Legal & Compliance Specialist

📋 Description

• Take ownership of compliance execution across various frameworks and regulations, including ISO 27001, ISO 27701, SOC 2, ISO 9001, HIPAA, and GDPR;

• Oversee Nutrium's GRC platform, managing controls, evidence, tasks, audits, and remediation plans;

• Prepare for and assist with internal and external audits;

• Enhance and maintain internal policies, procedures, controls, and compliance documentation;

• Collaborate with Engineering, Legal, and Operations teams, as well as external consultants, to ensure effective implementation of compliance requirements;

• Address security questionnaires, due diligence requests, and compliance-related documentation needs;

• Support meetings with international clients, including those in the US, regarding security, privacy, compliance, and data flow issues;

• Provide operational legal support, encompassing initial reviews of standard contracts, NDAs, DPAs, templates, signatures, filing, and documentation.

⛳️ Requirements

• Possess a Bachelor's degree in Law, preferably with a specialization in Information Security, Cybersecurity, Data Protection, or a related field;

• Have 2 - 4 years of experience in compliance, legal operations, privacy, risk, governance, or a similar area, ideally within a regulated environment (experience in healthcare, SaaS, or fintech is advantageous);

• Be familiar with frameworks such as ISO 27001, ISO 27701, SOC 2, ISO 9001, HIPAA, and GDPR (hands-on experience with any of these is a plus);

• Have experience utilizing GRC platforms to manage controls, evidence, and audit processes (this is a nice-to-have);

• Be at ease preparing for and assisting with internal and external audits;

• Have experience in responding to client security questionnaires and due diligence inquiries;

• Be confident in reviewing standard legal documents, including NDAs, DPAs, and service agreements;

• Be highly organized, structured, and detail-oriented, with a strong sense of ownership over follow-ups and deadlines;

• Thrive in collaborative environments and enjoy working with cross-functional teams and external consultants;

• Be fluent in both Portuguese and English (additional languages are a plus).

🏝️ Benefits

• A flexible work model and hours

• 27 days of annual leave

• Unlimited nutritional appointments (via Nutrium Care)

• Unlimited psychology sessions

• Health insurance

• Meal allowance: 10.46€ per working day

• Professional development budget

• Snacks and quality coffee available in the offices

• A multicultural team that enjoys spending time together, not only during work but also through team activities, social events, and our annual offsite.