Information Security Analyst at Hitss conducting penetration tests and security assessments across IT infrastructures. Collaborating with teams to report and mitigate vulnerabilities.
About the role
- Information Security Analyst at Grupo Abril preventing fraud and ensuring compliance with LGPD regulations. Responsibilities include monitoring threats and managing security incidents.
Responsibilities
- Monitor, investigate and respond to alerts of digital fraud, unauthorized access, phishing, social engineering and other risk vectors;
- Implement and review information security controls aimed at protecting personal and corporate data, in compliance with the LGPD;
- Support business areas in risk assessments and mitigation plans, with a focus on compliance and integrity;
- Manage and coordinate security incidents with vendors and external partners (SOC, security teams, legal, etc.);
- Conduct exposure and vulnerability analyses of corporate profiles and pages on social media, proposing preventive and corrective actions;
- Develop and maintain security and privacy policies, standards and procedures, ensuring regulatory compliance;
- Lead internal awareness campaigns on information security and the LGPD, promoting a data protection culture;
- Support internal and external audits, fulfilling compliance, privacy and digital security requirements.
Requirements
- Bachelor's degree in Information Technology, Information Security, Law, Business Administration or related fields;
- Certification or specialization in LGPD, ISO 27001, Cybersecurity or Compliance is desirable;
- Minimum of 3 to 5 years of prior experience in information security, fraud or digital compliance;
- Experience in handling and investigating digital fraud;
- Practical knowledge of the LGPD and data privacy best practices;
- Familiarity with corporate compliance and internal controls;
- Proficiency in incident management and threat response;
- Experience with SIEM tools, enterprise antivirus and DLP solutions;
- Knowledge of digital security and corporate social media security;
- Basic understanding of networking, VPNs, identity and authentication (MFA, SSO);
- Ability to document and present executive reports and action plans.
Benefits
- Health insurance
- Dental insurance
- Home-office allowance
- Employee discount club
- Transportation allowance
- Birthday day off
- Partnership with SESC
- Meal allowance
- GoRead
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Cyber Risk Analyst assessing third - party vendor cybersecurity risks for S&P Global. Collaborating with teams to evaluate vendors' security postures and enhance risk management processes.
Cybersecurity Analyst safeguarding digital environment for Vibrant Ingredients. Monitoring security threats while supporting enterprise security program.
Information Security Analyst managing risk and compliance controls at USAA. Collaborating with key stakeholders to enhance information security and regulatory compliance processes.
Security Analyst managing security and compliance programs for fintech startup. Ensuring policies and evidence stay organized and collaborate with Head of Security for execution.
IT Security Analyst overseeing internal audits, security assessments, and compliance for CMC’s IT operations. Engaging in risk management and policy development while collaborating with cross - functional teams.
Specialist in PingFederate, PingDirectory and PingID for IAM infrastructure management. Collaborating with teams for stable operation and development in Cotia.
Cyber Security Analyst in the Core IP/DDoS Security team at Vodafone. Ensuring real - time threat mitigation and incident response for DDoS attacks.
Senior Security Analyst developing and implementing security strategies for logistics operations. Focus on risk assessment, staff training, and policy compliance.
Security Analyst managing vulnerability management for PostFinance. Overseeing patching and security issues to ensure system stability.