
5001 - 10000 employees
Founded 1905
⚡ Energy
👥 B2C
🤝 B2B
Energy • B2C • B2B
Light is a Brazilian electric utility that generates, distributes and commercializes electricity to residential and commercial customers in the Rio de Janeiro area. The company provides billing and customer services (online and in-person), grid maintenance and expansion, anti-theft and emergency response operations, programs for energy efficiency, distributed generation and sustainability, and community and cultural initiatives.
🕒 February 6
Improve your chances of getting an interview by checking your resume score before you apply.

5001 - 10000 employees
Founded 1905
⚡ Energy
👥 B2C
🤝 B2B
Energy • B2C • B2B
Light is a Brazilian electric utility that generates, distributes and commercializes electricity to residential and commercial customers in the Rio de Janeiro area. The company provides billing and customer services (online and in-person), grid maintenance and expansion, anti-theft and emergency response operations, programs for energy efficiency, distributed generation and sustainability, and community and cultural initiatives.
• Run SOC 1, SOC 2 (Type I & II), and PCI DSS compliance programmes • Plan and manage audits, timelines, and auditor relationships • Own evidence collection, review, and submission • Track audit findings and ensure remediation is delivered with engineering • Work with DevSecOps to ensure controls are implemented in: IAM and access management, CI/CD pipelines, Infrastructure as code, Logging, monitoring, and alerting • Maintain and update security and compliance policies and procedures • Own risk registers, exceptions, and compensating controls • Support customer security questionnaires and vendor due diligence • Document controls clearly for auditors, customers, and internal teams • Partner with the Head of Engineering on compliance priorities and roadmap
• 4–7 years’ experience in compliance, risk, or security roles • Hands-on ownership of SOC 1, SOC 2, and/or PCI DSS audits • Experience working directly with engineering or DevSecOps teams • Working knowledge of cloud infrastructure and software delivery • Experience managing evidence, audit requests, and remediation tracking • Strong written and verbal communication skills • High attention to detail and ability to manage multiple deadlines • Bonus points: Experience in fintech, payments, or financial systems; Familiarity with PCI; Experience with compliance tooling (Vanta, Drata, Secureframe); Background in engineering, IT operations, or security
• Competitive salary + potential stock options • 25 days of annual leave + public holidays • Regular socials and company Starsite off-sites • A huge opportunity for career growth as you will help shape a market-defining product
Apply Now