Senior Information Security Analyst ensuring the security of critical tech environments at Servix. Responsible for incident response, vulnerability management, and security controls implementation.
About the role
- Information Security Analyst designing and reviewing security architectures at Bellinati Perez. Collaborating on cloud environments and implementing security measures for projects.
Responsibilities
- Create security standards, architectural models and technical references;
- Design solutions aligned with Zero Trust (identity, device, network, application and data);
- Define technical security requirements for new projects and vendors;
- Assess existing architectures and recommend structural transformations;
- Design secure environments in AWS/Azure/GCP;
- Implement frameworks such as CIS, NIST and cloud hardening benchmarks;
- Configure advanced IAM, policies, native security controls and cloud monitoring;
- Work with multi‑cloud and hybrid environments;
- Ensure security in CI/CD pipelines, container images and infrastructure as code;
- Define SAST/DAST standards, secret management, SBOM and supply chain security;
- Support engineering teams in building secure applications;
- Perform deep technical evaluations of solutions, tools and architectures;
- Guide squads and development teams on security best practices;
- Act as a technical reference in audits, reviews and complex integrations;
- Mentor analysts at all levels;
- Lead architecture projects;
- Influence strategic security decisions.
Requirements
- Bachelor's degree in Technology, such as Information Security, Computer Science, Information Systems or related fields;
- Experience in information security, infrastructure or engineering;
- Proven experience in:
- Enterprise or security architecture;
- Cloud Security (advanced level);
- Zero Trust (at minimum: identity, access and networks);
- Advanced DevSecOps;
- IAM, SSO, MFA and authentication/authorization protocols (SAML, OAuth, OIDC);
- Containers and Kubernetes;
- Soft skills: systems thinking; architectural mindset; technical decision‑making; executive communication; technical leadership;
- Postgraduate degree or MBA in Information Security, Risk or related areas;
- Experience in multi‑cloud architecture;
- API security (REST/GraphQL);
- Threat modeling (STRIDE, PASTA);
- Automation and infrastructure as code (IaC);
- Certifications such as: CISSP, CISM, CCSP, SC‑100, AWS/GCP/Azure Architect, GIAC GDSA/GCSA.
Benefits
- Meal allowance of R$31.00/day
- Transportation allowance
- Career development plan
- Multi‑benefit card
- Life insurance
- Partnership with SESC
- University partnerships
- Corporate university
- Day off on your birthday
- "Just dress no code" – be yourself!
- Dental plan
- Gympass/Wellhub
- Psychological support
- On‑site medical staff available at units
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Application Security Analyst ensuring application and infrastructure security for a European AI cloud. Collaborating with teams to build defenses and mitigate vulnerabilities in a hands - on role.
Senior professional managing information security at Sicredi's SOC, ensuring data confidentiality and response to security incidents.
Cyber Security Analyst handling SOC, SIEM, and incident response for multiple sites. Analyzing incidents and improving security resilience in a hybrid working environment.
Regulatory Compliance Analyst managing compliance programs across multiple frameworks for a fintech startup. Driving operational adherence and building a proactive compliance culture within the team.
Security Analyst managing and validating AI - driven investigations into cybersecurity threats. Collaborating with engineering and product teams to enhance security monitoring capabilities.
Information Security Analyst overseeing security tools and incident responses. Engaging in corporate security initiatives within a technological framework.
Cyber Security Analyst role supporting USAF Cloud One Architecture and common shared services contract. Involves compliance monitoring, incident response, and collaboration with cybersecurity teams.
Senior Cyber Security Analyst at GDIT identifying and mitigating cyber threats while ensuring compliance with NIST and ISO standards. Involves oversight of security controls and enterprise risk assessments.
Junior Information Security Analyst focusing on identity and access management at Evertec. Supporting operational activities and collaborating with IT and security teams in a hybrid setting.