Analyst, Information Security and Compliance
2 semanas atrás
**Our Purpose**
- Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential._
**Title and Summary**
Analyst, Information Security and Compliance
**Responsibilities**:
Internal Compliance
- Identifying control gaps and process improvement opportunities; evaluating compliance with
operational, legal, regulatory and IT policies and procedures
- Maintaining and managing the controls list
- Tracking and monitoring management action plans to ensure sustainable resolution of control gaps
- Providing risk and control advice and education for the benefit of the organization, being a "champion” and advocate for strong risk management and governance controls and partnering with
other control functions to strengthen our three lines of defense model
- Understanding and critically analyzing complex IT processes, identifying and assessing potential risks and determining whether those risks are appropriately mitigated (using various techniques
such as problem solving, root cause and data analysis)
Security Due Diligence Questionnaires
- Managing the security/due-diligence questionnaires lifecycle and ensuring compliant,
accurate and timely completion of all responses
- Responding to clients due-diligence questionnaires and audits
- Identifying the needs, requirements and risks associated with questionnaires received
- Maintaining a library of content to help ensure responses are up-to-date; contributing to
developing and improving the process and the existing knowledge-base to streamline the
responses
- Responsible for managing regular scheduled internal reviews of key control areas
- Excellent communication skills, both written and verbal; strong presentation
Skills required
Must have a positive attitude, an excellent critical thinking and problem-solving skills to supports the business working with cross-functional teams on projects and initiatives. Liaise with internal and external stakeholders on an ongoing basis during the audit, relative to plans, objectives, evidence collection and results documenting, presenting and tracking findings and remediation actions.
- Preferably 3 - 5 years' experience with/in:
IT security controls
IT Audit, and/or
Compliance management, and/or
Project management/ coordination (document collections, coordination, tracking, customer partnership), and/or
Information management
- Understanding of risk management and Information Security frameworks
- Certified Professional designation (CSA CCM, CISSP, CISA, CRISC) or willingness to work towards one or more of these certifications
- Experience with GDPR and/or PIPEDA and/or similar Data Privacy frameworks
- Experience with information management/ RFP platforms (e.g., Loopio, RFPIO, RFP360, etc.)
- Experience working with auditors and other stakeholders, managing audits, collecting evidence and tracking findings to a resolution
- Intellectually curious, self-motivated, passionate works well both independently and as part of a team
- Ability to influence change through effective communication and interpersonal skills
- Ability to work and partner with others in different levels of the organization
- Ability to multi-task, be organized and take initiative audit management.
- Managing the PCI, SOC-2 and other compliance programs end-to-end
- Evaluating internal stakeholders' response to audits and reporting to management on appropriateness
- Acting in a consultative capacity, providing advice and clarity to teams on compliance requirements and audits
**Corporate Security Responsibility**
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard’s security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
-
Analyst, Information Security And Compliance
2 semanas atrás
São Paulo, São Paulo, Brasil Mastercard Tempo inteiroAnalyst, Information Security and ComplianceMastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart, and accessible. Our...
-
Analyst, Information Security and Compliance
4 semanas atrás
São Paulo, Brasil Mastercard Tempo inteiroOur Purpose - Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build _a sustainable economy_ where everyone can prosper. We support a wide range of digital payments choices, making _transactions secure,_ simple, smart and accessible. Our technology and innovation,...
-
São Paulo, São Paulo, Brasil Mastercard Tempo inteiroAnalyst, Information Security and ComplianceMastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart, and accessible. Our...
-
IT Compliance and Security Lead
Há 4 dias
São Paulo, São Paulo, Brasil Nubank Tempo inteiroWelcome to NubankNubank is a cutting-edge digital bank that's changing the face of finance. Founded in 2013, we've built a reputation for innovation, customer satisfaction, and excellence. Our team is passionate about delivering exceptional experiences and pushing the boundaries of what's possible in finance.About the RoleWe're looking for an experienced...
-
Senior Information Security Analyst
Há 6 dias
São José dos Campos, São Paulo, Brasil Ball Tempo inteiroKey ResponsibilitiesThe Senior Technical Analyst will be responsible for managing a broad range of security tasks, including the day-to-day security administration of network security devices, as well as the management of technologies, such as firewall, intrusion detection, intrusion prevention, data loss prevention, antivirus, anti-spam, antispyware, and...
-
Chief Security Compliance Officer
Há 4 dias
São Paulo, São Paulo, Brasil Mastercard Tempo inteiroJob SummaryWe are seeking a highly skilled Information Security Compliance Professional to join our team. As an Information Security Compliance Professional, you will be responsible for developing and maintaining information security policies and procedures, as well as evaluating compliance with operational, legal, regulatory, and IT policies and procedures.
