About the role

Internal Controls Analyst focusing on IT compliance and risk management for a leading logistics operator in Brazil. Collaborating with various sectors to enhance internal controls and ensure governance standards.

Responsibilities

Map, document, and keep IT processes up to date, identifying risks, control points, and opportunities for continuous improvement in the internal control environment.
Perform effectiveness testing of ITGC (IT General Controls), evaluating the design and operation of controls, identifying weaknesses, and proposing recommendations to strengthen the control environment.
Perform analyses and tests of the Segregation of Duties (SoD) matrix in corporate systems, identifying access conflicts, associated risks, and mitigation recommendations.
Monitor and follow up on action plans related to operational risks and IT internal controls, ensuring deadlines are met, evidence quality, and proper closure of actions.
Prepare technical and executive reports presenting analyses, findings, recommendations, and conclusions arising from the work performed.
Support the review and update of policies, standards, and procedures, ensuring standardization and adherence to corporate governance guidelines.
Support internal and external audits by providing information and evidence and monitoring the implementation of recommendations.
Work in partnership with business areas to identify risks, define controls, and mitigate process weaknesses.
Support Risk Management in the implementation and maintenance of IT-related Business Continuity controls, ensuring compliance with internal policies and applicable standards.

Bachelor's degree in Information Technology, Information Systems, Computer Science, Engineering, Business Administration, Accounting, or related fields.
Experience in Internal Controls, IT Audit, Risk Management, or Compliance.
Experience assessing ITGC (IT General Controls).
Experience in process mapping and documentation, and in identifying risks and controls.
Experience with Segregation of Duties (SoD) and access analysis in corporate systems.
Knowledge of governance and control frameworks and best practices, such as COBIT, COSO, ITIL, or ISO 27001.
Experience preparing technical and executive reports.
Experience supporting internal and external audits.
Experience with risk management or GRC tools.
Experience in corporate risk management and business continuity (BCM).
Preferred: Certifications such as CISA, CRISC, CIA, or ISO 27001.
Behavioral profile: analytical, organized, and proactive professional, with attention to detail, critical judgment for identifying risks, and strong communication skills to collaborate with different areas across the organization.
Availability to work hybrid in São Bernardo do Campo, SP – in-office 3 days per week.

Medical Insurance: Medical plan with co-participation (co-pay), extendable to legal dependents, ensuring care and peace of mind for you and your family.
Dental Assistance: Dental plan also extendable to legal dependents, promoting daily health and well-being.
Meal Benefit: Benefit for meals during work hours, providing convenience and comfort during your routine.
Food Allowance: Monthly amount to support grocery purchases, contributing to meals at and outside of work.
Transportation Allowance: In accordance with current legislation, to facilitate commuting to work.
Life Insurance: Additional security and protection for you and your dependents.
Wellhub + Wellz: Access to gyms, physical activities, mental health support, and wellness programs.
Partnerships with Educational Institutions: Exclusive discounts on undergraduate, graduate, language courses, and professional training.
'Fica Bem' Program: Specialized support offering legal, financial, and psychological guidance, promoting balance and holistic care.