
Information Security Senior Analyst
Há 7 dias
Company Overview:
If you see technology as there to smooth your path in life, our team does too: Your Path, Our Journey.
We believe in people who transform their paths through technology. Technology that connects people who are good at what they do and which practices diversity to create and share those paths that we (as yet) do not even know about. Our journey is in the smile of every talented person who brings revolution to the world from Brazil - whether with in-app transportation (99) or digital payments (99Pay).
To make life easier for millions of people every day, we are in the driving seat as part of DiDi Chuxing, the world's largest transport, and convenient platform. And so, we can say, with great pride, that we are pioneers in creating solutions, starting in Brazil, that grow in scale and have positive impacts in a range of other countries.
Whether creating projects from scratch or continually improving our solutions, we like challenges that give us butterflies, and that's why we work with intensity, at a fast pace, with respect, collaboration, and partnership. On this journey, we also create learning and strengthen ourselves in diversity as a fundamental aspect that makes us stand out for our growth day after day.
Team Overview:
The Information Security Senior Analyst will be responsible for monitoring activities related to vulnerability management and ensuring compliance with privacy regulations on a daily basis.
Role Responsibilities:
- Monitor activities for vulnerability management and ensure compliance with relevant privacy regulations.
- Monitor audits, create and monitor corrective action plans to address compliance and privacy gaps.
- Follow security incidents until closure, adhering to the incident management process.
- Advise and report on industry best practices for compliance and privacy.
- Stay up-to-date on security trends, especially those related to compliance and privacy, and report as necessary.
- Lead investigations into cyber security breaches and intrusions with a focus on compliance and privacy.
- Provide a coordinated response to complex cyber attacks, ensuring compliance with privacy regulations.
- Create reports, procedures, and playbooks for incident response activities with a strong emphasis on compliance and privacy.
Role Qualifications:
- Demonstrated experience in cloud security and Security Operations (SecOps) with a focus on compliance and privacy.
- Solid understanding of security concepts, particularly in relation to compliance and privacy requirements.
- 3+ years of combined experience in related information security fields, with specific experience in critical analysis to identify and address information security issues with compliance and privacy considerations.
- Advanced proficiency in spoken and written English, as all reports must be written in this language.
- Experience in CSIRT/DIRT practices (Computer Security Incident Response Team/ Digital Incident Response Team).
- Certifications: Security+ or/and any additional certifications related to compliance and privacy would be beneficial.
- Previous experience working in a Security Operations Center (SOC),
- Managed Security Services (MSS), or incident handling role.
- Broad knowledge of security practices and standards prevalent in the industry, with a strong emphasis on compliance and privacy.
- Ability to plan, organize, and meet deadlines while considering compliance and privacy requirements.
EEO Statement:
**You'll love working at DiDi because**
- We create customer value - We strive to always create valuable experiences for our users in everything we do. Our focus is to always innovate new experiences that are safe, pleasant, and efficient.
- We are data-driven - We are strong believers in making informed decisions, that’s why we are data-driven. We can better navigate the business landscape strategically by analyzing valuable metrics.
- We believe in Win-win Collaboration - Success is a team sport. When we work to help our partners and colleagues win, we win, too. While keeping everyone's best interest at heart, we communicate with candor and execute with excellence in all we do.
- We believe in integrity - Integrity is at the very core of our business. We are people who always want to do the right thing. Our intentions are sincere, we speak our minds and listen to each other.
- We always strive to do better. That means venturing beyond our comfort zones, learning from our mistakes, and helping each other grow.
- We believe in Diversity and Inclusion - Diversity is one of our biggest strengths. Our differences are what makes us distinct. We respect each other and believe in equal opportunities for all.
**Diversity & Inclusion**
Diversity is not a vision of the future or something we wish to have one day, it is a non-negotiable value of who we are.