-
IT Security and Compliance Officer
Há 7 dias
São Paulo, São Paulo, Brasil Pay Retailers Tempo inteiroPayRetailers is dedicated to delivering innovative solutions that empower businesses in Latin America to succeed. Our collaborative and inclusive work environment fosters creativity and growth, where every employee's contribution is valued.We are seeking an experienced Information Security Officer to lead our efforts in Brazil. This role involves overseeing...
-
Information Security Expert
Há 18 horas
São Paulo, São Paulo, Brasil RSA Security Tempo inteiroJob Description:We are seeking an experienced Information Security Expert to join our team in Sao Paulo, Brazil. As a Senior Systems Engineer at RSA Security, you will play a key role in managing 25 million enterprise identities and providing secure access to millions of users worldwide.About Us:RSA is a trusted leader in identity and access management...
-
Information Security Expert
3 semanas atrás
São Paulo, Brasil NG.CASH Tempo inteiroIf you’re passionate about information security and want to contribute to our mission of building a secure fintech platform, join NG.CASH , a rapidly expanding fintech, as an Information Security Expert . We’re committed to maintaining the highest level of security for our digital infrastructure and ensuring our customers’ trust in their financial...
-
Information Security Expertise
Há 2 dias
São Paulo, São Paulo, Brasil NG Tempo inteiroNG.Cash is a rapidly expanding fintech platform committed to maintaining the highest level of security for our digital infrastructure and ensuring our customers' trust in their financial transactions.We're seeking an experienced Information Security Expert to join our team and contribute to our mission of building a secure fintech platform. As an Information...
-
Information Security Risk Manager
4 semanas atrás
São Paulo, SP, Brasil IQVIA Tempo inteiro**Job Overview** The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected. The individual in this position will be responsible for identifying...
-
Information Security Risk Manager
2 semanas atrás
São Paulo, Brasil IQVIA Argentina Tempo inteiroJob OverviewThe Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected.The individual in this position will be responsible for identifying and...
-
Security Analyst
Há 5 dias
São Paulo, São Paulo, Brasil DFND Security, Inc. Tempo inteiroWe are looking for a couple of Security Analyst for positions expected to be remote and based out of the Sao Paulo area.English is not a requirement.The positions are contract positions expected to last at least 1 year and could get extended or turn into permanent jobs.Some more details are below.Perfil 1: Pleno/SêniorResponsabilidades e Atribuições:·...
-
Information Security Specialist
Há 7 dias
São Paulo, São Paulo, Brasil Pay Retailers Tempo inteiroPursuing excellence in information security is a top priority at PayRetailers. As a company committed to innovation, we strive to provide cutting-edge solutions that empower businesses in Latin America to succeed.We are seeking a seasoned Information Security Officer to lead our efforts in Brazil. This role involves overseeing information security,...
-
Fintech Information Security Specialist
Há 2 dias
São Paulo, São Paulo, Brasil NG Tempo inteiroAre you passionate about information security and eager to contribute to a rapidly expanding fintech platform? Look no further than NG.Cash! We are seeking an Information Security Expert to join our team and help build a secure fintech platform.As an Information Security Expert, you will be responsible for staying updated on emerging cyber threats and...
-
São José dos Campos, São Paulo, Brasil Ball Tempo inteiroAbout the JobWe are looking for an experienced Cyber Security Technical Leader to join our Global IT Security operations department. As a Senior Technical Analyst, you will play a critical role in identifying and mitigating cybersecurity risks across the organization's technology landscape.Technical proficiency with security-related systems and applications,...
-
Security Analyst
Há 3 dias
São Paulo, SP, Brasil DFND Security, Inc. Tempo inteiroWe are looking for a couple of Security Analyst for positions expected to be remote and based out of the Sao Paulo area. English is not a requirement. The positions are contract positions expected to last at least 1 year and could get extended or turn into permanent jobs. Some more details are below. Perfil 1: Pleno/Sênior Responsabilidades e...
-
Information Security Risk Manager
3 semanas atrás
São Paulo, Brasil IQVIA Argentina Tempo inteiroJob Overview The Information Security Risk Manager is a crucial role within IQVIA organization, responsible for helping to establish and maintain IQVIA's risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected.The individual in this position will be responsible for identifying...
-
Information Security Specialist
Há 4 dias
São Paulo, São Paulo, Brasil Sumup Tempo inteiro**Information Security Specialist (GRC)**At SumUp our vision is to be a global leader in the FinTech industry and build a world where small businesses can be successful doing what they love.To get there, we are putting together a team that is passionate about what they do, committed to one another and to our merchants.The Information Security Team is a key...
-
Security Analyst
Há 22 horas
São Paulo, São Paulo, Brasil DFND Security, Inc. Tempo inteiroWe are looking for a couple of Security Analyst for positions expected to be remote and based out of the Sao Paulo area. English is not a requirement. The positions are contract positions expected to last at least 1 year and could get extended or turn into permanent jobs. Some more details are below. Perfil 1: Pleno/Sênior Responsabilidades e Atribuições:...
