Zup Innovation

GRC Security Analyst — Governance, Risk & Compliance (Mid-level)

Zup Innovation

full-time

Posted on:

Location Type: Remote

Location: Brazil

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSAzureServiceNowSQL

About the role

  • Manage information security risks by identifying and assessing threats in processes and projects;
  • Implement and monitor security controls following compliance frameworks (CIS, ISO 27001, SOC, PCI, NIST);
  • Support the creation, review, and dissemination of information security governance policies and processes;
  • Conduct third‑party risk assessments (TPRM) and recommend remediation plans;
  • Monitor cyber risk indicators relevant to the business and produce managerial and technical reports;
  • Assist in business continuity management (BCM) in the context of information security;
  • Collaborate with internal teams on projects to ensure security requirements are addressed from the start of development;
  • Use tools and repositories to document activities, maintain up‑to‑date records, and prioritize actions.

Requirements

  • Advanced Excel for data analysis and tracking indicators;
  • Hands‑on experience with ServiceNow and OneTrust for risk, compliance, and incident management;
  • Basic SQL skills for querying and analyzing security‑relevant data sources;
  • Experience with Power BI;
  • Experience using GitHub Projects as a tool for recording and tracking technical requests;
  • Fundamental knowledge of AWS and Azure cloud environments, especially in a compliance context;
  • Familiarity with CIS, ISO 27001, and NIST frameworks applied to information security;
  • Ability to create or interpret basic scripts for automation or analysis in security projects;
  • Quick learner with the ability to absorb new knowledge rapidly;
  • Responsible and sustainable use of AI agents;
Benefits
  • Freedom to work from anywhere
  • Flexible working hours
  • Education allowance
  • In‑house career development platform
  • Internal guilds and study/interest groups
  • Health insurance
  • Dental plan
  • Pharmacy purchase partnerships/discounts
  • 24/7 telemedicine
  • Free online therapy
  • Wellhub
  • Extended maternity leave
  • Extended paternity leave
  • CAZ – Employee Support Center
  • Meal and grocery vouchers
  • Life insurance
  • Transportation allowance
  • Home office allowance
  • Daycare subsidy
  • Phone plan allowance
  • Profit sharing (PLR)
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
advanced ExcelSQLPower BIAWSAzureinformation security governancethird-party risk assessmentscyber risk monitoringautomation scriptingdata analysis
Soft Skills
quick learnerresponsibilitysustainabilitycollaborationcommunication