We practice inclusion, plurality, and respect. And we count on the governance of the Diversity Committee, which works together with HR, lea
-
Senior Information Security GRC Analyst
4 semanas atrás
Região Geográfica Intermediária de São Paulo, São Paulo, Brazil WEX Tempo inteiroJoin to apply for the Senior Information Security GRC Analyst role at WEXJoin to apply for the Senior Information Security GRC Analyst role at WEXGet AI-powered advice on this job and more exclusive features.About The Team/RoleWe are seeking a highly experienced and proactive Information Security GRC Analyst Level 3 – PCI DSS Compliance to support our...
-
Senior Information Security Metrics Analyst
3 semanas atrás
São Paulo, São Paulo, Brasil IQVIA Tempo inteiro**Role**:As a** Senior Information Security Metrics Analyst, **you will play a crucial role in ensuring the security and compliance of our organization. You'll be responsible for analyzing, measuring, and reporting on various security metrics to enhance our overall security posture. Your expertise will guide decision-making and risk management...
-
Information Security Analyst Ii
3 semanas atrás
São Paulo, São Paulo, Brasil Sovos Compliance Tempo inteiro**The Work You'll Do**The Sovos Information Security Analyst II is tasked with security systems administration and implementation and the investigations and review of system alerts, logs, and reports. This member of the Information Security Team will also assist with the architectural design, planning, and implementation of enterprise operational defenses...
-
Senior Information Security GRC Analyst
Há 6 dias
Greater São Paulo Area, Brasil WEX Tempo inteiro R$90.000 - R$120.000 por anoAbout The Team/RoleWe are seeking a highly experienced and proactive Information Security GRC Analyst Level 3 – PCI DSS Compliance to support our organization's PCI DSS compliance efforts. This role will focus on ensuring strict adherence to the Payment Card Industry Data Security Standard (PCI DSS) while contributing to broader governance, risk, and...
-
Information Security Analyst
3 semanas atrás
São Paulo, São Paulo, Brasil Siemens Healthineers Tempo inteiroDo you want to help create the future of healthcare? Siemens Healthineers is a place for people who dedicate their energy and passion to this greater cause. It reflects their pioneering spirit combined with our long history of engineering in the ever evolving healthcare industry.We offer you a flexible and dynamic environment where you have the space to...
-
Business Information Security Officer
48 minutos atrás
Sao Paulo, Brasil Bank of America Tempo inteiro**LATAM GIS BISO searches for a Business Information Security Officer** **Responsibilities**: Advise LOB management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs; - Monitor information security trends internal and external to the bank and keep LOB leadership...
-
IT Business Analyst
2 semanas atrás
Sao Paulo, Brasil Talent Locker Tempo inteiroIT Business Analyst (cyber security / information security), Contract, Sao Paolo, Brazil. $200 per day, 6 month contractSummary:Contract job for a Business Analyst in an Agile environment, collaborating with various stakeholders to ensure that cybersecurity products and services align with program objectives. Responsibilities include conducting cyber...
-
Cyber Security Senior Analyst
2 semanas atrás
Sao Paulo, Brasil Santander Tempo inteiroCyber Security Senior AnalystCountry: Brazil**WHAT YOU WILL BE DOING****Atividades**Como analista sênior do time de gestão de identidades e acessos, você será responsável pela execução e acompanhamento de projetos relacionados a integração de aplicações catalogadas para o nosso sistema central de gestão de acessos, garantindo a execução dos...
-
Security Analyst
3 semanas atrás
São Paulo, Brasil Bunge Iberica SA Tempo inteiroOverview The Security Analyst II serves as Tier 1-2 Analyst member of the Bunge Global SOC and all operational activities that serve to protect the confidentiality, integrity and security management of business and employee information and systems in compliance with organization policies and standards. He/she will focus on structured tasks associated with...
-
Security Analyst
3 semanas atrás
São Paulo, São Paulo, Brasil Bunge Iberica SA Tempo inteiroOverview The Security Analyst II serves as Tier 1-2 Analyst member of the Bunge Global SOC and all operational activities that serve to protect the confidentiality, integrity and security management of business and employee information and systems in compliance with organization policies and standards. He/she will focus on structured tasks associated with...