Browse
···
Log in / Register
Job Summary: An information security professional responsible for monitoring, analyzing, and responding to incidents; managing vulnerabilities and access controls; and ensuring compliance with internal policies and security frameworks. Key Highlights: 1. Active involvement in security incident monitoring and response 2. Vulnerability management and continuous improvement in cybersecurity 3. Focus on compliance with ISO 27001, NIST, and LGPD **Responsibilities and Duties:** * **Security Monitoring and Analysis:** Identify, analyze, and respond to security incidents using SIEM tools, corporate antivirus, firewalls, IDS/IPS, and other related technologies. * **Vulnerability Management:** Conduct vulnerability scans, analyze results, and support responsible teams in remediating and mitigating identified risks. * **Incident Investigation:** Perform detailed security incident analyses, propose corrective actions, and prepare technical and managerial reports. * **Access and Identity Management:** Support administration of privileges and access controls, ensuring adherence to the principle of least privilege and internal policy compliance. * **Compliance and Governance:** Ensure security practices align with internal policies, regulations, and frameworks (e.g., ISO 27001, NIST, LGPD). * **Continuous Improvement:** Propose enhancements to security processes and controls, tracking trends and emerging threats in the cybersecurity landscape. * **Security Project Support:** Collaborate with internal and external teams to implement security solutions and controls within technology projects. **Required Qualifications and Skills:** * Bachelor’s degree in **Information Technology, Information Security, Computer Systems, or related fields**, completed or in progress. * Knowledge of **operating systems (Windows/Linux)** and **networks and protocols**. * Experience with **security tools**, such as corporate antivirus, SIEM, vulnerability scanners, etc. * Knowledge of **vulnerability management** and **incident response**. * Familiarity with **security frameworks and standards**, such as **NIST, ISO 27001, CIS Controls**. * Strong analytical ability, attention to detail, and effective written and verbal communication skills. * Continuous awareness of **emerging threats and cybersecurity trends**. **Preferred Qualifications (Will Be Valued):** * Information security certifications (e.g., **CompTIA Security+, ISO 27001 Foundation, Fortinet NSE, AWS Security**, among others). * Experience with **vulnerability analysis tools** (e.g., Nessus, Qualys, Nexpose). * Knowledge of **agile methodologies**. * Experience in **MSSP or SOC environments**. **Important:** ➡️ At the time of application, **please indicate whether you hold any information security certifications and specify which ones**. 12H ON / 36H OFF SHIFT
