IT Security Analyst for Bundesdruckerei GmbH monitoring security events in diverse infrastructures. Collaborating within the Blue Team and responding to security incidents.
About the role
- Analista de Segurança da Informação Pleno na Youse, atuando em controle de IAM na AWS e governança. Responsável pela supervisão de acessos e colaboração com equipes de segurança.
Responsibilities
- Design and maintain IAM controls in AWS (IAM, roles, policies, SSO/IAM Identity Center);
- Lead and oversee access certification campaigns;
- Define, evaluate, and monitor Segregation of Duties (SoD) and conflicting access risks;
- Assess sensitive and privileged access;
- Support the 2nd line of defense in defining policies, standards, and Identity and Access Management controls;
- Collaborate with IT, Security, Audit, and Compliance teams;
- Support internal and external audits by providing evidence of IAM controls and processes;
- Promote best practices such as least privilege, Zero Trust, MFA, and SSO.
Requirements
- Strong hands-on experience in IAM at a senior level, with both technical and governance perspectives;
- Strong knowledge of AWS and cloud identity;
- Experience with IAM/governance tools (e.g., Entra ID, Okta, SailPoint, Saviynt, or similar);
- Practical experience with access certification campaigns, SoD, and SAT;
- Knowledge of risk and compliance frameworks (e.g., controls, audits, regulatory), such as NIST, ISO 27001, CIS Controls, among others;
- Good communication skills and the ability to operate cross-functionally (2nd line of defense).
Benefits
- Hybrid (2 days on-site per week and 3 days remote)
- Employment regime: CLT (Brazilian CLT employment contract)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security Analyst within the Cyber Security Governance, Risk and Compliance team. Supporting effective management and oversight of cyber risk at Heathrow Airport.
Cyber Security Analyst focusing on security telemetry and metrics for Heathrow operations. Enhancing organizational cyber resilience through actionable intelligence and reporting.
Security Analyst monitoring systems and providing expertise for cybersecurity solutions at GoSecure. Engage in proactive analysis, incident response, and system oversight.
Security Analyst focusing on brand protection against online fraud and phishing attacks. Investigating threats, pursuing takedowns, and supporting sales evaluations in a hybrid work environment.
Jr. Vulnerability Management Analyst at OneDigital managing security vulnerabilities across infrastructure. Collaborating with IT teams to ensure timely remediation and effective reporting.
Offensive Security Analyst specializing in Red Team operations for AI/ML systems at Vanguard. Collaboration with data scientists and security teams to protect AI infrastructure.
IT Cybersecurity Analyst supporting vulnerability management and incident response for WEC Energy Group's cybersecurity infrastructure. Collaborating with teams to enhance security posture and mitigate risks.
IAM Security Engineer managing identity and access governance at WEC Energy Group. Collaborating on IAM solutions and troubleshooting access management issues.
Senior CyberSecurity Analyst focusing on identifying and responding to email borne threats at Proofpoint. Collaborating with a global team to develop detection signatures against phishing, malware, and spam attacks.