Ascendion is a full-service digital engineering solutions company. We make and manage software platforms and products that power growth and deliver captivating experiences to consumers and employees. Our engineering, cloud, data, experience design, and talent solution capabilities accelerate transformation and impact for enterprise clients. Headquartered in New Jersey, our workforce of 6,000+ Ascenders delivers solutions from around the globe. Ascendion is built differently to engineer the next. Ascendion | Engineering to elevate lifeWe have a culture built on opportunity, inclusion, and a spirit of partnership. Come, change the world with us:Build the coolest tech for world’s leading brandsSolve complex problems – and learn new skillsExperience the power of transforming digital engineering for Fortune 500 clientsMaster your craft with leading training programs and hands-on experience Experience a community of change makers!Join a culture of high-performing innovators with endless ideas and a passion for tech. Our culture is the fabric of our company, and it is what makes us unique and diverse. The way we share ideas, learning, experiences, successes, and joy allows everyone to be their best at Ascendion. About the Role:Role: Senior Security Analyst OR Senior Information Security Analyst (GRC)Location: Brazil (Remote)Employment Type: Contract Key ResponsibilitiesSupport security governance, risk assessments, and audit activities (ISO 27001, SOC 2, etc.)Monitor security metrics and identify compliance gaps or risksTrack and drive remediation of security issues with application and platform teamsEnsure security controls are effectively designed and implementedPrepare reports and communicate risks to technical and non-technical stakeholdersCollaborate with cross-functional teams to enhance security processes and controlsRequired Skills and ExperienceExperience in information security, IT risk, compliance, or audit rolesStrong understanding of frameworks such as ISO 27001, SOC 2, NIST, or similarExperience supporting audits, assurance activities, and remediation effortsFamiliarity with security metrics, control monitoring, and SLA-based complianceExperience working with system or application owners to resolve security issuesStrong analytical and documentation skills for risk and compliance trackingExcellent stakeholder management and communication skillsKnowledge of cloud, SaaS, or enterprise platformsHands-on experience with security tools such as Panaseer, Checkmarx, or WizPreferred QualificationsCertifications such as ISO 27001 Lead Implementer/Auditor, CISA, CRISC, or CISSP (or in progress)Experience in regulated or data-driven environmentsFamiliarity with privacy, data protection, or third-party risk management