Cyber Security Architect responsible for Cyber Risk Management and Security by Design at a Swiss utilities company. Engaging in projects to enhance information security and compliance.
BB
Hybrid Senior Information Security Analyst – Architecture, Cloud Security
Posted 2 months ago
About the role
- Senior Information Security Analyst focusing on developing secure architectures and implementing robust security solutions at ABC Brasil. Engaging in risk analysis and fostering security culture within the company.
Responsibilities
- Plan and design security architectures for corporate projects, including cloud and on-premises environments, producing technical and reference documentation;
- Define security requirements for new solutions and validate their compliance throughout the project lifecycle;
- Propose, evaluate, and track the roadmap for security solutions;
- Provide technical leadership for the implementation of security solutions and controls;
- Collaborate with IT Architecture, Digital Channels, BaaS, Open Finance and Business areas to identify needs and recommend new solutions;
- Perform risk assessments and threat analysis;
- Conduct threat modeling (OWASP Threat Dragon);
- Prepare security opinions and technical reports based on technical and regulatory requirements;
- Ensure architectures comply with internal and regulatory standards and enforce mandatory application;
- Monitor and enforce the Security by Design and Security by Default programs;
- Document processes, architectural diagrams, and security flows;
- Validate security controls and architectural components such as WAF, DLP, Firewall, IDS, IPS, API Gateway, API Proxy, EDR, SIEM, CNAPP, among others;
- Participate in technical committees and multidisciplinary architecture and decision forums;
- Manage and support the use of corporate tools from the Gartner quadrant;
- Take part in technical interviews, onboarding of new team members, and mentoring;
- Deliver internal trainings on tools and best practices;
- Produce internal technical content (articles, documentation, guides) and environment control reports;
- Support incident response and threat mitigation;
- Review, create, and restructure technical documentation;
- Continuously monitor the environment, identify improvements, and promote security best practices.
Requirements
- Deep technical knowledge of infrastructure, networking, AppSec, data protection, cloud, and security applied to LLMs/AI;
- Solid experience in information security with a focus on architecture, cloud security and cyber engineering;
- Experience securing cloud environments, including architecture, governance and controls for availability, integrity and confidentiality (AIC), event logging, chain of custody and non-repudiation;
- Proficiency with cloud components and infrastructure (IaaS / PaaS / SaaS) and native and third-party protection solutions;
- Knowledge of APIs, communication protocols, encryption, key management, and security inventory;
- Experience with market-leading tools (Gartner Magic Quadrant), including firewall, EDR/XDR, CASB, SIEM, DLP, CNAPP, password vaults, DevSecOps solutions, among others;
- Deep understanding of security technologies: firewalls, IDS/IPS, SIEM, DLP, EDR, Web Filtering, Cloud Security, API Security and encryption;
- Skill with threat modeling and frameworks such as OWASP;
- Experience in incident management and technical response;
- Industry certifications (e.g., CISSP, CCSP, CEH, AZ-500, SC-200, ISO 27001) are a plus;
- Strong analytical skills, clear communication, organization, and problem-solving abilities;
- Ability to work in multidisciplinary environments with a collaborative attitude and delivery focus.
Benefits
- Medical Assistance;
- Dental Assistance (Omint);
- Life Insurance;
- Profit Sharing (PLR);
- PPR (performance-based profit sharing);
- "ABC with You": a program that supports employees and their families with legal, social, psychological and financial assistance;
- Meal Voucher;
- Grocery Voucher;
- Extended parental leave: 20 days paternity and 6 months maternity;
- Childcare/Babysitting Assistance;
- Annual Day Off;
- Home Office Allowance;
- Home Office Infrastructure Allowance;
- TotalPass;
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Researcher assisting the Cyber Threat Intelligence team at Anomali. Conducting OSINT research, sample analysis, and developing automation workflows.
IT Security Engineer managing Active Directory solutions for OCFO project. Requires 10+ years in Active Directory with a focus on security and automation.
Cybersecurity Engineer focusing on Digital Forensics and Incident Response at Assurity Trusted Solutions. Leading incident response activities and ensuring cybersecurity measures are effectively implemented.
Cybersecurity Officer responsible for driving the Cybersecurity program for Americas at Siemens Healthineers. Collaborating with global teams and overseeing cybersecurity operations.
Cybersecurity and Compliance Specialist at MAPFRE responsible for mitigating risks and ensuring data security compliance. Collaborating with internal teams to promote an ethical culture against internal fraud.
Security Architect for Qualysoft designing and reviewing security architecture for technology divisions. Collaborating on security assessments for infrastructure and endpoint solutions in IT services.
Health and Safety Technician responsible for improving workplace safety at Nespresso's headquarters and boutiques. Managing safety programs and compliance with regulations and standards.
Evaluador/a de Seguridad y Certificación Ferroviario en Bureau Veritas. Gestionando evaluaciones de seguridad en proyectos de transporte ferroviario a nivel internacional.
Cybersecurity Compliance Consultant responsible for documenting cybersecurity requirements while collaborating with stakeholders. Overseeing Cybersecurity Policy Administration program and technical writing.