Sr. Security Compliance Analyst

Company Overview:
If you see technology as there to smooth your path in life, our team does too: Your Path, Our Journey.
We believe in people who transform their paths through technology. Technology that connects people who are good at what they do and which practices diversity to create and share those paths that we (as yet) do not even know about. Our journey is in the smile of every talented person who brings revolution to the world from Brazil - whether with in-app transportation (99) or digital payments (99Pay).
To make life easier for millions of people every day, we are in the driving seat as part of DiDi Chuxing, the world's largest transport, and convenient platform. And so, we can say, with great pride, that we are pioneers in creating solutions, starting in Brazil, that grow in scale and have positive impacts in a range of other countries.
Whether creating projects from scratch or continually improving our solutions, we like challenges that give us butterflies, and that's why we work with intensity, at a fast pace, with respect, collaboration, and partnership. On this journey, we also create learning and strengthen ourselves in diversity as a fundamental aspect that makes us stand out for our growth day after day.
Team Overview:
We are seeking an Sr. Information Compliance Analyst to ensure that our organization adheres to all relevant laws, regulations, and industry standards governing the handling and protection of information. In this role, you will play a critical part in safeguarding our data and ensuring our compliance with data privacy, security, and regulatory requirements across our global business lines.
Role Responsibilities:
**Key Responsibilities**:
**Regulatory Compliance**: Stay up-to-date with changes in data protection, privacy, and information security regulations and ensure the organization's compliance.**Policy Development**: Develop, update, and maintain company policies and procedures related to data privacy, cybersecurity, and information security.**Auditing and Monitoring**: Conduct regular audits and assessments to identify compliance issues, track violations, and implement corrective actions.**Training and Education**: Design and deliver training programs to educate employees about compliance requirements and best practices in information security.**Risk Assessment**: Identify potential vulnerabilities and assess information security risks. Recommend and implement measures to mitigate risks.**Incident Response**: Lead incident response efforts in case of data breaches, including investigations, containment, and reporting to relevant authorities.**Documentation and Reporting**: Maintain detailed records of compliance activities, violations, and corrective actions. Prepare and distribute reports to relevant stakeholders.**Vendor Management**: Evaluate the compliance of third-party vendors and service providers to ensure they meet the organization's standards and legal requirements.**Stakeholder Communication**: Collaborate with legal teams, IT departments, and external regulators to ensure a comprehensive approach to compliance.**Continuous Improvement**: Continuously monitor and assess the effectiveness of our compliance programs. Make recommendations for enhancements and improvements.
Role Qualifications:
**Skills**:
- Strong communication skills, both written and verbal, in English.
- Strong understanding of data protection, privacy, and information security regulations.
- Excellent analytical and problem-solving skills.
- Detail-oriented with a commitment to accuracy.
- Strong communication and interpersonal skills.
- Ability to work collaboratively in cross-functional teams.
- Proficiency in using compliance tools and software.
EEO Statement:
- We create customer value - We strive to always create valuable experiences for our users in everything we do. Our focus is to always innovate new experiences that are safe, pleasant, and efficient.
- We are data-driven - We are strong believers in making informed decisions, that's why we are data-driven. We can better navigate the business landscape strategically by analyzing valuable metrics.
- We believe in Win-win Collaboration - Success is a team sport. When we work to help our partners and colleagues win, we win, too. While keeping everyone's best interest at heart, we communicate with candor and execute with excellence in all we do.
- We believe in integrity - Integrity is at the very core of our business. We are people who always want to do the right thing. Our intentions are sincere, we speak our minds and listen to each other.
- We always strive to do better. That means venturing beyond our comfort zones, learning from our mistakes, and helping each other grow.
- We believe in Diversity and Inclusion - Diversity is one of our biggest strengths. Our differences are what makes us distinct. We respect each other and believe in equal opportunities for all.
**Diversity & Inclusion**
Diversity is not a vision

---