Ascendion is a full-service digital engineering solutions company. We make and manage software platforms and products that power growth and deliver captivating experiences to consumers and employees. Our engineering, cloud, data, experience design, and talent solution capabilities accelerate transformation and impact for enterprise clients. Headquartered in New Jersey, our workforce of 6,000+ Ascenders delivers solutions from around the globe. Ascendion is built differently to engineer the next.
Ascendion | Engineering to elevate life
We have a culture built on opportunity, inclusion, and a spirit of partnership. Come, change the world with us:
* Build the coolest tech for world’s leading brands
* Solve complex problems – and learn new skills
* Experience the power of transforming digital engineering for Fortune 500 clients
* Master your craft with leading training programs and hands-on experience
Experience a community of change makers!
Join a culture of high-performing innovators with endless ideas and a passion for tech. Our culture is the fabric of our company, and it is what makes us unique and diverse. The way we share ideas, learning, experiences, successes, and joy allows everyone to be their best at Ascendion.
About the Role:
* Role: Senior Security Analyst OR Senior Information Security Analyst (GRC)
* Location: Brazil (Remote)
* Employment Type: Contract
Key Responsibilities
* Support security governance, risk assessments, and audit activities (ISO 27001, SOC 2, etc.)
* Monitor security metrics and identify compliance gaps or risks
* Track and drive remediation of security issues with application and platform teams
* Ensure security controls are effectively designed and implemented
* Prepare reports and communicate risks to technical and non-technical stakeholders
* Collaborate with cross-functional teams to enhance security processes and controls
Required Skills and Experience
* Experience in information security, IT risk, compliance, or audit roles
* Strong understanding of frameworks such as ISO 27001, SOC 2, NIST, or similar
* Experience supporting audits, assurance activities, and remediation efforts
* Familiarity with security metrics, control monitoring, and SLA-based compliance
* Experience working with system or application owners to resolve security issues
* Strong analytical and documentation skills for risk and compliance tracking
* Excellent stakeholder management and communication skills
* Knowledge of cloud, SaaS, or enterprise platforms
* Hands-on experience with security tools such as Panaseer, Checkmarx, or Wiz
Preferred Qualifications
* Certifications such as ISO 27001 Lead Implementer/Auditor, CISA, CRISC, or CISSP (or in progress)
* Experience in regulated or data-driven environments
* Familiarity with privacy, data protection, or third-party risk management