Business Development Manager facilitating market success and customer engagement within Defence & Security at Dräger. Contributing to strategy development and maintaining client relationships.
About the role
- Senior DPO & CISO managing information security and data privacy at Rox Partner consultancy. Leading cybersecurity strategy and compliance with ISO 27001 and LGPD.
Responsibilities
- Lead the company's Information Security and Cybersecurity strategy.
- Maintain and evolve the ISMS in accordance with ISO/IEC 27001.
- Act as the Data Protection Officer (DPO) before the ANPD, ensuring compliance with the LGPD.
- Define, review and ensure adherence to security and privacy policies.
- Plan and conduct internal audits and support external audits.
- Design, operate and evolve the SOC (internal or outsourced).
- Define and execute monitoring, vulnerability management and incident response processes.
- Act directly on critical incidents (log analysis, containment, eradication and recovery).
- Manage security tools such as SIEM, EDR/XDR, Firewall, WAF, IAM, DLP and CASB.
- Conduct DPIA/RIPD and manage privacy incidents.
- Serve as the technical and executive interface with clients, partners, auditors and regulatory bodies.
Requirements
- Degree in IT, Information Security, Engineering or related fields
- Solid experience in Information Security and Cybersecurity
- Mandatory knowledge of ISO/IEC 27001 and LGPD
- Experience with SOC, SIEM, EDR/XDR and incident response
- Knowledge of cloud security (AWS, Azure or GCP)
- Experience with NIST, CIS and MITRE ATT&CK frameworks
- Certifications such as ISO 27001 Lead, CISSP, CISM, CDPO, CEH, GCIH
- Experience with audits and regulated environments
- Hands-on profile with strategic and executive vision
Benefits
- Hybrid work – Monday to Friday (9:00 AM to 6:00 PM)
- Home-office allowance – R$300.00 per month credit on an iFood card for meals/food
- Birthday – Rox rewards you with a gift card and a day off to celebrate your special day
- Blog – We encourage knowledge sharing; for every 2 approved articles on the Rox blog you publish, you earn a day off
- Courses – Full access to RoxSchool, Alura, Pluralsight and O'Reilly for books and talks
- Certifications – Certification reimbursement up to R$300.00 (TECHNOLOGY) plus a R$300.00 bonus per certification achieved from these providers
- Psychologist support – Two psychotherapy sessions monthly covered by ROX with partner psychologists
- Feedz partnership – Gamified platform to improve communication and track sentiment, engagement, feedback, IDP and performance
- WellHub (Gympass) – Partnership with gyms and health & wellness apps
- We provide work equipment.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Engineer in Enterprise Identity team at Xero, operating and improving workforce identity platform. Develop, automate, and manage secure access infrastructure.
Senior Security Analytics Data Engineer at Fiserv interfacing with security Big Data environments. Leading data architecture optimization and implementation for cross - functional teams.
Expert in cybersecurity software development focusing on medical devices at EDAP TMS. Leading software development teams to enhance the security aspect of health technology.
Senior Cyber Security Engineer operating and improving security posture at ControlExpert. Collaborating with infrastructure, cloud, product, and DevOps teams in a dynamic environment.
Senior IAM Engineer leading enterprise - scale identity and access management programs at Ameriprise India. Collaborating on architecture, migration strategies, and stakeholder integration.
IT Security Officer coordinating with stakeholders to implement IT security standards at a dynamic company with a focus on innovation and teamwork.
IT Security Officer in Bremerhaven developing IT security standards and managing incident response with external SOC provider. Collaborating with stakeholders and ensuring security architecture meets high standards.
Analista de Segurança da Informação SR na Evertec, maior empresa de software para o mercado financeiro do Brasil. Responsável por soluções de segurança, análise de vulnerabilidades e resposta a incidentes.
Alternant Ingénieur Cybersécurité & Système at Mairie de Vincennes. Participating in digital transformation and cybersecurity projects for a dynamic local government.