Browse
···
Log in / Register
Job Summary: We are seeking an Information Security Analyst with a focus on Penetration Testing (Pentests) to strengthen our offensive security posture by identifying and documenting vulnerabilities in applications, infrastructure, APIs, and cloud environments. Key Highlights: 1. Practical experience in offensive pentests and vulnerability exploitation. 2. Proficiency with security tools such as Burp Suite, Nmap, and Metasploit. 3. Offensive mindset, proactivity, and technical curiosity. We are looking for an Information Security Analyst specializing in Penetration Testing (Pentests) to enhance our offensive security posture. This professional will be responsible for identifying, performing controlled exploitation of, and documenting vulnerabilities in applications, infrastructure, APIs, and cloud environments—directly contributing to the organization’s security maturity. **Responsibilities and Duties** Plan, execute, and document internal and external pentests, including web applications, APIs, mobile apps, networks, servers, cloud environments, and third-party components. Conduct in-depth vulnerability assessments, including manual exploitation and validation of findings identified by automated scanners. Simulate real-world attacks, including scenario-based intrusion testing (Black Box, White Box, and Grey Box). Perform Red Teaming/Adversary Simulation activities where applicable. Prepare technical and executive reports detailing findings, attack vectors, severity levels, and remediation recommendations. Support technical teams in understanding and remediating vulnerabilities by providing clear, practical guidance on mitigation. Conduct security code and architecture reviews focused on identifying exploitable weaknesses (when applicable). Contribute to the evolution of offensive security processes and methodologies aligned with frameworks such as OWASP, MITRE ATT\&CK, and PTES. Support the SOC and incident response team by providing offensive insights that improve detection effectiveness. Deliver technical workshops and awareness training focused on offensive security and vulnerability prevention. **Requirements and Qualifications** Bachelor’s degree in Computer Science, Computer Engineering, Information Security, or related fields. Practical experience in offensive pentests, including vulnerability exploitation in applications, networks, APIs, and infrastructure. Proficiency with security tools such as: Burp Suite, ZAP, Nmap, Nessus, Nikto Metasploit, SQLMap, Hydra Feroxbuster, Gobuster, Subfinder, Amass Strong knowledge of OWASP Top 10, ASVS, API Security Top 10, MITRE ATT\&CK, and PTES. Ability to manually advance exploits and identify flaws not detected by automated scanners. Understanding of application architecture, infrastructure, REST/GraphQL APIs, networks, and cloud environments. Knowledge of programming languages or concepts supporting exploitation and automation (e.g., Python, Bash, PowerShell). Familiarity with IAM concepts, authentication protocols, and API security (JWT, OAuth2, OIDC). Strong analytical ability, clear communication, and organized documentation practices. Proactivity, technical curiosity, and an offensive mindset. Knowledge of cloud environments: AWS, Azure, and GCP. **Additional Information** WHAT ELSE DO WE OFFER? * Medical Assistance – it’s good to have when needed * Dental Assistance – because we love smiles here * Renascer Program – one life renews another * Significant Dates – we love celebrating what truly matters * Education Investment – we’re with you on your learning journey ;) * Profit Sharing – we build together, celebrate together on the Day of Belonging! * Individual Development Plan – we value your career ownership * Private Pension Plan – we like thinking about future possibilities * Life Insurance – important, right? rs * Time Together – we recognize those who enjoy being with us * Meal and/or Food Allowance – delicious! * Transportation Allowance – no deductions? Yes. * Childcare/Babysitting Assistance – because your baby deserves a safe and nurturing place. At Central Ailos, **we are driven by the union of diverse talents united by the same purpose: to cooperate in transforming lives.** That is how we grow and evolve—working together to reach places no one else has, taking our talents further than ever before, offering a collaborative environment and abundant opportunities and encouragement to achieve your goals alongside us. We are part of the Ailos System, comprising 13 credit cooperatives, an insurance brokerage, and our Central Cooperative. We are expanding both physically and technologically to develop increasingly effective solutions—as well as financial products and services that make a real difference in the lives of our 1.7 million+ members. If you also believe in the power of cooperation to transform lives, this is where you belong. **Come explore the universe of opportunities at Central Ailos!** #### **WANT TO EXPAND YOUR KNOWLEDGE AND LEARN MORE ABOUT THE COOPERATIVE UNIVERSE?** **Click here** and explore various free courses on our Ailos Educação platform to strengthen your resume!
