Come be a **Proliniano!** Looking for an experience in a technology company that keeps growing? Come to **Prolins Tecnologia!** We have an opening for **Senior Information Security and Infrastructure Analyst** **Hiring:** Immediate hiring via PJ with a very attractive salary. **Location:** On-site work in Fortaleza/CE. **Prolins** has been operating in the technology market for over 20 years, offering agile and efficient solutions to our clients. Here you'll work alongside a team of experts in: software, website and application development; as well as consulting for projects. We also provide outsourcing services—the solution to increase efficiency and reduce your company's costs through our team of specialists. **Responsibilities and duties:** Professional with advanced technical knowledge and experience to **design, implement, and manage security strategies**, identify and mitigate risks, lead incident response, and act as a **technical reference and internal consultant**. In addition to skills in security technologies, the candidate must also have solid experience in **IT infrastructure and cloud services**, ensuring availability, performance, security, and continuity of operations in critical environments. The analyst must also possess **leadership, communication, and strategic thinking skills**, guiding teams and the organization in protecting digital assets and supporting strategic IT decisions. **Information Security** * **Governance and Compliance**: Work on information security governance aligned with recognized standards and frameworks (LGPD, ISO 27001, NIST, CIS Controls), ensuring regulatory compliance and risk reduction. * **Security Architecture**: Develop and maintain cybersecurity architecture, defining standards and practices that ensure protection of data, applications, and infrastructure. * **Security in IT Projects**: Provide technical guidance to teams and projects, ensuring security requirements are integrated from conception through delivery. * **Security Policies and Controls**: Participate in defining, implementing, and reviewing security policies and controls, including identity and access management (IAM/SSO/MFA), multi-factor authentication, and encryption use. * **Threat and Incident Management**: Monitor, investigate, and respond to security incidents; proactively manage vulnerabilities, apply patches, and conduct security testing (including pentests). * **Security Solutions Administration**: Experience administering market firewalls (WatchGuard, Fortinet, Palo Alto, among others) and using SIEM solutions (Wazuh, Splunk), PAM, CASB, VPN, IAM, DLP, EDR/corporate antivirus, and secure email gateways. * **Internal Audits and Compliance**: Conduct and support internal and external audits, create and review policies, and strengthen controls to ensure compliance and environment maturity. * **Threat Intelligence**: Continuously monitor global cyber threats and trends, focusing on proactive identification of risks and implementation of preventive measures. Responsible for strengthening controls, applying hardening, promoting system integration, and ensuring continuous improvement of the security environment. **Desirable certifications (advantages):** * Postgraduate degree or MBA in Cybersecurity or related fields; * CISSP, CEH, CCSP, ISO 27001 Lead Implementer/Auditor, CompTIA Security+, or equivalent Infrastructure and Cloud Services **On-Premises Infrastructure** * Administer virtualization clusters (main and backup sites), including creation, maintenance, optimization, and movement of VMs. * Manage corporate storage and tape library, ensuring performance, integrity, and capacity expansion. * Support environments with over 70 VMs and critical servers (AD, Exchange, File Server, Certificate Authorities, BI, Docker, Syslog, WSUS, Zabbix, Grafana, PABX, etc.). * Administer network equipment (L2/L3 switches, 10Gb top-of-rack, Wi-Fi), applying LACP, stacking, redundancy, and troubleshooting. * Monitor and maintain internet links (E1, MPLS, contingency, and redundancy). * Manage VLANs, DHCP, DNS, NPS, and Active Directory. * Administer Veeam Backup & Replication (disk/tape backups, continuous replication between sites, audit reports). * Implement automation and provisioning (WDS, MDM, Nexus). * Manage monitoring environments (Zabbix, Grafana, Prometheus, Power BI). * Apply security patches and critical updates in physical and virtual environments**.** **Cloud Services (Microsoft 365 / Azure AD)** * Central administration of Microsoft 365 Admin Center (licensing, user, group, and reporting governance). * Implementation and maintenance of Microsoft 365 tenants, ensuring integration with DNS and hybrid environments. * Manage Microsoft Teams (policies, permissions, channels, governance, and reporting). * Administer SharePoint Online (sites, permissions, storage, and access policies). * Manage Microsoft Entra ID (Azure AD): * Integration with on-premises Active Directory. * Creation of application IDs. * Implementation of SSO (Single Sign-On). * Definition of cloud security policies (MFA, Conditional Access, MDM, device protection). * Ensure regulatory compliance in cloud environments. * Plan and execute workload migration to the cloud. * Provide ongoing user support, ensuring productivity and security. **Desirable certifications (advantages):** Windows Server Hybrid Administrator Associate, Azure Administrator Associate, Microsoft 365 Certified Enterprise Administrator Expert, Veeam Certified Engineer (VMCE), Foundation ITIL. Strategic Management * Support management in **strategic IT planning**, governance, budgeting, and investment decisions. * Participate consultatively in IT and Information Security committees. * Develop and review strategic documents: **Master IT Plan, BIA, BCP, manuals, and SOPs**. * **Manage Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP), conducting periodic cross-site tests and maintaining compliance documentation** * Executive reporting for senior management and audits. * Negotiate and manage vendors and contracts. * Support internal, external, and independent audits, ensuring compliance. DevOps and Systems Integration * Administer Atlassian platforms (Jira, Confluence) and code versioning (Bitbucket and TFS). * Automation and orchestration with **Jenkins, Docker, Nexus, Keycloak**, and similar tools. * Facilitate integration between development and operations teams, acting as a technical bridge. * Support application deployment, approval, and validation. * Manage code versioning and continuous integration environments. * Create environments supporting corporate solutions on containers, VMs, and hybrid servers. Behavioral Competencies * Autonomy and technical leadership. * Strategic thinking and results focus. * Ability to communicate clearly with technical and business areas. * Proactiveness, curiosity, and innovative vision. * Attention to detail and discipline in execution. **Required:** Bachelor’s degree in Information Technology, Systems Analysis and Development, Information Security, Software Engineering, or related fields. Technical English. **5 to 10 years** of experience in Information Security and/or IT Infrastructure at a senior level. **Benefits:** * 15 paid days off after 12 months with the company; * Access to Universidade Prolins; * Birthday gift card worth R$ 150.00\.