Cybersecurity Specialist at Caixa Vida e Previdência ensuring safety in various technology solutions. Collaborating with teams to implement security measures and respond to incidents.
About the role
- GRC Analyst enhancing governance, risk, and compliance practices within Sword, focusing on cybersecurity standards and configuration management.
Responsibilities
- Develop and document a Configuration Management Plan aligned to recognised standards such as NIST.
- Define and document roles and responsibilities across the 2nd Line of Defence, ensuring clarity and accountability.
- Support the rollout of configuration management processes, including communication, stakeholder engagement, and adoption.
- Document secure configuration policy principles, translating technical requirements into clear, accessible guidance.
- Review, refine, and communicate security policies to ensure alignment with organisational and regulatory expectations.
- Gather and interpret configuration compliance reports from monitoring tools to support governance activities.
- Enhance change management processes, including contributing to Change Advisory Board (CAB) inputs.
- Work closely with business change and communications teams to embed new processes effectively.
- Simplify complex security concepts into practical guidance for non-technical stakeholders.
- Maintain clear, structured documentation that supports ongoing governance and audit requirements.
Requirements
- Experience working with cyber security standards such as ISO 27001 or NIST frameworks (e.g. NIST 800-53).
- Understanding of secure configuration principles and cyber security policy development.
- Experience writing policies, procedures, or governance documentation within a security context.
- Strong documentation skills, with the ability to produce clear, structured, and usable outputs.
- Ability to understand and map process flows, including defining roles and responsibilities (e.g. RACI models).
- Strong communication skills, with the ability to translate technical concepts into business-friendly language.
- Experience collaborating with cross-functional teams, including security, change, and communications.
- Experience developing or implementing a Configuration Management Plan.
- Exposure to governance within large-scale transformation or regulated environments.
- Familiarity with compliance reporting and monitoring tools.
- Experience supporting change management processes or governance forums such as CAB.
Benefits
- Personalised Career Development: We create a development plan customised to your goals and aspirations, with a range of learning and development opportunities within a culture that encourages growth.
- Flexible working: Flexible work arrangements to support your work-life balance. We can’t promise to always be able to meet every request, however, are keen to discuss your individual preferences to make it work where we can.
- A Fantastic Benefits Package: This includes generous annual leave allowance, enhanced family friendly benefits, pension scheme, access to private health, well-being, and insurance schemes.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Técnico de Segurança do Trabalho at Cia do Treinamento responsible for training clients on safety regulations and conducting safety assessments. Seeking professionals passionate about safety and compliance across Brazil.
Ingénieur en sécurité physique participant à des projets d’envergure au sein de Stantec. Analysant besoins, concevant systèmes de sécurité et préparant documentation technique.
System Security Engineer strengthening cybersecurity posture across on - premise and hybrid environments. Focused on Windows infrastructure security, identity management, and compliance.
Security Testing Lead overseeing application security testing activities at Computer World Services. Ensuring continuous identification and remediation of application security risks through dynamic testing methods.
IS Security Administrator managing all aspects of cyber security and data protection at Avita Health System. Responsible for risk assessments and IT security strategies across various platforms.
Senior Security Engineer strengthening security at fintech startup Flanks, focusing on security initiatives and practices across applications and infrastructure.
Director of Control Assurance leading IT risk management and controls testing at RBC. Propelling technology, risk, and security advancements across the organization.
Physical Security Technology Manager overseeing design and implementation of security technologies across global offices. Collaborates with teams to ensure compliance and optimize security solutions.
OT Security Architect at Orange Cyberdefense providing security solutions for operational technology environments. Leading efforts in OT/ICS security and ensuring stable production for clients.