Empregos atuais relacionados a Analyst, Information Security and Compliance - São Paulo, São Paulo - Mastercard

  • Information Security Analyst Ii

    4 semanas atrás

    São Paulo, São Paulo, Brasil Sovos Compliance Tempo inteiro

    **The Work You'll Do**The Sovos Information Security Analyst II is tasked with security systems administration and implementation and the investigations and review of system alerts, logs, and reports. This member of the Information Security Team will also assist with the architectural design, planning, and implementation of enterprise operational defenses...

  • Information Security Compliance Manager

    4 semanas atrás

    São Paulo, São Paulo, Brasil IQVIA Tempo inteiro

    Role:As an **Information Security Compliance Mgr**., you will play a crucial role in ensuring the security and compliance of our organization. You'll be responsible for providing assurance to our external parties on the security posture of IQVIA. This role plays a significant part in our Global Information Security team and will provide an excellent...

  • Senior Information Security Metrics Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil IQVIA Tempo inteiro

    **Role**:As a** Senior Information Security Metrics Analyst, **you will play a crucial role in ensuring the security and compliance of our organization. You'll be responsible for analyzing, measuring, and reporting on various security metrics to enhance our overall security posture. Your expertise will guide decision-making and risk management...

  • Security Compliance Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil Rocket Tempo inteiro

    This is a fully remote position.We are looking for a Junior Security Compliance Analyst to join us in our mission to make Rocket.Chat the most secure enterprise communication platform for our millions of users By providing assurances to colleagues, customers and auditors, you will be an integral part of Rocket.Chat´s growing information security...

  • Security Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil Bunge Iberica SA Tempo inteiro

    Overview The Security Analyst II serves as Tier 1-2 Analyst member of the Bunge Global SOC and all operational activities that serve to protect the confidentiality, integrity and security management of business and employee information and systems in compliance with organization policies and standards. He/she will focus on structured tasks associated with...

  • Information Security Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil Siemens Healthineers Tempo inteiro

    Do you want to help create the future of healthcare? Siemens Healthineers is a place for people who dedicate their energy and passion to this greater cause. It reflects their pioneering spirit combined with our long history of engineering in the ever evolving healthcare industry.We offer you a flexible and dynamic environment where you have the space to...

  • Compliance Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil ACI Worldwide Tempo inteiro

    **Compliance Analyst - São Paulo, Brazil****Join Us as We Make Possibilities Happen**If you've ever used an ATM, paid a bill through your phone, sent money to a friend or shopped online, chances are your transaction was safeguarded and processed using our software. Now it's your turn to serve the payment needs of organizations and people the world over.As a...

  • Information Security Specialist

    Há 7 dias

    São Bernardo do Campo, São Paulo, Brasil Allianz Insurance Tempo inteiro R$104.000 - R$156.000 por ano

    The ISO has overall responsibility for the effective implementation and maintenance of the Information Security Management System (ISMS) within Allianz Technology. Furthermore, the ISO oversees the fulfilment of Information Security requirements in all services provided by Allianz Technology as shared service provider to its customers.  What you doEach...

  • Governance & Compliance Jr Analyst

    2 semanas atrás

    São Paulo, São Paulo, Brasil CIAL D&B Services Inc Tempo inteiro R$30.000 - R$60.000 por ano

    Why work with us?We are a fast-growing company that is revolutionizing the world of SaaS platform and data in Latin AmericaCIAL Dun & Bradstreet is the leading provider of business decisioning solutions and commercial data across Latin America and the Caribbean. Our solutions are designed to transform how businesses manage risk and make critical decisions...

  • Business Information Security Officer

    4 semanas atrás

    São Paulo, São Paulo, Brasil Bank of America Tempo inteiro

    **Responsibilities**:- Advise LOB management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs.- Monitor information security trends internal and external to the bank and keep LOB leadership informed about information security-related topics.- Collaborate with risk...

Analyst, Information Security and Compliance

4 semanas atrás

São Paulo, São Paulo, Brasil Mastercard Tempo inteiro
**Our Purpose**
- Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential._
**Title and Summary**
Analyst, Information Security and Compliance
**Responsibilities**:
Internal Compliance
- Identifying control gaps and process improvement opportunities; evaluating compliance with
operational, legal, regulatory and IT policies and procedures
- Maintaining and managing the controls list
- Tracking and monitoring management action plans to ensure sustainable resolution of control gaps
- Providing risk and control advice and education for the benefit of the organization, being a "champion" and advocate for strong risk management and governance controls and partnering with
other control functions to strengthen our three lines of defense model
- Understanding and critically analyzing complex IT processes, identifying and assessing potential risks and determining whether those risks are appropriately mitigated (using various techniques
such as problem solving, root cause and data analysis)
Security Due Diligence Questionnaires
- Managing the security/due-diligence questionnaires lifecycle and ensuring compliant,
accurate and timely completion of all responses
- Responding to clients due-diligence questionnaires and audits
- Identifying the needs, requirements and risks associated with questionnaires received
- Maintaining a library of content to help ensure responses are up-to-date; contributing to
developing and improving the process and the existing knowledge-base to streamline the
responses
- Responsible for managing regular scheduled internal reviews of key control areas
- Excellent communication skills, both written and verbal; strong presentation
Skills required
Must have a positive attitude, an excellent critical thinking and problem-solving skills to supports the business working with cross-functional teams on projects and initiatives. Liaise with internal and external stakeholders on an ongoing basis during the audit, relative to plans, objectives, evidence collection and results documenting, presenting and tracking findings and remediation actions.
- Preferably 3 - 5 years' experience with/in:
IT security controls
IT Audit, and/or
Compliance management, and/or
Project management/ coordination (document collections, coordination, tracking, customer partnership), and/or
Information management
- Understanding of risk management and Information Security frameworks
- Certified Professional designation (CSA CCM, CISSP, CISA, CRISC) or willingness to work towards one or more of these certifications
- Experience with GDPR and/or PIPEDA and/or similar Data Privacy frameworks
- Experience with information management/ RFP platforms (e.g., Loopio, RFPIO, RFP360, etc.)
- Experience working with auditors and other stakeholders, managing audits, collecting evidence and tracking findings to a resolution
- Intellectually curious, self-motivated, passionate works well both independently and as part of a team
- Ability to influence change through effective communication and interpersonal skills
- Ability to work and partner with others in different levels of the organization
- Ability to multi-task, be organized and take initiative audit management.
- Managing the PCI, SOC-2 and other compliance programs end-to-end
- Evaluating internal stakeholders' response to audits and reporting to management on appropriateness
- Acting in a consultative capacity, providing advice and clarity to teams on compliance requirements and audits
**Corporate Security Responsibility**
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.