Sr. Analyst, Governance, Risk and Compliance

Location : BAL - SEDE
City : Sao Paulo
State : São Paulo (BR-SP)
Country : Brazil (BR)
Requisition Number : 36991
Bunge has an exciting opportunity available for Sr. Analyst, Governance, Risk and Compliance. In this role you will be part of a global team working on challenging, meaningful projects impacting core business activities. Since 1818, Bunge has been connecting farmers to consumers to deliver essential food, feed, and fuel to the world. Looking to the future, our ambition is to continuously reinvent ourselves, leveraging data to be at the forefront of analytics, technology and talent to accomplish our purpose in a better, faster and simpler way. Bunge is committed to operating and thriving in the digital world - creating world class agile teams where teammates are empowered and encouraged to collaborate and test and learn to succeed.
At Bunge, people don't just come here to work, they come here to grow - solving challenges that directly impact the world with a diverse team of thinkers and doers. Bunge offers a strong compensation and benefits package, generous paid time off program, flexible work arrangements, and opportunity to progress. Our hybrid work environment provides a balance of in-office and remote work.
Most importantly, in all we do we live our values:
Act as One Team by fostering inclusion, collaboration, and respect
Drive for Excellence by being agile, innovative and efficient
Do What's Right by acting safely, ethically, and sustainably
**Overview**
The Sr. Analyst, Governance, Risk and Compliance demonstrates a high level of professionalism, prioritizing the effective management of cybersecurity governance, risk, and compliance activities. This role will perform, and continuously improve the governance of policies and standards and their integration into processes and controls designed to deliver critical BT services and aligned with applicable industry best practices and standards (e.g., NIST, ISO, COBIT, PCI DSS).
**Essential Functions**
- Actively engage in Governance, Risk, and Compliance activities with key stakeholders to enable effective Cybersecurity policies and standards, exceptions management, enablement and training, and the alignment against applicable industry best practices (e.g. NIST, ISO, COBIT, PCI DSS) as needed.
- Develop content for comprehensive cybersecurity awareness programs and initiatives to educate employees and stakeholders about cybersecurity risks and best practices.
- Effectively utilize process automation and reporting through Bunge's Governance, Risk and Compliance (GRC) automation.
- Actively collaborate and support partner functions across Bunge's Governance, Risk and Compliance functions, and with stakeholders throughout BT and Cybersecurity.
- Executes operational and supports the implementation of strategic initiatives driven by the department, including collaboration with partner Governance, Risk and Compliance functions.
- Recognized as an expert within Bunge in the performance and continuous improvement of governance, risk and compliance related services and capabilities.
- Supports BT compliance with legal and regulatory requirements and adherence to internal control objectives, minimizing BT and Cybersecurity risk & avoiding potential penalties to the organization.
- Works closely with business units to identify and address compliance gaps, helping to protect the company from financial, legal, and reputational risks.
- Provides valuable insights and recommendations to enhance the compliance framework and promote a culture of compliance throughout the organization.
- Leverage industry experience and knowledge of applicable best practices, frameworks, and guidance to define effective programs, monitor and strengthen internal controls, risk-prioritize requisite remediation, and to improve the overall posture of Bunge's BT and Cybersecurity internal control environment.
**Qualifications**
- Bachelor's degree in computer science or information systems, risk management, accounting, finance, or equivalent combination of education and work experience.
- 5+ years of experience in compliance and controls assurance, internal audit, or a related field.
- Prior experience in Sarbanes-Oxley compliance required.
- Knowledge of Payment Card Industry (PCI) compliance, GDPR (General Data Protection Regulation) compliance or other applicable compliance programs preferred.
- Demonstrated experience in the monitoring and improvement of Information Technology general controls, Cybersecurity controls, and/or compliance programs required.
- Solid understanding of Governance, Risk and Compliance methodologies and effective automation through GRC tooling. Experience with Archer GRC preferred.
- Proven experience working with Information Technology and Cybersecurity frameworks required. Possible examples include, but not limited to: COBIT, NIST CSF, ISO 27k.
- Certifications such as CIA, CISA, CGEIT, CISSP preferred.
- Ability to manage and execut

---