Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
About the role
- Head of Cyber Security leading security strategies at OLX, Brazil's top digital marketplace. Overseeing cybersecurity initiatives across products, cloud, and compliance for a modern security culture.
Responsibilities
- Define and evolve the corporate Information Security strategy, aligned with OLX Group's business objectives.
- Lead and develop AppSec, Cloud Security, SecOps, GRC and IAM teams, fostering a modern and pragmatic security culture.
- Serve as the primary executive point of contact for security matters across leadership, product, engineering, data, legal and compliance.
- Establish and track KPIs and maturity metrics (e.g., risks, incidents, SLAs, automation, control coverage).
- Conduct risk management, threat modeling and impact assessments for new products, features and partnerships.
- Ensure compliance with Brazil's LGPD, ISO 27001, SOC 2, PCI-DSS and other relevant frameworks and regulations.
- Lead prevention, detection and incident response strategy, including crisis plans and simulations/exercises.
- Define and prioritize investments in security tools, automation and architecture (DevSecOps, Zero Trust, cloud-native security).
- Influence and accelerate the adoption of security-by-design practices within product and engineering teams.
- Partner with FinOps, Data and Engineering to balance security, efficiency and speed.
Requirements
- Proven experience leading Information Security teams in technology companies, marketplaces or other complex digital environments.
- Strong knowledge of AWS cloud security, modern architectures and distributed environments.
- Hands-on experience securing digital products, APIs, microservices and CI/CD pipelines.
- Practical experience with risk management, compliance and audits.
- Demonstrated executive communication skills with the ability to influence both technical and non-technical stakeholders.
- Strategic, data-driven mindset focused on risk and business impact.
- Experience working in agile, high-scale, fast-growth environments.
Benefits
- Market-competitive compensation
- Health insurance
- Dental insurance
- Private pension plan
- Flexible benefits that adapt to your needs
- Meal allowance
- Financial counseling
- Employee perks program
- Home office allowance
- Mobility/commuting allowance
- Childcare assistance
- Life insurance
- Extended leave
- Support for sports, wellbeing and quality of life
- Payroll-deductible loans at reduced rates
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
Senior Specialist in Information Security Governance, Risk & Compliance at Cellulant, driving information security, privacy, and compliance standards within BFSI context.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Senior Health and Safety Advisor overseeing health and safety on construction projects for Aecon. Ensuring compliance with SST legislation and promoting zero accident culture.
Senior Information Security Specialist executing Daikin Europe’s Information Security strategy. Collaborating with leadership to ensure our systems and services remain secure and compliant with regulations.
Experienced Information Security Officer at Daikin responsible for defining Information Security strategy and ensuring compliance with regulatory frameworks. Collaborating with external specialists and mentoring junior team members in EMEA.
Security Specialist ensuring the protection of company and government assets. Conducting daily security functions and providing technical support while maintaining compliance with regulations.