Senior Information Security GRC Analyst

2 semanas atrás

Região Geográfica Intermediária de São Paulo, Brasil WEX Tempo inteiro

Join to apply for the Senior Information Security GRC Analyst role at WEX

Join to apply for the Senior Information Security GRC Analyst role at WEX

Get AI-powered advice on this job and more exclusive features.

About The Team/Role
We are seeking a highly experienced and proactive Information Security GRC Analyst Level 3 – PCI DSS Compliance to support our organization's PCI DSS compliance efforts. This role will focus on ensuring strict adherence to the Payment Card Industry Data Security Standard (PCI DSS) while contributing to broader governance, risk, and compliance (GRC) initiatives. The ideal candidate will possess deep expertise in PCI DSS and the ability to drive compliance programs in complex environments.

About The Team/Role
We are seeking a highly experienced and proactive Information Security GRC Analyst Level 3 – PCI DSS Compliance to support our organization's PCI DSS compliance efforts. This role will focus on ensuring strict adherence to the Payment Card Industry Data Security Standard (PCI DSS) while contributing to broader governance, risk, and compliance (GRC) initiatives. The ideal candidate will possess deep expertise in PCI DSS and the ability to drive compliance programs in complex environments.
How You'll Make An Impact
Participate and play a key role in the WEX PCI DSS compliance program, ensuring ongoing adherence to the latest PCI DSS requirements.

  • Conduct and coordinate PCI DSS gap assessments, control evaluations, and risk assessments to identify and remediate deficiencies.
  • Conduct and coordinate PCI DSS annual reviews in accordance with PCI DSS v4.0.1.
  • Serve as the primary liaison for external audits, working closely with Qualified Security Assessors (QSAs), auditors, and regulatory bodies to ensure successful compliance certifications.
  • Develop and maintain PCI DSS policies, procedures, and documentation to align with regulatory requirements and industry best practices.
  • Collaborate with IT, Security, Legal, and Business teams to integrate PCI DSS controls into enterprise security and risk management frameworks.
  • Implement security and compliance automation tools to enhance PCI DSS control effectiveness and efficiency.
  • Stay updated on PCI DSS regulatory changes and evolving threats, advising on necessary adjustments.
  • Support broader GRC initiatives, including ISO 27001, NIST, SOC 2, and risk management programs, as needed.
  • Act as a subject matter expert (SME) for PCI DSS, advising stakeholders on compliance strategies, risks, and security best practices.
Experience You'll Bring
  • Education: Bachelor's or Master's degree in Information Security, Computer Science, Business, or a related field (or equivalent work experience).
  • Experience in information security, compliance, risk management, or a related field, with a strong focus on PCI DSS compliance. Experience with PCI issuing banks preferred.
  • Technical Knowledge: In-depth understanding of PCI DSS, security frameworks (NIST, ISO 27001, SOC 2), risk management methodologies, cloud environments (AWS and Azure), and secure network architectures.
  • Skills: Strong analytical, problem-solving, and project management skills; ability to communicate effectively with both technical and executive stakeholders.
  • Tools & Technologies: Experience with GRC tools, security compliance platforms, vulnerability management tools, and cloud security.
  • Certifications (Preferred): PCI Professional (PCIP), Qualified Security Assessor (QSA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM).
Seniority level
  • Seniority level Mid-Senior level
Employment type
  • Employment type Full-time
Job function
  • Job function Information Technology
  • Industries Software Development

Referrals increase your chances of interviewing at WEX by 2x

Sign in to set job alerts for "Senior Information Security Analyst" roles.

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

  • Senior Information Security GRC Analyst

    Há 3 dias

    Região Geográfica Intermediária de São Paulo, Brasil WEX Tempo inteiro

    Join to apply for the Senior Information Security GRC Analyst role at WEX Join to apply for the Senior Information Security GRC Analyst role at WEX Get AI-powered advice on this job and more exclusive features. About The Team/RoleWe are seeking a highly experienced and proactive Information Security GRC Analyst Level 3 – PCI DSS Compliance to support...

