GFT Technologies SE is looking for a Senior Cybersecurity Consultant to join our team. In this role, you will apply your expertise in banking environments to conduct thorough security assessments, analyze regulatory compliance, and deliver strategic recommendations to our clients. We need a professional with strong analytical skills who can work independently and communicate complex concepts clearly to both technical and executive audiences.
What You'll Do
- Conduct comprehensive Information Security assessments in banking environments, covering processes, technology, and governance.
- Perform AS-IS diagnostics of the security environment, including infrastructure, applications, cloud, identity, data, and operations.
- Evaluate compliance with BACEN regulations, such as Resolution No. 4,893/2021, Circular 3,909, and related standards.
- Identify regulatory and maturity GAPs, classifying risks by financial, operational, regulatory, and reputational impact.
- Prepare executive and technical reports with AS-IS analysis, GAP matrix, risk assessment, and prioritized recommendations.
- Propose an Information Security roadmap, with quick wins, structuring initiatives, and maturity evolution.
- Collaborate with interviews, evidence collection, and document analysis to support conclusions and recommendations.
What We're Looking For
- Advanced, fluent, or native Spanish proficiency.
- Solid experience in auditing and assessing Information Security in financial institutions or other regulated environments.
- In-depth knowledge of ISO/IEC 27001 (Annex A and SoA), CIS Controls v8, NIST CSF, and risk management frameworks (ISO 27005 or equivalent).
- Mastery of Brazilian Central Bank regulatory requirements applicable to cybersecurity.
- Experience in preparing audit reports, maturity assessments, remediation plans, and strategic roadmaps.
- Knowledge in security architecture, Cloud Security, IAM/PAM, SOC/SIEM, incident response, and TPRM.
- Ability to correlate technical controls with regulatory requirements and conduct interviews, evidence collection, and document analysis.
- Strategic vision, strong analytical skills, and governance orientation.
- Clear communication skills with both technical teams and executive audiences (C-level).
- Experience in banking environments and understanding of the three lines of defense model.
- Independent, evidence-based performance with a constructive critical posture.
Team & Environment
We value team players who are collaborative in their assignments. You should have the courage to challenge yourself, embrace new growth opportunities, and transform ideas into creative solutions. Problem-solving skills are essential. You will have the ability to work independently and manage your own time effectively, tackling adverse and innovative situations within the technological scope.
