Intern supporting IT Security team at OneDigital with hands - on experience and mentoring. Engaging in real - world assignments and responsibilities within IT Security.
About the role
- Analista Pleno de Blue Team at Mais.Mobi focusing on cyber security, incident response, and vulnerability management. Working in a hybrid role in Rio de Janeiro.
Responsibilities
- Detect and support remediation of environment vulnerabilities, maintain cybersecurity tools, and perform incident response;
- Create, optimize and maintain detection rules (correlation rules) in the SIEM to identify malicious or anomalous activity;
- Manage the vulnerability lifecycle, from identification to remediation in collaboration with other teams;
- Support implementation of security best practices across cloud environments, servers, workstations and networks, following security frameworks;
- Participate in security incident response, investigating alerts generated by the SIEM or other security tools;
- Provision and deprovision assets and resources in defensive security tools;
- Support analysis of security failures and propose mitigation solutions;
- Ensure proper collection of asset logs, working to meet security requirements and monitoring rules;
- Document procedures, incident analyses and security configurations;
- Prepare technical and executive reports, including evidence, impact assessments and mitigation recommendations;
- Automate processes and develop scripts to support defensive operations;
- Collaborate with Red Team, SOC, Architecture and DevSecOps teams to validate and remediate vulnerabilities;
- Develop Blue Team playbooks, methodologies and internal standards;
- Monitor threat trends, exploits and new attack techniques and update security tools with obtained intelligence.
Requirements
- Bachelor's degree in Information Security, Information Systems, Computer Science, Software Engineering or related fields;
- Experience in Blue Team roles or equivalent functions;
- Experience with core tools: SIEM, EDR or XDR, Vulnerability Management and WAF;
- Advanced knowledge of Windows and Linux environments, permissions, services and common attack vectors;
- Advanced knowledge of firewalls, proxies, VPNs, cloud and networking;
- Familiarity with methodologies: MITRE ATT&CK, PTES, NIST SP;
- Familiarity with security projects, processes and policies;
- Understanding of secure development and DevSecOps pipelines (CI/CD, Git, integration of automated scanners);
- Experience producing reports, cybersec books and technical presentations;
- Experience in environment hardening, incident response and creation of playbooks;
- Ability to produce clear, concise, impact-oriented documentation;
- Certifications: ISO/IEC 27001 and CompTIA Security+.
- Preferred certifications: EHF (Ethical Hacking Foundation), OCI Security Professional, AWS Certified Security – Specialty, GCIA (GIAC Certified Intrusion Analyst), GCDA (GIAC Certified Detection Analyst), CCD (Certified CyberDefender) - CyberDefenders, CDN (Certified Network Security), CEH (Certified Ethical Hacker);
- Experience with specific security tools such as Kaspersky, Umbrella, Cloudflare;
- Knowledge of programming/scripting languages (e.g., Python, Shell Script, PowerShell) for security task automation;
- Knowledge of the Brazilian General Data Protection Law (LGPD);
- Postgraduate degree in Information Security;
- English at intermediate/advanced level.
Benefits
- Transportation allowance + Meal voucher + Food allowance + Health and dental insurance + Reimbursement for online courses + Life insurance + Emotional wellbeing program, etc.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Threat Intelligence Analyst at AIG specializing in cyber threat research and intelligence production. Collaborating with an interdisciplinary team to enhance cybersecurity situational awareness and reporting.
Senior Cyber Security Analyst protecting customers from cyber threats while enhancing cyber security services at technology firm. Focused on both security operations and technical delivery.
Cybersecurity Analyst assisting in the review and implementation of cybersecurity initiatives across a large environment at Kemper. Responding to cyber threats and improving processes and technologies.
Senior Information Security Analyst managing Information Security Management System at BMLL Technology. Supporting compliance with ISO 27001 and enhancing security measures.
Graduate Cyber Security Analyst at McKesson participating in a 24 - month Cyber Academy program. Monitor security alerts and contribute to incident response efforts while gaining mentorship.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Contract Security Analyst specializing in security operations and incident response for cloud security at Embark. Focus on alert handling, detection engineering, and data loss prevention.
Cyber Security Analyst providing security operations support for USAF Cloud One project. Engaging in incident response and cybersecurity compliance activities within a hybrid environment.
Cybersecurity Analyst responsible for monitoring, analyzing, and responding to security incidents in SOC. Developing detection rules and conducting threat - hunting campaigns within a hybrid work setup.