Infrastructure and Information Security Analyst

Description

Job Summary: We are looking for an Infrastructure and Information Security Analyst to join a dynamic environment focused on monitoring, troubleshooting, implementing new solutions, and protecting data. Key Highlights: 1. Working in a dynamic and challenging environment 2. Focus on information security and infrastructure 3. Opportunity for technology and security enthusiasts ### **JOB DESCRIPTION** We are seeking a highly qualified **Infrastructure and Information Security Analyst** to join our team. If you are passionate about technology and security, and wish to work in a dynamic and challenging environment, this opportunity is for you! ***Responsibilities:*** ***Infrastructure*** * Monitoring and Maintenance: Supervise and maintain IT systems, including servers, networks, and databases, ensuring continuous and efficient operation. * Diagnosis and Troubleshooting: Identify and resolve technical issues—such as communication failures and storage errors—to minimize disruptions. * Planning and Implementation: Plan and implement new technological solutions to improve system efficiency and security. * Data Security: Implement protection policies and access controls to ensure data security. ***Information Security*** * Vulnerability Identification: Detect weaknesses in systems and implement corrective measures to protect against threats. * Implementation of Security Policies: Develop and enforce security policies—including requirements for strong passwords and employee training to recognize threats such as phishing. * Incident Response: Coordinate responses to security incidents, investigate occurrences, and suggest improvements to prevent future issues. Penetration Testing: Conduct penetration tests to simulate attacks and identify vulnerabilities, thereby strengthening the company’s security posture. ### **JOB REQUIREMENTS** ***Requirements:*** * Designing secure architectures in Multi-Cloud environments; * Knowledge of API Security and related topics; * Knowledge of IAM, MFA, and related topics; * Vulnerability Management, Security Posture, and Compliance; * Identity and Access Management (IAM); * Application Penetration Testing; * Proficiency with SIEM and SOAR tools, including playbook creation and automation; * Proven experience administering on-premises Data Centers. * Advanced knowledge of physical servers (Dell, HPE, IBM, etc.). * Experience with Storage and SAN (NetApp, EMC, HPE, Pure Storage, etc.). * Solid experience with IT Infrastructure and Microsoft technologies (Windows Server, Active Directory, DNS, DHCP, Hyper-V, etc.). * Strong knowledge of virtualization (VMware, Hyper-V, Proxmox, etc.). * Familiarity with Data Center networking (Switches, Firewalls, Load Balancers). * Experience with Windows and Linux operating systems in corporate environments. * Advanced knowledge of network services (routes, VPN, VLAN, TCP/IP, etc.). * Knowledge of automation and monitoring tools (Zabbix, PRTG, etc.). * Knowledge of relational (MySQL and SQL Server) and non-relational databases. * Vendor management, contracts, and negotiations. * Familiarity with ITIL best practices and incident/problem management. * Bachelor’s degree in related fields (Systems Analysis, Computer Science, Engineering, Administration). * Advanced knowledge of network services (routes, VPN, VLAN, TCP/IP, etc.). * Availability for on-call shifts and travel, as required. * Bachelor’s degree in Systems Analysis, Computer Science, or Information Technology. * Knowledge of relational (MySQL and SQL Server) and non-relational databases. Differentials: **Differentials:** * Certifications such as VMware VCP, ITIL, Cisco CCNA, Microsoft Azure, AWS, NDE. * Experience with backup and disaster recovery solutions. * Experience in infrastructure migration projects. * Knowledge of security frameworks (PCI-DSS, MITRE ATT&CK, ISF, CIS, OWASP). **Personal Characteristics:** * Attention to Detail: The ability to identify minor inconsistencies that may indicate a vulnerability is crucial. * Proactivity: Anticipating problems and acting preventively to avoid security incidents is an essential skill. * Resilience: The field of information security can be stressful—especially during security incidents. Resilience helps maintain composure and effectiveness under pressure. * Problem-Solving Ability: Quickly and effectively resolving problems is a key part of the role. * Effective Communication: Being able to clearly explain technical concepts to non-technical personnel is fundamental—especially when training employees on security practices. ### **BENEFITS** Unimed Health Plan Dental Plan Life Insurance On-site Cafeteria Profit Sharing Program (PPR) up to 1.5 monthly salaries per year ### **ADDITIONAL INFORMATION** **Contract Type:** CLT