Senior Information Security Analyst

Description

Job Summary: The Senior Information Security Analyst operates autonomously in identifying, analyzing, and mitigating risks, deepening vulnerability management and threat intelligence to strengthen security. Key Highlights: 1. A fundamental pillar in the company's cybersecurity strategy. 2. Autonomous operation in vulnerability management and threat intelligence. 3. Participation in the evaluation of new technologies and security solutions. ### **Senior Information Security Analyst** As a Senior Information Security Analyst, you will be a fundamental pillar in our cybersecurity strategy, operating with greater autonomy in identifying, analyzing, and mitigating risks. You will be responsible for deepening vulnerability management and threat intelligence, transforming data into concrete actions to strengthen our security posture. **Key Responsibilities:** * Conduct and manage large-scale vulnerability scans, interpreting results and prioritizing remediation based on risk. * Perform in-depth Threat Intelligence analyses, correlating information from multiple sources to identify emerging threats and potential impacts on our environment. * Propose and implement improvements to Vulnerability Management processes—from identification through remediation and verification. * Investigate and respond to medium-complexity security incidents, applying basic forensic methodologies and tools. * Develop and maintain security dashboards and metrics demonstrating control effectiveness and risk posture. * Actively participate in evaluating new security technologies and solutions, contributing technical insight. **Requirements:** * Completed undergraduate degree in Information Technology, Information Security, Computer Engineering, or related fields. * Proven experience (2\-4 years) in Information Security, with focus on Vulnerability Management and/or Threat Intelligence. * Advanced knowledge of vulnerability scanning tools and patch management platforms. * Ability to analyze and interpret Threat Intelligence feeds, IOCs, and TTPs (Tactics, Techniques, and Procedures). * Knowledge of security frameworks (e.g., NIST, CIS Controls, ISO 27001\). * **Critical and analytical mindset:** Ability to interpret complex data, identify patterns, assess risks, and propose effective solutions. * **Advanced English:** For reading technical documentation, conducting research, attending conferences, and global communication. **Preferred Qualifications:** * Security certifications (e.g., CEH, Security\+, CySA\+, GCIH). * Experience with scripting languages (e.g., Python, PowerShell) for automating security tasks. * Familiarity with SIEM/SOAR platforms. * **Spanish (Preferred):** Ability to communicate and read content in Spanish. ### **Department:** Outsourcing