Koin

Senior Information Security Analyst – GRC

Koin

full-time

Posted on:

Location Type: Remote

Location: Brazil

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWS

About the role

  • Implement and maintain policies, standards and controls to meet PCI-DSS, SOX, LGPD, ISO 27001 and SOC 2 requirements;
  • Support personal data protection initiatives (data flow mapping, Records of Processing Activities - ROPA, Data Protection Impact Assessments - DPIAs) in accordance with the LGPD and Latin American data protection laws;
  • Manage Security Risk Assessment, Business Continuity, Security Incident Management, Data Classification and Third-Party/Vendor Risk processes;
  • Conduct internal and external audits, ensuring execution and follow-up of controls;
  • Lead Identity and Access Governance (IAM) projects, including Segregation of Duties (SoD) matrices and Role-Based Access Control (RBAC);
  • Define data protection policies based on Data Discovery findings and update DLP policies;
  • Plan and execute information security awareness campaigns;
  • Perform maturity assessments based on NIST and CIS Controls;
  • Participate in defining OKRs and manage GRC timelines and resources;
  • Advise technology and business teams on compliance best practices and risk management for new projects;
  • Participate in security incident response and reporting.

Requirements

  • Minimum of 3 years' experience with PCI-DSS, ISO 27001, SOX and LGPD;
  • Experience with internal and external audits;
  • Ability to identify, assess and mitigate security risks;
  • Experience in incident management and running awareness campaigns;
  • Intermediate proficiency in GRC frameworks (COBIT, ISO/IEC 31000, COSO);
  • Preferred: Knowledge of information security architectures;
  • Familiarity with technologies: AWS, DLP, CASB, WAF, SIEM, Firewalls, IDS/IPS, Anti-malware, EDR;
  • Knowledge of cybersecurity frameworks (CIS Controls, NIST, MITRE ATT&CK, OWASP);
  • Spanish and/or English language skills.
Benefits
  • Life insurance
  • Health and dental insurance
  • Transportation allowance
  • Meal and food allowances (VR + VA)
  • Childcare assistance
  • Extended parental leave
  • TotalPass or Wellhub
  • WFA (Work From Anywhere)
  • Discounts on Decolar.com
  • Golden Farma discounts
  • Home office allowance
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
PCI-DSSISO 27001SOXLGPDSecurity Risk AssessmentData ClassificationIdentity and Access Management (IAM)Data Loss Prevention (DLP)Incident ManagementGRC frameworks
Soft Skills
risk managementcommunicationleadershiporganizational skillsproblem-solvingcollaborationanalytical skillsproject managementawareness campaign executionaudit execution