Join the Base10 family

Open opportunities with founders believing purpose is key
to profits and companies solving problems for the 99%

Sr. Security Compliance Analyst



IT, Legal
são paulo, state of são paulo, brazil
Posted on Friday, November 3, 2023
About The Company

If you see technology as there to smooth your path in life, our team does too: Your Path, Our Journey.

We believe in people who transform their paths through technology. Technology that connects people who are good at what they do and which practices diversity to create and share those paths that we (as yet!) do not even know about. Our journey is in the smile of every talented person who brings revolution to the world from Brazil - whether with in-app transportation (99) or digital payments (99Pay).

To make life easier for millions of people every day, we are in the driving seat as part of DiDi Chuxing, the world's largest transport, and convenient platform. And so, we can say, with great pride, that we are pioneers in creating solutions, starting in Brazil, that grow in scale and have positive impacts in a range of other countries.

Whether creating projects from scratch or continually improving our solutions, we like challenges that give us butterflies, and that's why we work with intensity, at a fast pace, with respect, collaboration, and partnership. On this journey, we also create learning and strengthen ourselves in diversity as a fundamental aspect that makes us stand out for our growth day after day.

About The Team/role

Job Description:

We are seeking an Sr. Information Compliance Analyst to ensure that our organization adheres to all relevant laws, regulations, and industry standards governing the handling and protection of information. In this role, you will play a critical part in safeguarding our data and ensuring our compliance with data privacy, security, and regulatory requirements across our global business lines.

In this role, you'll be...

Key Responsibilities:

  • Regulatory Compliance: Stay up-to-date with changes in data protection, privacy, and information security regulations and ensure the organization's compliance.
  • Policy Development: Develop, update, and maintain company policies and procedures related to data privacy, cybersecurity, and information security.
  • Auditing and Monitoring: Conduct regular audits and assessments to identify compliance issues, track violations, and implement corrective actions.
  • Training and Education: Design and deliver training programs to educate employees about compliance requirements and best practices in information security.
  • Risk Assessment: Identify potential vulnerabilities and assess information security risks. Recommend and implement measures to mitigate risks.
  • Incident Response: Lead incident response efforts in case of data breaches, including investigations, containment, and reporting to relevant authorities.
  • Documentation and Reporting: Maintain detailed records of compliance activities, violations, and corrective actions. Prepare and distribute reports to relevant stakeholders.
  • Vendor Management: Evaluate the compliance of third-party vendors and service providers to ensure they meet the organization's standards and legal requirements.
  • Stakeholder Communication: Collaborate with legal teams, IT departments, and external regulators to ensure a comprehensive approach to compliance.
  • Continuous Improvement: Continuously monitor and assess the effectiveness of our compliance programs. Make recommendations for enhancements and improvements.

We're eager to be in touch because you have...


  • Strong communication skills, both written and verbal, in English.
  • Strong understanding of data protection, privacy, and information security regulations.
  • Excellent analytical and problem-solving skills.
  • Detail-oriented with a commitment to accuracy.
  • Strong communication and interpersonal skills.
  • Ability to work collaboratively in cross-functional teams.
  • Proficiency in using compliance tools and software.

You'll love working at DiDi because...

We create user value

We strive to always create valuable experiences for our users in everything we do. Our focus is to always innovate new experiences that are safe, pleasant and efficient.

We are data-driven

We are strong believers in making informed decisions, that’s why we are data-driven. We can better navigate the business landscape strategically by analyzing valuable metrics.

Win-win Collaboration

Success is a team sport. When we work to help our partners and colleagues win, we win, too. While keeping everyone's best interest at heart, we communicate with candor and execute with excellence in all we do.

We believe in integrity

Integrity is at the very core of our business. We are people who always want to do the right thing. Our intentions are sincere, we speak our minds and listen to each other.


We always strive to do better. That means venturing beyond our comfort zones, learning from our mistakes, and helping each other grow.

Diversity and Inclusion

Diversity is one of our biggest strengths. Our differences are what make us distinct. We respect each other and believe in equal opportunities for all.

We are committed to building inclusive and diverse teams

Diversity is not a vision of the future or something we wish to have one day, it is a non-negotiable value of who we are.

We practice inclusion, plurality and respect. And we count on the governance of the Diversity Committee, which works together with HR, leadership and identity groups - 99Adapta, 99Afro, 99Cores, 99Mulheres and 99familias. This part of our journey has been written, there remains a long road before us.

We reinforce that this position is open to everyone, including pregnant people and people with disabilities (PwD).