Job Title:

Sr. Manager, Business Information Security Officer (BISO)

Job Description

Concentrix Corporation is seeking a Brazil Business Information Security Officer to join the Global Security team reporting to the CNX MET GEO Business Information Security Officer – Insider Risk and Compliance team.

The Brazil Business Information Security Officer (BISO) focuses on proactively identifying security and compliance issues/risks to business operation processes in various accounts, drives in executing the controls to deter, detect and mitigate security and insider risks - including establishing capability and mechanisms to monitor and audit information and data protection of both Concentrix and clients as well as compliance level of each process and relevant control item as deployed in the operational environment, The country BISO drives proactively to enhance the fraud and compliance prevention culture and risk-free environment in Concentrix as well as identifies issues that would include but not limited to physical and logical security, data privacy, KPI, CSAT, inbound/outbound calls manipulation, information leakage, etc. impacting business. Typical activities include but are not limited to Risk Management – risk identification, risk assessments, support in development of risk action plans, risk closures, supporting investigations - case documentation, written first-hand reports, involve in-person or remote interview of persons of interest and working outside normal business hours etc., Governance and metrics, Executive presentations, Collaboration with all teams/ departments. Achieves results through direct interaction as well as influencing other internal groups or persons to achieve results.

Qualifications:

• 7 to 10 years of experience working in risk and compliance management, internal security controls, internal/external security assessment or audit, internal or cyber incident investigations.

Advanced English Level is a MUST, Spanish will be a plus
• Bachelor's/ Masters’ Degree in Information Technology or relevant areas.
• CISA certified or willing/able to certify within 12 months of employment.
• Experience in the BPO industry working in quality, security compliance or delivery strongly preferred.
• Deep understanding of BPO Business Operation and CRM services delivery processes.
• Understanding fraud, process non-compliance and incident investigations as well as various risks in the BPO industry.
• Ability to identify performance and opportunity gaps.
• Detail oriented with excellent analytical and critical thinking skills.
• Ability to effectively communicate findings to senior team members with appropriate recommendation and action plan raised to address the gaps in an effective & efficient manner.
 

BISO Responsibilities:

• Drive the highest Integrity and Ethical standards across the staff and the accounts in scope.
• Provide governance to operations management team and Quality Assurance team for effective and efficient surveillance and monitoring towards pro-active security and business process non-compliance issue identification.
• Collaborate with respective supporting functions/departments (IT, HR, Facility, Legal, DPO, etc.) to address relevant security issues/risks.
• Perform internal audit/assessment on regular basis based on different business process compliance management and risk control mechanisms in different accounts to ensure the full compliance as per relevant standard and identify potential issues/risks.
• Work closely with the operation team to get all identified non-compliance items fixed in a timely manner to drive for closure and proactively propose and deploy extra preventive controls where appropriate.
• Establish and execute a robust methodology for periodic reviews aiming to highlight the gaps that exist in the operational processes.
o Analyze operational data to identify trends, root causes of business issues, and/or opportunities.
o Provide recommendations for corrective and preventive actions and suggest improvements to the processes.
o Review and report the results and present to management team.
• Ensure partnership with accounts management team for Proactive Compliance Risk Management – identification, assessment, risk action planning, and closures.
• Coordinate and support Global Security Assessments (GSAs) - a holistic assessment (technology, HR, operations, finance, etc.) of risks being faced by delivery operations and No Notice Inspections (NNIs) conducted against the specific accounts in scope.
• Participate and involve in assigned investigations.
• Conduct incidents analytics for assigned areas within the defined timelines.
• Drive incidents to closure in a timely manner as required.
• Document learnings from incidents and circulate to relevant stakeholders Work with Client Risk Control Team directly as the security SPOC from CNX.
• Conduct employee awareness and assist in developing training materials and where necessary assist in specific training.

Accountability:
• Ensure the security and business process compliance in various accounts to meet business and client expectation.
• Continuously improve the compliance level driven by operational requirement and business growth.
• Partner/support the country BISO with the completion of various security programs/initiatives in the concerned accounts driven by Insider Risk and Compliance team, including but not limited to the GSA and NNI.
• Monitor assigned areas of risk ownership ensuring closures are tracked and presented to required stakeholders.
• Lead and manage the internal review work to achieve the efficiency, effectiveness, and timeliness.
• Establish governance and cadence as enforced per guidelines.
• Ensure assigned education sessions are conducted in a timely manner.
 

Location:

BRA SAO PAULO Rua Tagipuru, 906 Barra Funda

Language Requirements:

Time Type:

Full time2025-09-30

If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents