Group Data Governance Manager leading data governance activities at Securitas, ensuring alignment with business strategy and data quality.
IS
Hybrid Senior Governance and Awareness Analyst
Posted 2 months ago
About the role
- Analista de Governança e Conscientização Sênior at IBLISS supporting information security governance and compliance initiatives.
Responsibilities
- Support the planning and execution of projects focused on governance, compliance and continuity management;
- Implement standards, policies and procedures that support the information security and risk management framework;
- Lead internal and external audits, ensuring compliance with regulatory standards and best practices;
- Conduct supplier assessments, evaluating cyber risks, contractual compliance and adherence to technical and security requirements;
- Support business continuity management (BCP/DRP), participating in the definition of policies and procedures, training (e.g., table-top exercises) and plan testing;
- Monitor and ensure adherence to laws, frameworks and standards such as ISO 27001/27701, ISO 27005, ISO 31000, ISO 22301, LGPD, NIST CSF and NIST SP 800-53, among others;
- Act in a consultative capacity as a reference for the Governance and Awareness area, advising internal teams and clients;
- Map and review policies, standards and processes;
- Support clients in technical and strategic projects (onsite or remote);
- Participate in committees, meetings and forums with business areas, technology teams and executive leadership when required;
- Assess and respond to privacy incidents when they occur, ensuring appropriate handling and response in accordance with policies and legislation;
- Contribute to the continuous improvement of data protection and privacy practices;
- Support the structuring of processes based on Privacy by Design and Privacy by Default principles;
- Lead educational campaigns and information security culture initiatives, both internally and with clients;
- Plan and execute educational campaigns with accessible, creative content aligned to the target audience;
- Produce materials such as scripts, presentations, remote and in-person activities, trainings, workshops, videos and interactive events;
- Deliver talks, trainings and workshops on security, privacy and digital ethics;
- Develop content for social media, internal communications and institutional materials;
- Conduct social and engagement activities with partners and clients to reinforce the organization’s purpose;
- Conduct risk assessments (current and potential), identifying impacts to compliance and operations;
- Develop, monitor and validate corrective and preventive action plans;
- Monitor risks using indicators and targets;
- Prepare management and executive reports with status and trend analysis.
Requirements
- Proven experience in Governance, Risk, Compliance and Awareness;
- Bachelor’s degree or postgraduate degree in Technology and Security;
- ISO 27001 Lead Auditor certification or equivalent;
- Experience with information security awareness campaigns, including remote and in-person presentations;
- Practical experience in audits and interactions with regulatory bodies;
- Knowledge of standards, laws and frameworks such as: LGPD, GDPR, NIST CSF, NIST SP 800-53, CIS Controls, PCI DSS, COBIT, ITIL, the ISO 27000 family, among others;
- Experience with supplier risk assessments and continuity management (BCM/DRP);
- Analytical profile with the ability to structure action plans;
- Excellent communication, creativity and command of playful and educational language for trainings, activities and presentations;
- Ability to provide consultative support across different areas and hierarchical levels;
- English desirable.
Benefits
- Referral bonus
- Day off on your birthday
- Annual profit-sharing (PLR) proportional and aligned with revenue targets
- Knowledge sharing sessions
- Discounts at educational institutions
- Wellhub
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Operational Risk Advisor responsible for delivery of risk management services and implementation of Operational Risk program elements. Collaborating with teams to ensure compliance with policies and industry standards.
SAP Authorization & Governance Consultant managing roles and compliance for SAP systems at BEIT GmbH. Seeking analytical personality with expertise in SAP - Governance and security.
Business Risk and Controls Advisor supporting Technology Risk Governance Team at USAA. Advising on control environment, performing risk assessments, and ensuring compliance with regulatory requirements.
Business Risk and Controls Advisor Lead managing compliance and risk management initiatives for USAA. Collaborating with multiple departments to promote risk - awareness and effective risk management programs.
Fund Risk Controlling - Senior Associate responsible for fund risk reporting in financial services at BNY. Seeking candidates with experience in investment compliance and fund risk controlling, based in Frankfurt.
Regional Banking Risk Management Reviewer monitoring operational risks and ensuring compliance across financial centers. Collaborating with Retail leadership and supporting procedural development and training.
Insurance and Risk Specialist managing enterprise risk operations within Digital Realty’s data center platform. Collaborating with insurance brokers and project managers to ensure compliance and manage risk effectively.
Senior Risk Analyst managing enterprise risk governance frameworks at TD. Advising on risk mitigation practices and leading policy management initiatives.
Business Expert for Financial Institutions Public Finance cell managing risk applications and working closely with software developers. Involves conducting analyses and implementing regulatory requirements in the financial sector.