Information Security Analyst (GRC)

Posted Mar 22

We've been building since day one a diverse and ready to cross the oceans team and mindset with the most innovative professionals in their field. We are not only committed to delivering cutting-edge solutions to help our clients build their products. We want to promote change in how the world deals with financial services and impact millions of lives.

We are a Remote-first company, so yes, you can work pretty much from anywhere. But if you still need to go to the office every now and then, we currently have four offices located in Brazil (São Paulo), The USA (Austin), The UK (Bristol) and Singapore.

Investors

We are backed by some of the most prominent investment companies in the market, such as SoftBank, Amazon, Accel, B3, Falabella Ventures, Headline, PruVen and Redpoint eventures.

Read our Series B announcement here.

 

Summary

The Information Security Analyst- GRC involves performing comprehensive scoping, control assessments, and audit facilitation as part of the certification team. This person will be responsible for working closely with cross-functional teams to evaluate risks and controls and lead various IT audit and certification management projects.

What you'll do

  • Supporting an industry-leading third-party audit and certification program alongside a team of outstanding individuals
  • Facilitating external audits and act as a liaison between auditors and control owners to ensure audit success
  • Experience in interpreting and assessing controls using compliance frameworks with a focus on payment card compliance and security
  • Thriving in fast-paced environments and pivoting priorities while demonstrating the ability to quickly adapt in the face of constantly evolving cybersecurity challenges
  • Providing candid and clear feedback on critical cybersecurity initiatives from policies to application designs and much more.

Minimum Qualifications

  • Experience of cybersecurity frameworks such as ISO 27001, PCI-DSS, SOC 2, NIST CSF and other regulatory requirements.
  • Desirable experience with with one of PCI PIN Security, Key Management Service, HSMs, and Cryptography.

Core Benefits

  • Annual leaves
  • Ability to buy/encash/carry over annual leave
  • Heating Allowance
  • Internet subsidy
  • Health Insurance
  • Dental care
  • Life Insurance
  • Pension Contributions
  • Thanks Ben – Health & Wellbeing Virtual Card
  • Thanks Ben – Work from Home Virtual Card
  • Thanks Ben – Optical Plan Virtual Card

Technologies that we apply in our day

  • Java, Groovy and Go
  • Automate Testing 
  • SQL /  NoSQL
  • Git
  • APIs Rest e data Streaming
  • Cloud (AWS and Google)
  • Docker

--

Our core values

Responsibility & Commitment

Responsibility and Commitment are key tenets of Pismo's business. In all of our interactions, ethics and honesty serve as guiding principles. Transparency and alignment are essential at Pismo to foster a culture of accountability where people do not take shortcuts and dare to be vulnerable. We encourage ownership and enable our employees to be a part of the solution to our challenges.

Challenging the Status Quo to Drive Change

Pismo is a disruptive company that knows we can’t count on what got us here to get us where we want to go. Instead of following trends, our team members create them. We strive for the best solution for every situation, not the easiest. Taking the ordinary or common sense route is insufficient. This is how we affect real change.

Minimum Friction Experience   

Pismo's success depends on fluid, clear, and careful internal and external communication. Our solutions should address issues directly rather than causing new ones. We understand that learning and development is a positive outcome of necessary friction. We want our customers and employees to have a pleasant experience free of bureaucracy.

Collective Power

Pismo isn't simply mine, yours, or some other team's. All of our people have a good purpose for being here. Each of us, in our way, has the freedom to be ourselves and know we are accepted. Pismo values being a multicultural organisation. We are stronger, more efficient, and happier when we operate as a team.

Delivering Value and Excellence

Constant development is essential as it allows us to supply high-quality products and services while ensuring that we always bring value to our clients. Pismo recognises the importance of new information in breaking down boundaries and forging new possibilities. We pave the way and set trends by developing market-leading solutions.

Focus on People

People are a company's most valuable asset. That is why we prioritise attracting and hiring the best people, followed by personal and professional development. We invest in people's growth and empower them to take charge of their careers. We value work-life balance because we understand how difficult it can be to distinguish between work and life.

--

Pismo is an Equal Employment Opportunity employer that proudly pursues and hires a diverse workforce. Pismo does not make hiring or employment decisions on the basis of race, color, religion or religious belief, ethnic or national origin, nationality, sex, gender, gender identity, sexual orientation, disability, age or any other basis protected by applicable laws or prohibited by company policy. Pismo also strives for a healthy and safe workplace and strictly prohibits harassment of any kind.