About the role

Join YDUQS as a Senior IT Security Analyst focusing on cybersecurity strategies and incident management to enhance education technology. Responsibilities include monitoring, compliance, and team collaboration.

Responsibilities

Monitor and manage security tools (SIEM, IDS/IPS, firewalls, EDR, etc.) to identify and respond to threats in real time;
Analyze and investigate security incidents, leading incident response (IR) and conducting forensic analysis when needed;
Configure, optimize and maintain security systems such as firewalls, VPNs, intrusion detection/prevention systems and enterprise antivirus;
Perform vulnerability assessments and support patch management and security updates;
Develop and implement incident response playbooks and automate security processes;
Collaborate with IT and DevOps teams to integrate security practices into development and infrastructure pipelines;
Conduct cybersecurity training and awareness initiatives for employees;
Ensure compliance with regulations and standards such as LGPD, GDPR, ISO 27001, and others;
Produce security reports and metrics for leadership, with recommendations for continuous improvement.

Bachelor's degree in Information Technology, Computer Science, Engineering or related fields (or equivalent experience);
Minimum of 5 years of experience in cybersecurity;
Experience with log analysis, threat detection and cyber incident response;
Familiarity with security frameworks such as NIST, MITRE ATT&CK, CIS Controls or ISO 27001;
Knowledge of networking (TCP/IP, VPN, firewalls) and operating systems (Windows, Linux);
Good communication skills and ability to work in a team, with the capability to explain technical concepts to non-technical audiences;
Intermediate or advanced English (technical reading and writing; conversational skills are a plus);
Experience with process improvement;
Scripting skills (e.g., Python, PowerShell) for automating security tasks;
Experience with cloud environments (AWS, Azure, Google Cloud) and cloud-native security architectures;
Knowledge of DevSecOps and integrating security into CI/CD pipelines;
Experience with Threat Intelligence and malware analysis;
Participation in CTFs (Capture The Flag) or cybersecurity competitions;
Preferred certifications: CEH, CompTIA Security+, CISSP, CISM, OSCP or equivalent.

Tuition scholarships of up to 100% for employees, legal dependents and household members (parents and siblings). Up to three simultaneous scholarships allowed;
Health insurance with full subsidy for the employee and partial coverage for family members; employee responsible for co-payments;
Optional dental insurance to care for your oral health;
Meal Allowance or Food Voucher with choice options to suit your needs;
Wellhub or Totalpass for flexible gym options;
Wellz, a platform focused on employees’ mental and emotional health offering various types of support, including access to individual online therapy;
Well-being and perks club with a dedicated program and exclusive advantages;
Flexible dress code to promote our diversity;
Life insurance;
Partnership with SESC;
Corporate University on our exclusive portal, Educare;
Growth opportunities — currently more than 60% of openings are filled through internal selection.