Security GRC Analyst

📋 Description

• Take ownership of our Governance, Risk, and Compliance (GRC) platform, ensuring that evidence, controls, and risks are accurately tracked and regularly updated.

• Assist with both internal and external audits (PCI, SOC 1 and 2, BCB 85/21), including control testing and remediation follow-up.

• Identify risks, establish controls, and collaborate with teams from Cybersecurity, Engineering, Product, and Legal.

• Contribute to the development of our automated bots that enhance GRC processes.

• Investigate possibilities for automating and integrating GRC workflows through APIs, scripts, or AI technologies.

⛳️ Requirements

• Prior experience in Security GRC, auditing, or risk management.

• Knowledge of frameworks such as PCI DSS, PCI PIN, PCI SSF, PCI MPoC, SOC 1 and 2, ISO 27001, and BCB Resolution 85/21.

• Strong communication and documentation abilities.

• Proficient analytical skills and a methodical approach to problem-solving.

• Willingness to learn about cloud security, automation, and AI-driven bots.

🏝️ Benefits

• Health insurance

• Flexible work arrangements