Information Security Analyst III
We've been building since day one a diverse and ready to cross the oceans team and mindset with the most innovative professionals in their field. We are not only committed to delivering cutting-edge solutions to help our clients build their products. We want to promote change in how the world deals with financial services and impact millions of lives.
We are a Remote-first company, so yes, you can work pretty much from anywhere. But if you still need to go to the office every now and then, we currently have four offices located in Brazil (São Paulo), The USA (Austin), The UK (Bristol) and Singapore.
Investors
We are backed by some of the most prominent investment companies in the market, such as SoftBank, Amazon, Accel, B3, Falabella Ventures, Headline, PruVen and Redpoint eventures.
Read our Series B announcement here.
Summary
The Information Security Analyst - GRC involves performing comprehensive scoping, control assessments, and audit facilitation as part of the certification team. This person will work closely with cross-functional teams to assess risks and controls, work directly with Business Continuity, Disaster Recovery and Crisis Management, and assist with IT audit projects.
What you'll do
- Ensure the security process is governed by organizational policies and practices that are consistently applied;
- Require that data with similar criticality and sensitivity characteristics be protected consistently regardless of where in the organization it resides;
- Enforce compliance with the security program in a balanced and consistent manner across the organization and ensure adherence to applicable regulations;
- Routinely inform the Operations & Technology Committee & Management Risk Committee (MRC) of the overall status of the Institution’s Information Security Program to prevent cyber-attacks;
- Coordinate Risk Assessment audits, PCI DSS, PCI PIN Security, ISO 27001, ISO 22301, penetration/vulnerability tests, and other related assessments;
- Contribute to the definition of BC & DR strategy, policy, standards, plans, and direction;
- Be the subject matter expert on business continuity, disaster recovery, and crisis management, supporting business stakeholders;
- Structure, support, and coordinate regular business continuity and disaster recovery testing to assess the effectiveness of established plans and procedures;
- Structure, support, and coordinate all aspects of design, implementation, planning, testing, and governance of Business Continuity, Disaster Recovery, Emergency, and Crisis Management Plans within the company's Business Continuity scope;
- Ensure that the business, IT, and third-party teams involved are adequately trained in BC, DR, and Crisis requirements, policies, and standards and that the Business Continuity theme is disseminated throughout the company;
- Structure and conduct Business Impact Analysis (BIA);
- Create executive reports regarding strategies, test results, risks, and crises;
- Build and update business continuity KPIs;
Minimum Qualifications
- Experience of cybersecurity frameworks and audits such as ISO 27001, ISO 22301, PCI DSS, SOC 1 and SOC 2 and other regulatory requirements;
- Experience with Business Continuity, Disaster Recovery and Crisis Management;
- Desirable experience with Disaster Recovery with AWS;
Core Benefits
- Remote work
- Flexible hours
- Gympass
- Meal & Food vouchers
- Remote work financial support
- Life Insurance
- Medical and Dental Assistance
- Employee child care benefit: daycare
- Vidalink partnership
- Day off (Birthday)
- Support for studying languages
- 50% off AWS and GCP certifications
Technologies that we apply in our day
- SAST
- SCA
- IaC Scans
--
Our core values
Responsibility & Commitment
Responsibility and Commitment are key tenets of Pismo's business. In all of our interactions, ethics and honesty serve as guiding principles. Transparency and alignment are essential at Pismo to foster a culture of accountability where people do not take shortcuts and dare to be vulnerable. We encourage ownership and enable our employees to be a part of the solution to our challenges.
Challenging the Status Quo to Drive Change
Pismo is a disruptive company that knows we can’t count on what got us here to get us where we want to go. Instead of following trends, our team members create them. We strive for the best solution for every situation, not the easiest. Taking the ordinary or common sense route is insufficient. This is how we affect real change.
Minimum Friction Experience
Pismo's success depends on fluid, clear, and careful internal and external communication. Our solutions should address issues directly rather than causing new ones. We understand that learning and development is a positive outcome of necessary friction. We want our customers and employees to have a pleasant experience free of bureaucracy.
Collective Power
Pismo isn't simply mine, yours, or some other team's. All of our people have a good purpose for being here. Each of us, in our way, has the freedom to be ourselves and know we are accepted. Pismo values being a multicultural organisation. We are stronger, more efficient, and happier when we operate as a team.
Delivering Value and Excellence
Constant development is essential as it allows us to supply high-quality products and services while ensuring that we always bring value to our clients. Pismo recognises the importance of new information in breaking down boundaries and forging new possibilities. We pave the way and set trends by developing market-leading solutions.
Focus on People
People are a company's most valuable asset. That is why we prioritise attracting and hiring the best people, followed by personal and professional development. We invest in people's growth and empower them to take charge of their careers. We value work-life balance because we understand how difficult it can be to distinguish between work and life.
--
Pismo is an Equal Employment Opportunity employer that proudly pursues and hires a diverse workforce. Pismo does not make hiring or employment decisions on the basis of race, color, religion or religious belief, ethnic or national origin, nationality, sex, gender, gender identity, sexual orientation, disability, age or any other basis protected by applicable laws or prohibited by company policy. Pismo also strives for a healthy and safe workplace and strictly prohibits harassment of any kind.