Solution Owner overseeing Trackwise systems for regulatory and quality solutions at Convatec. Balancing technical expertise with strategic vision to optimize processes and maintain system integrity.
About the role
- Senior Information Security Analyst ensuring compliance and data privacy at VERO. Involved in governance, risk management, and promoting security culture.
Responsibilities
- Drive the structuring, operationalization and evolution of Information Security, Risk and Privacy practices, ensuring the protection of information assets, regulatory compliance and support for strategic decision-making through the implementation and strengthening of the Information Security Management System (ISMS) and integration of controls into business processes, with corporate-wide scope across the organization.
- Ensure compliance with standards, internal policies and regulatory requirements through the structuring and execution of internal audits, maturity assessments of critical vendors and monitoring of corrective action plans.
- Provide executive visibility on risks and information security through the definition and management of metrics, creation of dashboards and preparation of management reports to support decision-making.
- Ensure governance of Information Security and Risk topics by organizing and conducting committees, preparing executive materials, recording decisions and following up on action plans.
- Ensure integration of security and privacy requirements into corporate processes and projects by collaborating with business areas and applying security and privacy by design principles.
- Ensure compliance with personal data protection legislation by providing operational support to the DPO, structuring and managing processes such as data subject requests, data inventory (RoPA) and conducting impact assessments (DPIA and BIA).
- Promote an Information Security and Privacy culture across the organization through training, awareness and dissemination of best practices with business areas.
Requirements
- Proven experience in Information Security with work in GRC, including implementation and maintenance of an ISMS, risk management, audits, regulatory compliance (especially LGPD), data privacy, interaction with business areas and leading governance and metrics initiatives.
- Bachelor's degree in Information Systems, Computer Engineering, Computer Science, Networks or related fields.
- Postgraduate degree or specialization in Information Security, Risk Management, Compliance, IT Governance or Data Privacy is desirable.
- Advanced knowledge of Information Security Management (ISMS).
- Advanced knowledge of Enterprise and IT Risk Management.
- Advanced knowledge of LGPD and Data Privacy.
- Advanced knowledge of Governance and Compliance (e.g., ISO 27001, NIST).
- Intermediate knowledge of Power BI.
- Executive communication and committee facilitation.
- Stakeholder management and organizational influence.
- Organization, prioritization and autonomy.
Benefits
- Flexible Benefits Plan
- Transportation allowance
- Health insurance
- Dental insurance
- Life insurance
- PPR (Performance-Based Bonus Program)
- Growth opportunities
- Childcare assistance
- Allowance for employees with children with disabilities
- Day Off (one day off during your birthday month)
- TotalPass (discounts on gyms/sports)
- Corporate University
- PAS (Vero Social Assistance Program)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Digital Communications Surveillance Analyst at S&P Global Ratings monitoring electronic communications for regulatory compliance. Collaborating with global teams and identifying potential compliance issues.
Senior Director overseeing Quality & Regulatory Strategy for innovative medical device company. Partnering with executives to drive compliance and operational excellence in a regulated environment.
Risk & Compliance Manager overseeing compliance frameworks at Plenti, a growing fintech lender. Bridging regulatory compliance and operational risk to support sustainable growth.
Compliance Testing Manager responsible for planning and executing compliance testing and validations. Leading specialist teams while ensuring regulatory compliance in the U.S. banking sector.
Senior Business Management Specialist leading significant compliance strategy and governance activities for TD Bank. Managing risk and oversight processes while collaborating across multiple functions.
Regulatory Affairs Assistant focused on pharmaceutical - related logistics at PINEX. Engaging in regulatory analysis, documentation, and compliance monitoring.
Regulatory Compliance Specialist overseeing compliance for Arc'teryx raw materials and goods. Collaborating across teams to uphold regulatory frameworks and ensure consumer safety with legal standards in focus.
Head of Compliance at Compass managing enterprise risk, information security, and multi - jurisdictional regulatory compliance. Building compliance frameworks in an exciting high - growth SaaS environment.
Regional Regulatory Lead overseeing EUCAN regulatory strategy for pharmaceutical projects and products. Planning submissions, coordinating meetings, and collaborating with regulatory authorities.