Browse
···
Log in / Register
Job Summary: We are seeking a professional to work in governance, access management, infrastructure security, monitoring, incident response, and offensive/defensive security activities. Key Highlights: 1. Lead information security policies and LGPD compliance validation 2. Manage access and privileges (IAM, PAM) 3. Participate in DevSecOps and Red Team (penetration testing) Our mission is to cultivate future technology leaders who will transform Brazil. Instead of theory alone, we emphasize hands-on practice. Our students learn by developing technological solutions for real-world problems brought by industry partners. Our innovation ecosystem is expanding, and we seek individuals eager to live and breathe this environment—aligned with our core values: Market Economy, Rule of Law, Ethics, and Sustainability. **Responsibilities and Duties** **Governance and Security Policies** * Lead the creation, updating, and dissemination of **Information Security Policies (ISP)**, standards, guidelines, and procedures. * Assess and propose continuous improvements to security directives aligned with best practices (ISO 27001, CIS Controls, NIST, etc.). * Conduct **LGPD compliance validation** and security policy adherence assessments for vendors, partners, and tools used. **Access and Identity Management** * Define and execute **Access Management** and **Privilege Management** (IAM, PAM) processes based on the principle of least privilege and segregation of duties. * Perform periodic access reviews and permission audits across cloud and on\-premise environments. **Infrastructure and Application Security** * Support technical teams in defining and implementing **server, endpoint, and container hardening**. * Assess and guide remediation of **vulnerabilities in applications, networks, on-premises infrastructure, and cloud environments (AWS, GCP, etc.)**. * Participate in security evaluations throughout **secure development lifecycles (DevSecOps)**. **DLP, Monitoring, and Auditing** * Manage and operate **Data Loss Prevention (DLP)**, SIEM, and EDR/XDR solutions. * Monitor alerts and generate **compliance reports, anomalous behavior reports, and sensitive data exposure reports**. * Actively participate in internal and external audits. **Incident Response and Business Continuity** * Handle **identification, containment, eradication, and recovery from security incidents**. * Contribute to the development and testing of the **Incident Response Plan** and **Business Continuity Plan (BCP/DRP)**. **Red Team (Offensive Activities / Security Testing)** * Conduct and/or oversee vendor-led: * **Penetration tests (pentests)** and attack simulations (e.g., phishing). * **Attack Surface Management (ASM)** assessments. * Simulations of data exfiltration and lateral movement (*lateral movement*). * Produce executive and technical vulnerability reports, and **coordinate corrective actions with responsible teams**. **Blue Team (Defensive Activities / Monitoring)** * Perform continuous security monitoring via SIEM, DLP, and detection solutions. * Implement and maintain **security controls on endpoints, servers, and cloud environments**. * Develop **security metrics**, support investigations, and prepare forensic evidence when required. * Participate in **attack simulation exercises** with other organizational departments. **Requirements and Qualifications** **Mandatory:** * Experience with security policies, access management, and incident response. * Knowledge of cloud security (AWS and GCP), hardening, and DLP. * Familiarity with security frameworks (ISO 27001, NIST, LGPD). * Experience with penetration testing tools, SIEM, EDR, and vulnerability scanners. **Desirable:** * Certifications such as: **Security\+, ISO 27001 Lead Implementer, CEH, OSCP, CompTIA CySA\+**. * Experience with DevSecOps and CI/CD. * Advanced Red Team techniques. **Additional Information** **And what benefits does being at Inteli offer?** * Meal allowance via Visa-branded card (Caju) * Bradesco health insurance with no co-payment within the accredited network (including premium networks such as Einstein, Sírio Libanês, and Vila Nova Star); * Dental plan; * Childcare assistance; * SESC membership; * Discounts on Totalpass plans; * Ample opportunity to make an impact with us! **What is our work model?** **100% in-person** **FACULTIES ARE ALREADY BEING BUILT AS THEY WILL BE IN THE FUTURE** =========================================== At Inteli, we train Brazil’s future technology leaders—preparing each student for real-world market demands. Demonstrating that cutting-edge technology and education matter—and so does their human dimension.
