AuditSafe
Cybersecurity • Compliance • B2B
AuditSafe is a Brazilian cybersecurity and compliance consultancy that provides a broad range of services including PCI DSS and PCI PIN compliance, GRC (governance, risk and compliance), incident response, virtual CISO, privacy (LGPD) and ISO implementations, penetration testing, business continuity and segregation of duties. It delivers managed and advisory services for executives and boards, risk assessments, and a Security 360° program to help organizations strengthen information security, regulatory compliance and resilience against cyber threats.
51 - 200 employees
Founded 2005
🔒 Cybersecurity
📋 Compliance
🤝 B2B
Associate Consultant – GRC
Job not on LinkedIn
November 25
🗣️🇧🇷🇵🇹 Portuguese Required
AuditSafe
Cybersecurity • Compliance • B2B
AuditSafe is a Brazilian cybersecurity and compliance consultancy that provides a broad range of services including PCI DSS and PCI PIN compliance, GRC (governance, risk and compliance), incident response, virtual CISO, privacy (LGPD) and ISO implementations, penetration testing, business continuity and segregation of duties. It delivers managed and advisory services for executives and boards, risk assessments, and a Security 360° program to help organizations strengthen information security, regulatory compliance and resilience against cyber threats.
51 - 200 employees
Founded 2005
🔒 Cybersecurity
📋 Compliance
🤝 B2B
📋 Description
• Analyze and develop security policies, proposing continuous improvements; • Assess evidence of information security controls in on-premises and cloud environments; • Support client responses to security questionnaires; • Assist clients in measuring and enforcing policies (testing, control design, and validation); • Review, identify, and assess information security and privacy risks; • Work on the Segregation of Duties (SoD) matrix and oversee its implementation; • Apply frameworks such as NIST and CIS; • Lead status meetings and perform internal audits of the Information Security Management System (ISMS).
🎯 Requirements
• Knowledge of ISO/IEC 27001, 27002, 27701, 27017, and 27018; • Experience with SOC 2; • Solid practical experience in risk management (mapping, identification, assessment, and documentation); • Experience with layers of information security controls (design, testing, and evidence collection); • General understanding of technology processes: change management, systems development, and incident management; • Lead Auditor certification for ISO 22301.
🏖️ Benefits
• Cybersecurity consulting • Security auditing • Penetration testing • Regulatory compliance • Risk management
Apply NowSimilar Jobs
November 25
Regulatory Affairs Specialist ensuring compliance with food contact regulations for new products. Collaborating with stakeholders and regulatory authorities on approvals and certifications in the chemical industry.
November 18
EH&S Specialist III ensuring compliance with regulatory requirements for product introduction at Solenis. Developing solutions for regulatory issues and collaborating with stakeholders in a remote capacity.
November 13
Consultant for SAP ABAP focusing on projects with DRC, GRC NF-e or inbound solutions. Join a consultancy with over 30 years in the SAP market, working on strategic fiscal integration.
🗣️🇧🇷🇵🇹 Portuguese Required
October 28
Regulatory Data Specialist updating and organizing databases across 20+ countries for a global digital regulatory infrastructure powered by AI. Collaborating with innovation teams and managing various data tools.
October 28
Business Executive handling sales for GRC SaaS solutions in Brazil. Leading negotiations and ensuring client satisfaction throughout the sales cycle.
🗣️🇧🇷🇵🇹 Portuguese Required