Browse
···
Log in / Register
Job Summary: Experienced GRC professional with expertise in auditing critical environments, identity management, and regulatory compliance in the financial and technology sectors. Key Highlights: 1. Solid experience in Governance, Risk, and Compliance (GRC) 2. Hands-on security work with strategic Blue Team perspective 3. Focus on compliance with PCI DSS, ISO 27001, SOX, and NIST Experienced professional in Governance, Risk, and Compliance (GRC), with strong track record in auditing critical environments, Identity and Access Management (IAM), and regulatory compliance in the financial and technology sectors. Responsible for ensuring organizational adherence to frameworks and standards such as PCI DSS, ISO 27001, SOX, and NIST, translating regulatory requirements into technical and operational controls. Strategic Blue Team profile, performing hands\-on administration and continuous improvement of security solutions, including: * SIEM, XDR, ZTNA, CASB, and DLP; + CI/CD pipeline integration and automation; + Implementation and management of SAST/DAST analysis tools; + Direct support to infrastructure, development, and compliance teams. Conduct internal audits to prepare for certification bodies; Manage the identity and access lifecycle (IAM); Analyze evidence and develop action plans for non-conformities; Support incident response and propose control improvements; Produce compliance and risk reports for executive teams and auditors.
