Job Closed

This listing is no longer active.

Juvo logo
Juvo

We unlock economic opportunities and promote financial inclusion for 68% of adults in the world with no credit history.

Information Security Coordinator

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 51-200Since 2014H1B SponsorCompany SiteLinkedIn

Location

Brazil

Posted

72 days ago

Salary

0

Seniority

Senior

Bachelor Degree5 yrs expPortuguese

Job Description

Information Security Coordinator

Juvo

• Define and maintain the information security roadmap aligned with business objectives and required market updates; • Develop and periodically review the security plan, prioritizing initiatives based on risk analysis; • Propose investments in tools, processes, and training, justifying them with cost-benefit and risk analyses; • Present executive reports on security maturity and posture to leadership. • Structure and operate the monitoring, detection, and incident response process; • Analyze security logs and events to identify potential threats; • Conduct incident investigations and coordinate containment and remediation actions; • Develop and maintain playbooks and runbooks for incident handling. • Perform and coordinate vulnerability assessments on systems, applications, and infrastructure; • Conduct or oversee penetration tests (pentests) and security audits; • Keep the risk matrix up to date and propose mitigation plans; • Define and monitor security KPIs and metrics. • Implement, configure, and manage security tools (SIEM, EDR, DLP, WAF, IDS/IPS, SOAR); • Evaluate and recommend new security technologies and solutions; • Automate security processes whenever possible to improve operational efficiency. • Manage third-party SOC providers and security services; • Define SLAs, track deliveries, and ensure the quality of contracted services; • Coordinate phishing tests and pentests conducted by external partners. • Develop, review, and implement information security policies, standards, and procedures (LGPD, ISO 27001/27002, PCI DSS); • Serve as the security focal point with development, infrastructure, and compliance teams; • Ensure compliance with regulations and standards in the financial sector. • Act as the security liaison for vendor and client requests. • Plan and execute security awareness programs; • Promote training and educational campaigns for employees; • Foster a security culture across the organization. • Monitor trends, emerging threats, and market best practices; • Propose and lead continuous improvement initiatives to enhance security posture; • Participate in cybersecurity communities and events for networking and professional development.

Job Requirements

  • Self-driven, proactive professional with a strong sense of responsibility.
  • Identifies improvements and drives end-to-end solutions.
  • Sets priorities, plans activities, and manages the backlog.
  • Anticipates risks and opportunities for improvement.
  • Works independently with a growth-oriented view for the area.
  • Executive-level communication skills, translating technical topics for the business.
  • Bachelor's degree in Information Security, Computer Science, Information Systems, Computer Engineering, Computer Networks, or related fields.
  • Minimum of 5 years of proven experience in information security, with at least 2 years in a technical leadership or coordination role.
  • Experience in corporate environments, preferably in the financial or banking sector.
  • Proven track record of autonomous planning and execution of security initiatives.
  • Experience managing vendors and outsourced security services.
  • Familiarity with agile methodologies (Scrum, Kanban).

Benefits

  • Medical insurance
  • Dental insurance
  • Life insurance
  • Childcare allowance
  • 1 day off for your birthday
  • 2 wellness days
  • TotalPass
  • Meal allowance

Related Categories

Related Job Pages

More Security Engineer Jobs

Role Description DAS Health is seeking a Cybersecurity Operations Manager to lead and support our cybersecurity team, overseeing day-to-day operations, client service delivery, and compliance initiatives. This fully remote role blends leadership with hands-on technical expertise, ensuring strong security controls, proactive threat management, and adherence to regulatory requirements across both internal and client environments. Key Responsibilities - Leadership and Team Oversight: - Lead, mentor, and support the cybersecurity team’s daily operations - Provide escalation support and guidance across security incidents and initiatives - Establish and track KPIs to measure performance, efficiency, and service delivery - Collaborate with IT, Cloud Services, and Compliance teams to align security practices - Client-Facing Cybersecurity Services: - Oversee delivery of managed cybersecurity services across client environments - Ensure timely response to alerts, incidents, and escalations - Conduct risk assessments, security reviews, and compliance evaluations (HIPAA, SOC 2, HITRUST) - Support onboarding of new clients into cybersecurity services - Deliver both technical and executive-level reporting on security posture - Hands-On Technical Execution: - Participate in incident detection, investigation, and remediation - Perform vulnerability assessments, log analysis, and forensic investigations - Support and optimize SIEM, EDR, and related tools - Assist with securing Microsoft 365, Azure, and cloud-based environments - Governance, Risk, and Compliance: - Maintain compliance with healthcare security frameworks including HIPAA, HITRUST, NIST CSF, and SOC 2 - Develop and maintain policies, procedures, and security documentation - Support internal and external audits and remediation efforts - Process Improvement and Optimization: - Evaluate and improve existing security workflows and processes - Identify automation opportunities to increase efficiency - Develop dashboards and reporting metrics for performance tracking - Training and Awareness: - Mentor and develop cybersecurity team members - Support internal and client-facing security awareness initiatives - Lead tabletop exercises and post-incident reviews Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field - 5–8+ years of cybersecurity operations experience - 2–3+ years of leadership experience within cybersecurity operations - Strong experience with SIEM, EDR, DLP, and vulnerability management tools - Experience securing Microsoft 365, Azure, and cloud environments - Knowledge of healthcare security frameworks (HIPAA, HITECH, HITRUST, NIST, SOC 2) - Hands-on experience with incident response and forensic analysis - Experience working with MSSPs and third-party vendors - Scripting or automation experience (PowerShell, Python) is a plus Preferred Certifications - CISSP - CISM - HCISPP - GCIH - CEH - or equivalent Benefits - Fully remote work environment with a collaborative, team-driven culture - Opportunity to lead and shape cybersecurity operations in a growing healthcare IT organization - Exposure to diverse client environments and leading security technologies - Career growth and leadership development opportunities

