Specialist in PingFederate, PingDirectory and PingID for IAM infrastructure management. Collaborating with teams for stable operation and development in Cotia.
About the role
- Information Security Analyst managing critical governance, risk, and compliance topics. Leading incident responses and security policy development in a hybrid work model.
Responsibilities
- • Will be a point of reference for critical governance, risk, and compliance topics, working across the Plan, Attack and Defend pillars;
- • Will handle sensitive projects, critical data, and demanding audits.
- **Strategic and analytical:**
- • Conduct risk analyses for new projects and systems;
- • Develop and review security policies and procedures;
- • Coordinate responses to critical incidents (technical and strategic perspective);
- • Apply threat intelligence and propose countermeasures;
- • Participate in implementing security within DevSecOps pipelines.
- **Operational:**
- • Tune and improve tools such as SIEM, DLP, and XDR;
- • Perform security testing and forensic analysis;
- • Track critical vulnerabilities from identification to remediation;
- • Serve as the technical point of contact during audits and internal threat investigations.
- **Leadership and development:**
- • Mentor junior professionals in technical and strategic competencies;
- • Contribute to continuous improvement projects within the security area;
- • Deliver training and security awareness initiatives;
- • Represent the security team in forums, committees, and technical meetings.
Requirements
- • Bachelor's degree in Technology fields such as Information Security, Computer Science, Information Systems, or related areas;
- • 3–5 years of experience in Information Security;
- • Strong communication and interpersonal skills, with the ability to integrate teams and present results;
- • Technical writing skills for creating advanced documents and corporate policies;
- • Autonomy to make technical decisions and lead projects;
- • Analytical profile with mentoring ability, strategic collaboration, and business awareness;
- • Focus on continuous improvement and innovation.
- ***Hard skills:***
- • Experience in On-premises environments and in AWS, Azure, or GCP;
- • Experience with Docker, Kubernetes, and securing CI/CD (GitLab, Jenkins, SonarQube);
- • Scripting/automation experience with Python, PowerShell, or Bash;
- • Security best practices for REST/GraphQL APIs and Infrastructure as Code.
- ***Monitoring and Incident Response***
- • Use of SIEM tools (e.g., Splunk, QRadar), SOAR (e.g., Cortex, Splunk SOAR), and XDR (e.g., CrowdStrike, Microsoft Defender);
- • Experience with forensic analysis tools (e.g., FTK, Volatility) and vulnerability management (e.g., Nessus, Qualys);
- • Familiarity with DLP, UEBA, NGFW firewalls, email security, CASB, and SSPM solutions.
- ***Threats and Testing***
- • Knowledge of Threat Intelligence (e.g., MITRE ATT&CK, Mandiant);
- • Execution or support of penetration tests (pentests) and Red Team simulations;
- • Basic knowledge of reverse engineering and malware analysis (differential).
Benefits
- • Meal allowance of R$31.00/day
- • Transportation allowance
- • Career development plan
- • Multi-benefits card
- • Life insurance
- • Partnership with SESC
- • University partnerships
- • Corporate university
- • Day off on your birthday
- • "Just dress no code" – be yourself!
- • Dental plan
- • Gympass/Wellhub
- • Psychological support
- • Medical services available at company locations
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security Analyst in the Core IP/DDoS Security team at Vodafone. Ensuring real - time threat mitigation and incident response for DDoS attacks.
Senior Security Analyst developing and implementing security strategies for logistics operations. Focus on risk assessment, staff training, and policy compliance.
Security Analyst managing vulnerability management for PostFinance. Overseeing patching and security issues to ensure system stability.
IT Security Analyst supporting the Supreme Court of Nevada in safeguarding judicial information systems. Implementing security controls, maintaining compliance, and conducting security assessments in a collaborative environment.
Information Security Analyst SME protecting information assets by designing and maintaining security policies. Ensuring compliance with security standards in a tech services company focused on digital transformation.
Vulnerability Analyst role in BGS supporting government clients. Conduct vulnerability assessments and enhance cybersecurity protocols for effective mitigation strategies.
Analyst of Information Security focusing on Governance and Project Risk Analysis in software development. Join a dynamic team collaborating on security in tech projects.
Cybersecurity Analyst responsible for protecting corporate environments and managing security incidents. Collaborating with IT teams and providing strategic security communications.
Information Security Analyst role focusing on cybersecurity for a retail company based in Belo Horizonte. Tasks include managing security tools and monitoring incidents.