IT Security Analyst for Bundesdruckerei GmbH monitoring security events in diverse infrastructures. Collaborating within the Blue Team and responding to security incidents.
About the role
- Information Security Analyst at Grupo Abril preventing fraud and ensuring compliance with LGPD regulations. Responsibilities include monitoring threats and managing security incidents.
Responsibilities
- Monitor, investigate and respond to alerts of digital fraud, unauthorized access, phishing, social engineering and other risk vectors;
- Implement and review information security controls aimed at protecting personal and corporate data, in compliance with the LGPD;
- Support business areas in risk assessments and mitigation plans, with a focus on compliance and integrity;
- Manage and coordinate security incidents with vendors and external partners (SOC, security teams, legal, etc.);
- Conduct exposure and vulnerability analyses of corporate profiles and pages on social media, proposing preventive and corrective actions;
- Develop and maintain security and privacy policies, standards and procedures, ensuring regulatory compliance;
- Lead internal awareness campaigns on information security and the LGPD, promoting a data protection culture;
- Support internal and external audits, fulfilling compliance, privacy and digital security requirements.
Requirements
- Bachelor's degree in Information Technology, Information Security, Law, Business Administration or related fields;
- Certification or specialization in LGPD, ISO 27001, Cybersecurity or Compliance is desirable;
- Minimum of 3 to 5 years of prior experience in information security, fraud or digital compliance;
- Experience in handling and investigating digital fraud;
- Practical knowledge of the LGPD and data privacy best practices;
- Familiarity with corporate compliance and internal controls;
- Proficiency in incident management and threat response;
- Experience with SIEM tools, enterprise antivirus and DLP solutions;
- Knowledge of digital security and corporate social media security;
- Basic understanding of networking, VPNs, identity and authentication (MFA, SSO);
- Ability to document and present executive reports and action plans.
Benefits
- Health insurance
- Dental insurance
- Home-office allowance
- Employee discount club
- Transportation allowance
- Birthday day off
- Partnership with SESC
- Meal allowance
- GoRead
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Cyber Security Analyst within the Cyber Security Governance, Risk and Compliance team. Supporting effective management and oversight of cyber risk at Heathrow Airport.
Cyber Security Analyst focusing on security telemetry and metrics for Heathrow operations. Enhancing organizational cyber resilience through actionable intelligence and reporting.
Security Analyst monitoring systems and providing expertise for cybersecurity solutions at GoSecure. Engage in proactive analysis, incident response, and system oversight.
Security Analyst focusing on brand protection against online fraud and phishing attacks. Investigating threats, pursuing takedowns, and supporting sales evaluations in a hybrid work environment.
Jr. Vulnerability Management Analyst at OneDigital managing security vulnerabilities across infrastructure. Collaborating with IT teams to ensure timely remediation and effective reporting.
Offensive Security Analyst specializing in Red Team operations for AI/ML systems at Vanguard. Collaboration with data scientists and security teams to protect AI infrastructure.
IT Cybersecurity Analyst supporting vulnerability management and incident response for WEC Energy Group's cybersecurity infrastructure. Collaborating with teams to enhance security posture and mitigate risks.
IAM Security Engineer managing identity and access governance at WEC Energy Group. Collaborating on IAM solutions and troubleshooting access management issues.
Senior CyberSecurity Analyst focusing on identifying and responding to email borne threats at Proofpoint. Collaborating with a global team to develop detection signatures against phishing, malware, and spam attacks.