  • Senior Information Security GRC Analyst

    2 semanas atrás

    São Paulo, São Paulo, Brasil WEX Inc. Tempo inteiro

    Senior Information Security GRC Analyst page is loadedSenior Information Security GRC Analyst Apply locations Brazil Sao Paulo - Remote Office Brazil Porto Alegre - Remote Office Brazil Salvador - Remote Office time type Full time posted on Posted 14 Days Ago job requisition id R18721About the Team/Role We are seeking a highly experienced and proactive...

  • Senior Information Security GRC Analyst

    3 semanas atrás

    São Paulo, São Paulo, Brasil WEX Inc. Tempo inteiro

    Senior Information Security GRC Analyst page is loadedSenior Information Security GRC AnalystApply locations Brazil Sao Paulo - Remote Office Brazil Porto Alegre - Remote Office Brazil Salvador - Remote Office time type Full time posted on Posted 14 Days Ago job requisition id R18721About the Team/RoleWe are seeking a highly experienced and proactive...

  • Senior Information Security GRC Analyst

    Há 3 dias

    Região Geográfica Intermediária de São Paulo, Brasil beBeeInformationSecurity Tempo inteiro R$100.000 - R$140.000

    Job Title: Information Security GRC ExpertWe are seeking a seasoned Information Security GRC Expert to support our organization's PCI DSS compliance efforts.Key Responsibilities:Conduct and coordinate thorough security assessments, control evaluations, and risk analyses to identify and remediate deficiencies in adherence to the Payment Card Industry Data...

  • Senior Information Security Analyst

    3 semanas atrás

    São Paulo, São Paulo, Brasil Tata Consultancy Services Tempo inteiro

    Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Tata Consultancy ServicesGlobal Talent Acquisition Recruiter at Tata Consultancy Services (Latam Region)Come to one of the biggest IT Services companies in the world Here you can transform your careerWhy to join TCS? Here at TCS we believe that people make the...

  • Security GRC Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil CloudWalk, Inc. Tempo inteiro

    About CloudWalk: We are not just another fintech unicorn. We are a team of dreamers, makers, and tech enthusiasts building the future of payments. With millions of satisfied customers and a passion for innovation, we are expanding our neural network both literally and metaphorically. About the Role CloudWalk is seeking a Security GRC Analyst with...

  • Security GRC Analyst

    4 semanas atrás

    São Paulo, São Paulo, Brasil CloudWalk, Inc. Tempo inteiro

    About CloudWalk:We are not just another fintech unicorn. We are a team of dreamers, makers, and tech enthusiasts building the future of payments. With millions of satisfied customers and a passion for innovation, we are expanding our neural network both literally and metaphorically.About the RoleCloudWalk is seeking a Security GRC Analyst with experience in...

  • Information Security Specialist

    2 semanas atrás

    Sao Paulo, Brasil SumUp Tempo inteiro

    **Information Security Specialist (GRC)** At SumUp our vision is to be a global leader in the FinTech industry and build a world where small businesses can be successful doing what they love. To get there, we are putting together a team that is passionate about what they do, committed to one another and to our merchants. The Information Security Team is a...

  • Senior Security Engineer

    2 semanas atrás

    Região Geográfica Intermediária de São Paulo, Brasil Nubank Tempo inteiro

    Senior Security Engineer - Regulatory Requirements Join to apply for the Senior Security Engineer - Regulatory Requirements role at Nubank Senior Security Engineer - Regulatory Requirements Join to apply for the Senior Security Engineer - Regulatory Requirements role at Nubank About NubankNubank was founded in 2013 to free people from a bureaucratic,...

  • Information Security Analyst

    3 semanas atrás

    São Paulo, São Paulo, Brasil moray Tempo inteiro

    Sobre Moray:A Moray nasceu com a missão de revolucionar o manejo das culturas agrícolas, reduzindo o uso de insumos e as perdas de produtividade, da planta individual à fazenda inteira. Nos inspiramos nas práticas agrícolas do Império Inca, que já há mil anos operavam com inteligência planta a planta. Hoje, unimos ciência, dados e robótica a um...