Ricardo Miranda
Cybersecurity GRC Analyst
Ronde,82
Summary
IT Security Specialist transitioning into Governance, Risk, and Compliance (GRC) with expertise in ISO 27001, GDPR, risk management, and security compliance. Experienced in IT security, access management (Okta, Azure AD), and compliance audits. Currently advancing skills in GRC Mastery, ISO 27001, and vulnerability management tools (Qualys, Nessus). Bringing a holistic approach to security, combining GRC, compliance, and SOC fundamentals to support organizations in risk management and regulatory compliance.
Overview
4
4
years of professional experience
4
4
Languages
Work History
Senior IT Support Specialist
Pleo
03.2022 - Current
Governance & Risk Management
- Assisted in IT security governance by implementing access control policies (Okta SSO, RBAC), reducing unauthorized access by 85%.
- Conducted IT asset compliance audits, improving security tracking for 200+ devices.
- Ensured alignment with ISO 27001 & GDPR by securing identity & access management (IAM).
- Patched software and installed new versions to eliminate security problems and protect data.
- Contributed to incident response procedures by triaging security tickets related to phishing, endpoint security, and IAM breaches.
- Maintained servers and systems to keep networks fully operational during peak periods.
IT Support Specialist
Hands-on IT Virtual Labs
07.2021 - 02.2022
Security & Compliance Experience
- Configured and secured networks with Cisco Meraki equipment (Router, Switch, Firewall), ensuring compliance with security standards.
- Conducted endpoint security tests to evaluate malware detection and response protocols.
SOC & Threat Detection
- Gained practical experience in SIEM (Splunk), EDR (Qualys) through hands-on labs.
- Analyzed security logs for potential vulnerabilities and practiced incident response workflows.
Education
Technical Course - Governance, Risk & Compliance
GRC Mastery
04.2001 -
Technical Course - CyberSecurity
Blue Team Level 1 (BTL1)
Online Training 04.2001 -
Technical Course - Cybersecurity GRC
Qualys Security And Compliance
04.2001 -
Online Micro Master Program - Cybersecurity
RIT (Rochester Institute Of Technology)
Online 04.2001 -
Technical Course - IT Network Security
Itucation
Copenhagen, Denmark 04.2001 -
Bachelor of Applied Arts - Law
Universidade Gama Filho
Rio De Janeiro 04.2001 -
Skills
Risk Assessment & Management
Compliance & Policy Development
Third-Party Risk Management (TPRM)
Security Audits & Governance
Business Continuity & Disaster Recovery (BCDR)
Third-Party Risk Management
Documentation
Troubleshooting
Risk Assessment
Identity & Access Management (Okta, Azure AD)
Network & Endpoint Security
Timeline
Senior IT Support Specialist
Pleo
03.2022 - Current
IT Support Specialist
Hands-on IT Virtual Labs
07.2021 - 02.2022
Technical Course - Governance, Risk & Compliance
GRC Mastery
04.2001 -
Technical Course - CyberSecurity
Blue Team Level 1 (BTL1)
04.2001 -
Technical Course - Cybersecurity GRC
Qualys Security And Compliance
04.2001 -
Online Micro Master Program - Cybersecurity
RIT (Rochester Institute Of Technology)
04.2001 -
Technical Course - IT Network Security
Itucation
04.2001 -
Bachelor of Applied Arts - Law
Universidade Gama Filho
04.2001 -