Information Security Consultant

Syffer is an all-inclusive consulting company focused on talent, tech and innovation. We exist to elevate companies and humans all around the world, making change, from the inside to the outside.

We believe that technology + human kindness positively impacts every community around the world. Our approach is simple, we see a world without borders, and believe in equal opportunities. We are guided by our core principles of spreading positivity, good energy and promote equality and care for others.

Our hiring process is unique! People are selected by their value, education, talent and personality. We dont present ethnicity, religion, national origin, age, gender, sexual orientation or identity.

Its time to burst the bubble, and we will do it together!

What You'll do:

- Define, review, and update information security policies, processes, and procedures aligned with business needs and industry best practices;

- Ensure compliance with the organization's Information Security Management System (ISMS/SGSI);

- Perform regular information security risk assessments and support the implementation of mitigation measures;

- Develop and deliver security awareness and training programs for employees;

- Ensure compliance with applicable laws and regulations related to information security and data protection;

- Collaborate with internal teams to ensure alignment with security standards and regulatory frameworks;

- Participate in security-related projects, contributing to planning, execution, and monitoring activities;

- Support security assessments of new services and software solutions;

- Assist management in preparing reports on information security status for leadership and stakeholders;

- Hybrid Work Model.

Who You Are:

- Degree in Management, Engineering, or a related field;

- Minimum of 5 years of experience in consulting, preferably in information security, risk management, and compliance;

- Strong knowledge of security standards and frameworks such as ISO 27001, ISO 27002, ISO 27701, GDPR, DORA, and NIS2;

- Relevant certifications such as CISSP, CISM, or ISO 27001 Lead Implementer/Auditor are highly valued;

- Solid knowledge of cybersecurity principles;

- Experience with security tools (e.g., SIEM) and risk management platforms (e.g., GRC, TPRM);

- Strong English communication skills (written and spoken);

- Excellent communication, interpersonal, and analytical skills;

- Ability to work autonomously and manage multiple priorities effectively;

- Experience in consulting environments is valued.



What you'll get:

- Wage according to candidate's professional experience;

- Remote Work whenever possible;

- Delivery of work equipment adjusted to the performance of functions;

- Benefits plan;

- And others.

Work together with expert teams on projects of large magnitude and intensity, long term together with our clients, all leaders in their industries.

Are you ready to step into a diverse and inclusive world with us?

Together we will promote uniquess!