···
Log in / Register

Cybersecurity Analyst

Indeed
Full-time
Onsite
No experience limit
No degree limit
Praça do Patriarca, 62 - Centro Histórico de São Paulo, São Paulo - SP, 01002-010, Brazil
Favourites
Share
Some content was automatically translatedView Original

Description

Job Summary: We are seeking an information security professional to monitor, analyze, and implement security controls on a dynamic digital entertainment platform. Key Highlights: 1. Dynamic environment focused on ownership and accelerated learning 2. Company continuously evolving in digital entertainment 3. Opportunity to build something big with technology and scale **About Us** We are constantly evolving, strengthening our infrastructure, expanding our capabilities, and advancing to the next level of digital entertainment in Brazil. We remain pioneers — driven by ambition, technology, and a focus on scale. We operate in real time, with millions of decisions occurring every second, and we seek people who want to grow alongside this journey. Here, you will find a dynamic, results-oriented environment where ownership, autonomy, and accelerated learning are part of everyday life. We value those who leverage technology to their advantage, embrace challenges, and aim to build something significant. If you want to join a company undergoing continuous evolution — raising the bar and opening new opportunities — Apostou may be your next step. **Key Responsibilities** * Continuously monitor platform security — SIEM, application logs, network traffic — identifying and responding to incidents in real time. * Conduct vulnerability assessments and penetration tests (pentests) on applications, APIs, and infrastructure, prioritizing risk remediation. * Implement and maintain security controls — WAF, IDS/IPS, multi-factor authentication, privileged access management. * Collaborate with development teams to embed DevSecOps practices — SAST, DAST in CI/CD pipelines. * Manage the vulnerability management program — periodic scanning, risk-based prioritization, and remediation SLAs. * Develop and maintain the security incident response plan — runbooks, playbooks, and containment procedures. * Ensure compliance with iGaming regulatory security requirements — data protection, auditing, and LGPD. * Implement and monitor technical anti-fraud controls — multi\-accounting detection, bot detection, anomalous behavior detection. * Leverage AI and threat intelligence to identify emerging threats and anticipate attack vectors. * Deliver security training and awareness programs for technical teams and other employees. * Support security due diligence for vendors — game providers, payment processors. * Produce security posture reports for the Head of Tech, including risks, remediations, and metrics. Requirements: **What We Expect From You** * OWASP Top 10 and vulnerability analysis (Nessus, Qualys) * Basic/intermediate pentesting (Burp Suite, Metasploit) and SIEM (Splunk, ELK) * WAF, authentication (OAuth, SAML, MFA), and cloud security (AWS/GCP) * Basic knowledge of LGPD and ISO 27001 * Minimum 3 years in information security, with hands-on experience in pentesting and incident response * Fluent English (technical security documentation and CVEs) **Advantages That Will Set Your Application Apart:** * CEH or CompTIA Security\+ * CISSP, OSCP, or AWS Security Specialty * Experience in fintechs or digital platforms Benefits * iFood Benefits * Health Insurance * Dental Insurance * Commuting Support * Birthday Day Off * *Benefits applicable to CLT contracts only* *If you seek challenges, continuous learning, and want to stand out by what you deliver, grow with us.* ***We’re excited to meet you!***

Source:  indeed View original post
João Silva
Indeed · HR

Company

Indeed
Cookie
Cookie Settings
Our Apps
Download
Download on the
APP Store
Download
Get it on
Google Play
© 2025 Servanan International Pte. Ltd.