United States
Job Closed
Capco logo

Information Security Specialist, Advanced English

Capco

Capco, a Wipro company, is a management & technology consultancy dedicated to the financial services & energy industries

Full TimeRemoteTeam 1,001-5,000Since 1998H1B Sponsor

• Manage and administer corporate endpoint security solutions, ensuring that tools are deployed, configured, monitored, and operating effectively. • Administer and enhance endpoint security policies, rules, and standards across global environments. • Support and troubleshoot endpoint agent installations and failures, including escalation to vendors when necessary. • Provide escalation support to junior administrators and operational teams. • Work closely with SOC, Vulnerability Management, Infrastructure, and Desktop Support teams to manage incidents and drive remediation. • Support the investigation and resolution of endpoint security incidents, including DLP, malware, and policy violations. • Collaborate with the SIEM team to ensure that alerts, vulnerabilities, and endpoint-related trends are properly analyzed. • Diagnose and resolve complex issues on endpoints, servers, software, and communication devices. • Ensure that identified issues, risks, and non-conformities are reported, tracked, and remediated effectively. • Develop and deliver weekly, monthly, quarterly, and annual security reports. • Support audits, penetration testing, and remediation follow-up. • Maintain clear and accurate documentation for tools, automation, and processes. • Collaborate with vendors, internal stakeholders, and end users to gather requirements and improve solutions.

Brazil
Job Closed
Pantheon Platform logo

Senior Security Engineer

Pantheon Platform

Website Operations Platform for Drupal & WordPress

Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Implement “Security by Design” within agile software development and cloud-native environments • Act as a Subject Matter Experts (SMEs), mentoring, coaching, and supporting all security engineering efforts across the organization • Define, organize, and implement application security policy, process, standards, and guidelines • Helping engineering teams design and build high-performing, secure applications by mitigating security issues in a risk-based manner • Define, document, and champion processes and practices for a secure Software Development Life Cycle (SDLC) • Be a driving force in establishing a strong security culture within platform engineering teams • Lead Threat Modeling as a core principle for the Secure by Design strategy • Conduct Secure Code and Architecture Design Reviews, including threat modeling and technology/risk-based assessments • Automate application security testing and controls, integrating them directly into the CI/CD pipelines • Responsible for the deployment, operation, and tuning of security tools (SAST, DAST, IAST, and CSPM) • Partner with engineering to effectively prioritize and remediate identified vulnerabilities • Manage tools for Software Composition Analysis (SCA) to ensure supply chain security

Canada
$121K - $151K / year
Job Closed
Code and Theory logo

Associate Director, Security & Compliance

Code and Theory

Code and Theory is a digital-first creative agency that sits at the center of creativity and technology.

Full TimeRemoteTeam 1,001-5,000Since 2011H1B Sponsor

Role Description We are seeking an Associate Director, Security & Compliance to lead security, privacy, and compliance for our SaaS products and the client projects we deliver as an agency. You will own this capability end to end, from new business through implementation, certification, and ongoing monitoring. This role is central to how we win and deliver projects, protect client and company data, and earn trust through clear, high quality security and privacy practices. You will be responsible for audit readiness, ensuring applicable privacy requirements are met, and establishing the standards, processes, and tooling needed to run an effective security and privacy program. The Machine is Stagwell’s AI orchestration platform powering creative and strategic work across the Stagwell network. It unites data, AI, and human insight to help marketers collaborate better, produce more effective work, and act faster. The Machine team operates at the intersection of product, engineering, design, and strategy, building tools that make agencies and brands smarter. Qualifications - 8+ years of progressive experience in information security, including leadership in SaaS and/or professional services environments - Strong understanding of modern application and cloud security fundamentals (identity and access, encryption and key management, logging and monitoring, vulnerability management) - Demonstrated ownership of SOC 2 Type II and ISO 27001 programs from readiness through steady state operations - Strong working knowledge of privacy requirements and practices, including HIPAA, GDPR, and CCPA/CPRA, and experience operationalizing privacy controls in product and client delivery contexts - Experience building security and privacy processes that work in real delivery environments - Clear communication skills, able to represent security and privacy with internal teams, auditors, and client stakeholders with differing levels of technical fluency - Comfort operating across a geographically dispersed organization and coordinating work across time zones Requirements - Lead our security program across SaaS products and client projects, setting strategy, priorities, and measurable outcomes - Lead SOC 2 Type II, ISO 27001, and ISO 42001 readiness and ongoing compliance, including control design, evidence processes, and auditor coordination. Own ISMS and AI governance documentation and oversight - Lead privacy governance and operational practices, ensuring compliance with applicable requirements including HIPAA, GDPR, and CCPA/CPRA, and addressing data handling, contractual privacy terms, and privacy by design expectations - Partner with delivery teams to embed security and privacy into how we build, with clear expectations, practical review gates, and patterns for common risks (identity, access, data handling, multi-tenancy, logging, and auditability) - Establish a repeatable client engagement security plan for client work (environment segregation, access provisioning and deprovisioning, client data handling, incident coordination, and delivery requirements) - Lead vendor security reviews, including due diligence for critical providers, remediation tracking, and ongoing monitoring - Support customer assurance efforts including security questionnaires, RFPs, client security reviews, and maintaining trust artifacts and standard responses - Maintain an incident response program (playbooks, escalation, exercises) and drive post incident improvements - Build a security and privacy culture through clear guidance, lightweight training, and day to day partnership with teams Benefits - The target range of base compensation for this role is $140,000 - $175,000. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and location.

United States
$140K - $175K / year