Security Compliance Analyst 3 | DOTS
Brazil
Gympass
Gympass ist ein umfassendes Firmenfitnessprogramm mit der größten Auswahl an Sport-, Freizeit- und Wellnessangeboten, Kursen, Training und Wellbeing-Apps.GET TO KNOW US
We simplify wellness so you can find everything in one place. Gympass is a corporate wellness platform that connects you to thousands of fitness & wellness partners, all with one simple monthly membership. Founded in 2012 and headquartered in NYC, we have a growing global team in 11 offices around the world. At Gympass, you not only have the opportunity to build a career in a fast-paced global environment - but you'll make wellbeing universal, so everyone can be happy and healthy.
WHAT MAKES A GYMPASSER?
We are passionate about our mission! Whatever your job title is, here you can make a global impact and change people’s lives. At Gympass, we collaborate, set high achievable goal expectations, and focus on the end result. It's a challenging, evolving environment that allows you to learn and grow. You will face a disruptive and emerging business model that will push you in several areas, with no boundaries for creation and collaboration.
THE OPPORTUNITY
We are looking for a team member to help us on customer's cybersecurity compliance assessmets focus on replying to their audit questionnaires, help the Infosec Team, IT and Infrastructure Teams to drive the strategy to improve our security architecture, and find how to improve the way we work to deliver an amazing product that our customers can trust.
We are all in the cloud and use software engineering principles to solve large-scale production challenges.
YOUR IMPACT
- You can write documentation and knowledge base to support the Sales Team during customers' Security Assessments.
- You have worked cross-functionally with Engineering, Product, IT, Legal, Infrastructure and operational teams to drive security control implementation for the organization.
- You have worked on Implementation of security compliance requirements.
- You have worked along with security teams on compliance standards and validations
- You have helped mature company's overall security policy and governance architecture
- You have provided input into the overall security compliance strategy
- You have helped the security and engineering teams as a subject matter expert for the security compliance and have identified gaps both on the product or infrastructure side.
WHO YOU ARE
- Fluent in English
- Graduated on Cybersecurity, Systems Development, IT Management or related areas.
- Professional working experience in Security Compliance or related Cybersecurity areas.
- Experience working with one or more of the following security standards and frameworks: SOC 2, ISO 27001, PCI DSS, NIST 800-53
- Experience with cloud security architectures and technologies (preferably AWS)
- Ability to work efficiently and independently in a fast-paced, innovative environment
- Ability to work closely with sales teams and internal stakeholders and articulate technical concepts
- Experience in auditing of networks, operating system, and application security
The knowledge below is considered a plus: - Professional work experience in security audits (ISO27001, PCI-DSS, SOC2)
- Knowledge in cybersecurity routines such as vulnerability management, penetration tests, disaster recovery tests, change management, and etc.
- Certification in cybersecurity (CISSP, CIPP, CIPM, CIPT, CompTIA Security+, CEH, and etc)
- Knowledge in cybersecurity tools such as Security Rating Platforms, Vulnerability Scanners, Antivirus, Firewalls and etc.
WHAT WE OFFER YOU
We're a wellness company that is committed to the health and well-being of our employees. Our flexible program allows you to customize your benefits, according to your needs! Our benefits include:
WELLNESS: Health, dental, and life insurance.
FLEXIBLE WORK: Choose when and where you work. For most, this will be a hybrid office/remote structure but can vary depending on the needs of the role and employee preferences. We offer all employees a home office stipend and a monthly flexible work allowance to help cover the costs of working from home.
GYMPASS DISCOUNT: We believe in our mission and encourage our employees and their families to find their passion too. Access onsite gyms and fitness studios, digital fitness programs, and online wellness resources for meditation, nutrition, mental health support, and more.
PAID TIME OFF: We know how important it is that our employees take time away from work to recharge.
BR: Vacations after 6 months and 3 days off per year + 1 day off for each year of tenure (up to 5 additional days) + extra day off for your birthday.
PAID PARENTAL LEAVE: Welcoming a new child is one of the most special moments in your life and we want our employees to take the time to be present and enjoy their growing family.
BR: 100% paid parental leave of 6 weeks to all new parents, of both biological and adopted children, regardless of gender and parent's relationship with the co-parent, Also extended maternity leave under local legislation
CAREER GROWTH: Outstanding opportunities for personal and career growth. That means we maintain a growth mindset in everything we do and invest deeply in employee development.
CULTURE: An exciting and supportive atmosphere with ambitious people from around the world!
And to get a glimpse of Life at Gympass...follow us on Instagram @gympasscareers and LinkedIn!
Belonging @ Gympass
Gympass is committed to creating a diverse work environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status, or any other basis covered by appropriate law.
Questions on how we treat your personal data? See our Job Applicant Privacy Notice.
Tags: Application security Audits AWS CEH CIPP CISSP Cloud Compliance CompTIA Firewalls Governance ISO 27001 NIST PCI DSS Privacy Security assessment SOC SOC 2 Strategy Vulnerability management
Perks/benefits: Career development Fitness / gym Flex hours Flex vacation Health care Home office stipend Insurance Parental leave Startup environment Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs