Description: * Knowledge of security tools (Firewall, WAF, IDS, SIEM, NESSUS, DLP, Web Gateway etc.); * Knowledge of computer network and cloud infrastructure; * Knowledge of security and technology frameworks and regulations such as ISO 27001, ISO 27701, NIST CSF, CIS Controls, MITRE ATT\&CK®, OWASP; * Experience performing GAP Analysis using security frameworks and developing policies; * Experience in information security risk management; * Knowledge in handling vulnerabilities and threats in applications and infrastructure. * Analytical thinking, business-oriented mindset, strong interpersonal communication skills, and ability to handle complex tasks; * Bachelor’s degree in Technology or related fields; * Postgraduate education in information security is desirable; * Certifications such as ISO 27001, Security\+, CEH are desirable. * Operate the security infrastructure using technological security tools (WAF, Endpoint, Vulnerability Scanning, DNS SEC, etc); * Monitor business area projects, identifying and recommending security requirements and evaluating whether these requirements are being met; * Map security risks in systems and infrastructure and implement controls to address vulnerabilities and threats; * Manage security incidents by identifying and taking actions to mitigate them; * Oversee SOC operations with the contracted company, defining rules, applying hardening, and monitoring performance indicators. 2510110202241743418