GRC & Strategic Projects Manager

About the Position:

We are looking for an experienced GRC and Strategic Digital Projects Manager who brings a holistic vision to the areas of Governance, Risk, and Compliance (GRC) and a hands-on approach to managing strategic digital projects. This position combines information security with digital project management, ensuring that our compliance practices, data protection, and digital innovation align with UPL's local and global standards. We seek a professional with strong leadership, technical expertise, and business acumen.

Key Responsibilities:

• Information Security Leadership: Lead development and improvement initiatives in information security, ensuring the effective implementation of critical processes such as data protection, privacy, and cybersecurity.
• Cross-Functional Collaboration: Work closely with UPL’s global security teams, IT stakeholders, and business units to ensure corporate standards are met.
• Compliance Support: Support the Legal and DPO areas in monitoring internal compliance and advising on data protection obligations, with an emphasis on LGPD.
• Risk Management Culture: Promote a culture of awareness and transparency in risk management, ensuring the nature and scale of IT risks are understood and managed at the appropriate business levels.
• Consultation and Recommendations: Advise IT and business management on risk and control issues, providing practical recommendations for risk mitigation.
• Budget and Project Management: Collaborate with the Finance team and other IT service functions in developing project budgets and plans, tracking expenditures, and reporting them to leadership.
• Digital Project Management: Plan, establish, and manage digital projects, serving as the key liaison between business and technical aspects of assigned projects, and leading projects through all phases (initiation, planning, execution, monitoring, and closure).
• IT Performance Monitoring: Regularly monitor and update IT performance in collaboration with the Applications, Infrastructure, and SAP teams, focusing on Incidents, Requests, Changes, and SLA.
•  

Required Qualifications and Experience:

• Bachelor’s degree, preferably in a technology field (Computer Engineering, Computer Science, etc.).
• Extensive experience in Governance, Risk, and Compliance, with a strong technical background in security and a solid understanding of policies, standards, and procedures.
• Experience in Data Protection and Privacy (LGPD).
• Experience in Service Management (SLA, Incident, and Request Management).
• Project Management experience with corporate systems. Experience with ERP, CRM, and BI systems; knowledge of platforms such as SAP, Salesforce, and QlikSense is a plus.
• English fluent