Compliance Lead, Information Security
Há 23 horas
**Compliance Lead, Information Security**
**Location: Remote**
**Department: IT**
**Reports to: Cyber Security Manager**
**Type: Full-time**
CAI Software is a leading provider of manufacturing ERP and production software solutions to more than fifteen vertical end markets in the process (food & beverage and chemicals), discrete (A&D, automotive parts) and distribution (food) sectors.
**About the Role**
**Key Responsibilities**
1. Compliance Program Management
- Lead and maintain compliance initiatives for ISO 27001, SOC 2 Type II, PCI DSS, and GDPR.
- Develop, implement, and maintain security policies, procedures, and controls aligned with regulatory and industry standards.
- Manage internal and external audits, coordinate evidence collection, and ensure timely remediation of findings.
**2. Risk Assessment & Governance**
- Conduct risk assessments to identify potential compliance gaps or control deficiencies.
- Collaborate with technical teams to implement mitigation plans and monitor progress.
- Support continuous improvement of the organization’s information security management system (ISMS).
**3. Documentation & Reporting**
- Maintain comprehensive documentation of compliance efforts, audit reports, and corrective actions.
- Provide regular updates and metrics to senior leadership on compliance posture.
- Ensure version control and accuracy across all security compliance documents.
**4. Cross-Functional Collaboration**
- Partner with internal departments to align business operations with compliance obligations.
- Provide guidance on security compliance requirements for new systems, vendors, and technologies.
- Support the training and awareness program to foster a culture of security and compliance.
**5. Audit & Certification Readiness**
- Serve as the primary contact for auditors, assessors, and certification bodies.
- Prepare and execute internal readiness reviews prior to external audits.
- Maintain ongoing compliance between audit cycles to ensure audit readiness at all times.
**Qualifications**
- Bachelor’s degree in Information Security, Information Technology, or a related field (or equivalent experience).
- 5+ years of experience in security compliance, audit management, or information security governance.
- Hands-on experience with ISO 27001, SOC 2 Type II, PCI DSS, and GDPR frameworks.
- Strong understanding of risk management, control design, and information security principles.
- Excellent project management, documentation, and communication skills.
- Preferred certifications: CISA, CISM, CISSP, or ISO 27001 Lead Implementer/Auditor.
**What You’ll Gain**
- Opportunity to drive compliance initiatives that impact organizational security and trust.
- Exposure to enterprise-level security frameworks and audit processes.
- Collaboration with technical and executive stakeholders across departments.
- Professional development in compliance leadership and risk management.
-
Network & Security Operations Analyst
1 semana atrás
Bahia, Brasil BYD Tempo inteiroResponsibilities:1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles.2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & Security Operations Analyst
2 semanas atrás
Bahia, Brasil BYD Tempo inteiroResponsibilities:1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles.2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & Security Operations Analyst
1 semana atrás
Bahia, Brasil BYD Tempo inteiroResponsibilities:1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles. 2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & Security Operations Analyst
1 semana atrás
Bahia, Brasil BYD Tempo inteiroResponsibilities: 1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles. 2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & security operations analyst
1 semana atrás
Bahia, Brasil BYD Tempo inteiroResponsibilities:1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles. 2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & Security Operations Analyst
1 semana atrás
Bahia, Nordeste, Brasil BYD Tempo inteiroResponsibilities:1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles.2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major network...
-
Network & Security Operations Analyst
3 semanas atrás
estado da bahia, Brasil BYD Tempo inteiroResponsibilities: 1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles. 2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major...
-
Network & Security Operations Analyst
1 semana atrás
estado da bahia, Brasil BYD Tempo inteiroResponsibilities: 1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles. 2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites. 3. Lead root-cause analysis (RCA) for major...
-
Coordenador De Segurança Da Informação
Há 6 dias
Bahia, Brasil G4F Tempo inteiroLíder Técnica de Segurança da Informação e Cibernética (Operações Ofensivas) Atribuições ao cargo: -Gestão das vulnerabilidades e articulação para as priorizações e correções; -Realizar o planejamento de atividades, definindo prazos e estratégias de priorização; -Elaborar planos de exercício de Red Team; -Realizar recomendações de...
-
Analista De Segurança Da Informação
Há 6 dias
Bahia, Brasil G4F Tempo inteiroSegurança da Informação e Cibernética (Operações Ofensivas) - (Hacker Ético e Análise de Vulnerabilidades) - Presencial Fortaleza/CE Interessados devem encaminhar currículo para: rafael.gpereira@g4f.com.br Atribuições ao cargo: Realizar análise de vulnerabilidade baseada em metodologia oficial, com no mínimo as seguintes fases: * Coleta de...
