SENIOR CYBERSECURITY ANALYST

Description

Job Summary: Senior Cybersecurity Analyst – Cloud Security to protect multicloud environments, enhancing security in DevSecOps, API Security, and application architecture. Key Highlights: 1. Strategic and technical engagement on the front line of multicloud protection. 2. Influencing engineering, architecture, and development squads. 3. Complex challenges, autonomy, and direct impact on corporate security. We are seeking a **Senior Cybersecurity Analyst – Cloud Security** to operate on the front line of protecting our multicloud environments (AWS, Azure, and Oracle). This professional will be responsible for elevating our security posture across DevSecOps pipelines, API Security, application architecture, and cloud environment governance. This role requires hands-on expertise with Cloud Security tools such as **Wiz** and **CrowdStrike Cloud Security**, along with strong experience in AWS environments and AppSec initiatives. The analyst will operate strategically and technically, influencing engineering, architecture, and development squads to ensure robust standards, adherence to Zero Trust models, and continuous risk reduction across applications, APIs, and infrastructure. This is an opportunity for professionals who thrive on complex challenges, autonomy, deep technical expertise, and direct impact on corporate security posture. Our purpose at Brasilprev is: **"Transforming how Brazilians prepare their future sustainably!"** If you share and believe in this purpose, let’s build solutions that help our customers live longevity fully, consciously, and balanced. The **Cyber** team at Brasilprev opens its doors to people who want to build customer-centric solutions that concretely support long-term financial planning, longevity, and optimal utilization of lifetime-accumulated resources. Do you identify with this? Join us! ;) **Responsibilities and Duties** * Analyze vulnerabilities in CI/CD pipelines with a security focus using SAST, SCA, DAST, container scanning, and API analysis. * Evaluate, prioritize, and track remediation of vulnerabilities identified in applications, APIs, microservices, and integrations—including assessments via **Wiz**, **Cloud Security (CrowdStrike)**, and **Veracode**. * Conduct architectural reviews and support development teams in defining secure standards aligned with the **Zero Trust** model. * Design, evolve, and maintain security mechanisms for APIs and microservices, ensuring authentication, authorization, data protection, and governance. * Develop automation workflows and API integrations to support processes, audits, and AppSec requirements. * Operate in **multicloud** environments (AWS, Azure, Oracle), managing security posture tools—with particular emphasis on **CrowdStrike Cloud Security** and **Wiz**. * Ensure compliance and best practices in AWS environments covering networking, identity, infrastructure-as-code, and governance. * Support strategic risk reduction initiatives, vulnerability response, and security framework implementation. **Requirements and Qualifications** ### **Technical Experience / DevSecOps / AppSec** * Solid experience with **DevSecOps** practices: SAST, SCA, DAST, container scanning, and pipeline automation. * Architectural analysis capability focused on security for applications, APIs, and microservices. * Proven experience in **Application Security**, including technical execution and leadership in strategic initiatives. * Proficiency in vulnerability and risk frameworks: **CVSS, CWE, OWASP Top 10, and API Security Top 10**. * Experience with **secure code review**, threat modeling, and architectural analysis. * Hands-on experience with DevOps pipelines: **Azure DevOps, GitLab, GitHub, and/or AWS Code\***. * Knowledge of automation, orchestration, and API usage, plus scripting in **PowerShell** or **Python**. * Demonstrated experience with **Wiz** (CSPM, IAM Graph, Toxic Combinations). * Demonstrated experience with **CrowdStrike Cloud Security** (CSPM, CIEM, Container/Workload Protection). ### **Cloud Security / AWS (Primary Focus)** * Solid experience administering and operating production AWS environments. * Strong experience with IaC: **Terraform and/or CloudFormation**. * Proven experience with AWS governance: **Landing Zones, AWS Organizations, SCPs**. * Consistent knowledge of the **AWS Well\-Architected Framework**. * Experience with AWS networking: **VPC, Security Groups, NACLs, Load Balancers, VPN, Direct Connect**. ### **Multicloud** * Practical knowledge of security in **Azure** and **Oracle Cloud** (posture, identity, networking, hardening). **Additional Information** **Benefits Package** * Meal Allowance and Food Voucher * Life Insurance \- Brasilseg * Health Insurance \- Bradesco * Dental Insurance \- BBDental * Pension Plan \- Brasilprev * Extended Maternity and Paternity Leave * Childcare/Babysitter Assistance * Profit Sharing Program (PPR) * Transportation Voucher / Commuter Assistance * Birthday Day Off (one day off in your birth month) * Wellhub (Gympass) * Health Space with health and well-being promotion programs for employees * Wellz \- Mental health and emotional well-being platform * Flexible Work Schedule and Time Bank * AABB Agreement – Associação Atlética do Banco do Brasil * LinkedIn Learning * Home Office Cost Allowance (except for leadership roles) * **Hybrid work model (up to 02 remote days per week).** We have a bold purpose: **Transform how Brazilians prepare their future!** And we want inspiring people by our side. Founded 32 years ago, our mission has been to enable our customers’ life goals. Today, over 2.5 million Brazilians trust our work and allow us to contribute to their medium- and long-term life planning. We are market leaders and specialists, exclusively dedicated to our business—backed by major shareholders: **Banco do Brasil and Principal Financial Group**. We continuously pursue best-in-class management practices, fostering an environment conducive to human development, learning, and quality of life—thereby cultivating a culture of performance and recognition. If you identify with this, visit our website, explore this opportunity, and learn more about **Brasilprev**.