Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
About the role
- Information Security Manager overseeing cybersecurity and risk management initiatives at EdgeUno. Collaborating with various teams ensuring confidentiality and compliance across systems and data.
Responsibilities
- Design, execute, and continuously improve EdgeUno’s global Information Security Program aligned with ISO 27001:2022 and industry best practices.
- Serve as the Information Security Officer (ISO) responsible for maintaining our ISO 27001:2022 certification, leading audits, gap analyses, and surveillance processes.
- Define security policies, controls, and guidelines to mitigate risk and ensure corporate policies and regulatory compliance across geographies.
- Lead and mentor the Information Security Team providing support for internal users across all departments and locations.
- Own and operate the Information Security Risk Management Framework including regular risk assessments, control validation, vendor security reviews, and mitigation planning.
- Lead and maintain Business Continuity Plans (BCP), Disaster Recovery Plans (DRP), and Contingency Planning procedures.
- Collaborate with Legal, Operations, and external consultants to ensure alignment with data privacy laws (e.g., LGPD, GDPR, and LATAM regulations).
- Manage Security Operations Center (SOC) functions either in-house or with third-party providers, ensuring effective threat detection and incident response.
- Oversee Threat Intelligence, vulnerability management, and offensive security practices including regular penetration testing and red/blue team exercises.
- Define and enforce Data Loss Prevention (DLP) strategies to monitor and protect sensitive data across databases, endpoints, cloud, and SaaS platforms.
- Drive data classification and privacy-by-design principles across systems and development workflows.
- Develop and run a company-wide Security Awareness Program, ensuring employees understand their roles in cybersecurity and compliance.
- Conduct phishing simulations, internal campaigns, and role-based training to drive security culture across the organization.
- Partner with stakeholders to ensure alignment between support, device, and security policies.
- Serve as the primary point of contact for all security incidents, regulatory inquiries, and audit responses.
- Regularly report program status, information security risks, and KPIs to executive leadership.
Requirements
- Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field.
- Master’s and relevant certifications (CISSP, CISM, CRISC) strongly preferred.
- 10+ years of experience in cybersecurity, risk management, or information security roles, including 5+ years in a team leadership capacity.
- Deep experience with ISO 27001 implementation, certification, and maintenance.
- Knowledge of security and other frameworks such as NIST CSF , CIS Controls , MITRE ATT&CK , NIST RMF , FAIR, OCTAVE , COBIT , and ITIL.
- Experience with SOC operations, threat intelligence platforms, SIEMs, SOAR, XDR, EDR, and incident response workflows.
- Familiarity with IAM/PAM systems, vulnerability scanning, DLP tools, and privacy compliance (GDPR/LGPD, etc.).
- Strong understanding of business continuity planning, disaster recovery design, and cloud/hybrid environments.
- Excellent communication skills in English; Spanish and/or Portuguese highly desirable.
- Comfortable operating in a hybrid, globally distributed organization.
- Previous experience in telecom, hosting, datacenter, or infrastructure service providers is a plus.
Benefits
- Competitive compensation package
- Training and development opportunities
- Collaborative environment
- Security Awareness Program
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.
AI Application Security Architect in charge of driving secure development lifecycle for AI systems across multi - cloud environments and hybrid platforms.
Security Project Manager responsible for managing cyber - security project delivery and ensuring quality execution in Bulgaria. Requires excellent communication skills and fluency in English.
Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.
Security Officer ensuring safety and security of Yankee Candle assets and personnel. Responsiblities include monitoring, patrols, incident response, and safety training at the corporate campus.
IT Audit Consultant joining Baker Tilly to manage technology risks for clients, offering strategic advice and audit support. Engaging with client executives to ensure compliance and operational efficacy.
Cloud Security & Application Security Engineer at Cellulant enhancing security across cloud - native platforms and applications. Working in a hybrid role to support a leading payment service provider in Africa.