Cybersecurity Analyst assisting in the review and implementation of cybersecurity initiatives across a large environment at Kemper. Responding to cyber threats and improving processes and technologies.
About the role
- Analyst in cybersecurity at Unimed Nacional managing cloud security and assessing vulnerabilities in IT infrastructure. Leading strategic incident response and ensuring compliance with health regulations.
Responsibilities
- Lead cloud security posture management (CSPM), acting as the technical liaison between consulting firms and IT teams to define mitigation plans, validate recommendations, and implement effective compensating controls.
- Ensure the integrity of the IT environment lifecycle, orchestrating remediation of complex vulnerabilities and anticipating end-of-life risks for systems, applications, and infrastructure in collaboration with support teams.
- Mitigate supply chain risks by assessing vendor cybersecurity maturity against global frameworks (ISO 27001, NIST, CIS) and establishing action plans to ensure partners' compliance.
- Ensure Security by Design in new projects by defining technical requirements and testing controls before production deployment to prevent exposure of vulnerabilities in the care environment.
- Lead strategic response to complex incidents, orchestrating crisis/war rooms, defining containment and eradication actions, and preparing post-mortem reports to strengthen the defensive architecture.
- Enable the evolution of the cybersecurity architecture by conducting comparative studies of new technologies and supporting the implementation of cutting-edge solutions, ensuring deliverables follow industry best practices.
- Support regulatory compliance and audits by acting as the technical focal point for evidence collection and responses to internal and external reviews, aiming to maintain certifications and adhere to ANS (National Supplementary Health Agency) regulations and the LGPD (Brazilian General Data Protection Law).
- Promote the stability of security tools by managing requests for adjustments and critical configurations with partners, ensuring high availability of protective controls.
Requirements
- Bachelor's degree in Information Technology, Computer Science, Computer Engineering, Information Systems, or Cyber Defense.
- Experience managing cybersecurity tools such as ZTNA, NAC, XDR, WAF, CSPM, PAM.
- Experience with Vulnerability Management and Cybersecurity Incident Response processes.
- Strong knowledge of security frameworks: ISO 27001, NIST, CIS, MITRE ATT&CK, and OWASP.
- Strong knowledge of Cloud Computing and Cloud Security.
- Advanced English (will participate in meetings with foreign vendors).
- Desired:
- Previous experience with Akamai WAF and ZTNA solutions (Netskope or Palo Alto).
- Experience in healthcare and hospital environments.
- Postgraduate studies in progress in Cybersecurity, Information Security, Cyber Defense, or Ethical Hacking.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Information Security Analyst managing Information Security Management System at BMLL Technology. Supporting compliance with ISO 27001 and enhancing security measures.
Graduate Cyber Security Analyst at McKesson participating in a 24 - month Cyber Academy program. Monitor security alerts and contribute to incident response efforts while gaining mentorship.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Contract Security Analyst specializing in security operations and incident response for cloud security at Embark. Focus on alert handling, detection engineering, and data loss prevention.
Cyber Security Analyst providing security operations support for USAF Cloud One project. Engaging in incident response and cybersecurity compliance activities within a hybrid environment.
Cybersecurity Analyst responsible for monitoring, analyzing, and responding to security incidents in SOC. Developing detection rules and conducting threat - hunting campaigns within a hybrid work setup.
Information Security Analyst working with Optasia to enforce security controls and protect data. Collaborating on technical projects and auditing systems in a hybrid work environment.
Cyber Security Analyst investigating and responding to security events at A+E Global Media. Collaborating cross - functionally to improve detection and response processes.
Information Security Analyst handling security monitoring and incident response tasks for educational technology company. Collaborating with IT teams to enhance security measures and compliance.