator (events, meetups, webinars, workshops).
  • Desirable experience producing technical and educational content (articles, videos, trainings).
  • Preferable active presence in the security community, participating in events and initiatives.
  • Creativity, consultative attitude and strong organizational skills.
Benefits
  • Referral bonus
  • Annual profit-sharing (PLR) prorated and tied to revenue targets
  • Knowledge-sharing meetups
  • Discounts at educational institutions
  • Day off on your birthday
  • Wellhub
  • Work-life balance with flexible hours and remote work
  • IDP – Individual Development Plan (PDI)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
GovernanceRisk ManagementComplianceBusiness ContinuityInternal AuditsExternal AuditsVendor AssessmentsIncident ResponseTechnical DocumentationEducational Content Production
Soft skills
Excellent CommunicationCreativityConsultative AttitudeOrganizational SkillsPublic SpeakingFacilitationTraining DeliveryStakeholder EngagementContent TranslationSecurity Culture Promotion
Certifications
ISO 27001 Lead Auditor