Description: REQUIRED QUALIFICATIONS: * Solid knowledge of IAM controls and governance * Access policies and standards * Audit and compliance practices * Preparation of technical and procedural documentation * Experience supporting audits, regulatory assessments, or certifications (e.g., ISO 27001, NIST, LGPD) * Knowledge of IAM tools (e.g., SailPoint, Azure AD, CyberArk, or similar) * Strong written and verbal communication skills, with ability to produce clear and robust documentation. PREFERRED QUALIFICATIONS: * Security certifications (e.g., ISO 27001 Lead Implementer/Lead Auditor, CompTIA Security+, CSF, ITIL, IDPro) * Experience with SailPoint IdentityNow or other SaaS-based IAM platforms * Hands-on experience with automation using scripting languages (Python, PowerShell, or GAS) * Knowledge of RBAC, ABAC, SoD, and role segregation in corporate environments * Experience implementing or reviewing periodic access review processes (Access Review) * Familiarity with audit requirements in regulated industries (e.g., education, finance, telecom, healthcare, etc.) JOB MISSION: We are seeking a Senior Information Security Analyst to join our Identity & Access Management (IAM) team, directly contributing to strengthening our processes, controls, governance, and regulatory compliance. The professional will be responsible for supporting the continuous evolution of IAM practices, ensuring compliance, operational efficiency, and standardization. KEY CHALLENGES: * Take ownership in designing and evolving IAM processes, proposing improvements to enhance operational efficiency and robustness * Ensure audit evidence, controls, and responses to audits and regulatory requests are delivered on time and with high quality * Create and standardize documentation, internal procedures, templates, and workflows to bring structure and governance to the team * Develop and maintain effective internal controls capable of anticipating risks and ensuring compliance * Collaborate with internal departments and external partners to improve processes, integrations, and automations RESPONSIBILITIES: * Develop and maintain IAM operational procedures, standards, and documentation (runbooks, playbooks, manuals, process diagrams, etc.) * Execute and enhance internal controls, ensuring traceability, evidence generation, and compliance with policies and regulations * Support internal/external audits and regulatory bodies by preparing responses, submitting evidence, and tracking action plans * Support the identity lifecycle (Joiners, Movers, Leavers), ensuring adherence to access policies * Advise internal departments on implementing security best practices related to identities and access * Monitor metrics, access reports, exceptions, and team KPIs, suggesting continuous improvements * Collaborate on automation initiatives, process reviews, and implementation of new controls * Identify security gaps related to access and propose structural mitigations and improvements * Participate in developing and evolving access standards and models (RBAC, SoD, periodic reviews, etc.) 2512070202191909661