← CarreiraAI
Greenhouse

Grupo QuintoAndar | Senior Information Security Specialist (GRC)

Quintoandar · Brasil

Publicada em 18/06/2026

Candidatar-se com o CarreiraAI →
p strong About Grupo QuintoAndar /strong /p p We are Grupo QuintoAndar, the largest real estate ecosystem in Latin America. Guided by a shared purpose of helping people love where they live, we have a diversified portfolio of brands and solutions across different countries in Latin America, covering all phases of the housing journey. We also have a Technology Hub in Portugal. We develop technology and innovation to transform and enhance the overall living experience. /p p With the support of a world-class team of investors and advisors, including Kaszek, Qualcomm, General Atlantic, and SoftBank, Grupo QuintoAndar is currently valued at over USD 5.1 billion and continues to grow year over year. /p p Here, you will work with top professionals in the market, in an environment that breathes innovation, collaboration, and high performance. To learn more about our story, visit: a href= https://grupoquintoandar.com/pt/ /a a href= https://grupoquintoandar.com/pt/ https://grupoquintoandar.com/pt/ /a . /p p nbsp; /p p strong Location amp; Remote Work nbsp; /strong /p p Our technology team operates under a remote-first model, which means we work from home and can live anywhere in Brazil. We also offer the option of working from our São Paulo offices or partner coworking spaces, up to twice a week. /p p nbsp; /p p strong Hiring Process Stages /strong /p p The stages of our hiring processes aim to assess your experiences and allow you to meet our teams and explore career opportunities. They are structured as follows: /p ul li Tech Screening nbsp; /li li Technical interviews nbsp; /li li People Interview nbsp; /li li Hiring Committee /li /ul p nbsp; /p p strong About the Team /strong /p p nbsp; /p p data-path-to-node= 1 We are looking for a senior person to act in the evolution of the Information Security GRC discipline, focusing on transforming risks, controls, and requirements into practical business decisions. /p p data-path-to-node= 2 This is not a position for someone focused only on frameworks, audits, or documentation. We are looking for someone strong in GRC, but with the technical repertoire to discuss controls, architecture, third parties, identity, data, cloud, and technology in practice. /p p data-path-to-node= 3 The goal of this position is to increase the company's security maturity, bring more quality to risk decisions, and ensure that governance and compliance processes are useful in practice, and not just correct on paper. /p p data-path-to-node= 4 nbsp; /p p data-path-to-node= 4 strong data-path-to-node= 4 data-index-in-node= 0 What we expect from this position /strong /p p data-path-to-node= 4 We expect someone who connects Information Security risks to the business context and transforms this into practical action. Someone who moves well between executive and technical discussions, can structure and evolve governance and risk management processes, conducts consistent assessments, orchestrates the evolution of teams, and supports decisions with clarity, credibility, and a focus on results. /p p data-path-to-node= 5 We are looking for a profile that goes beyond compliance on paper, understands controls in practice, evaluates their effectiveness, and has the seniority to act on different fronts of the team, such as cyber risks, policies and standards, third-party risk, executive indicators, awareness, incident governance, cyber resilience, and Information Security strategic planning. /p p nbsp; /p p nbsp; /p p nbsp; /p p data-path-to-node= 1 strong Responsibilities /strong /p ul data-path-to-node= 2 li p data-path-to-node= 2,0,0 Act in the evolution of the Information Security strategic plan, based on risk exposure, maturity level, market benchmarks, and business impact. /p /li li p data-path-to-node= 2,1,0 Conduct the information security risk management process end-to-end, including identification, assessment, prioritization, treatment, acceptance, monitoring, and executive reporting, in alignment with the company&#39
Candidatar-se com o CarreiraAI →