Browse
···
Log in / Register
Job Summary: We are seeking a highly experienced Senior Cybersecurity Engineer to lead and execute advanced cybersecurity initiatives. Key Highlights: 1. Blue Team (Defensive) and Red Team (Offensive) operations 2. Strategic and technical role with strong analytical capability 3. Dynamic, collaborative, and transparent environment with room for growth ### **Senior Cybersecurity Engineer** We are seeking a highly experienced Senior Cybersecurity Engineer to lead and execute advanced cybersecurity initiatives, operating both defensively (Blue Team) and offensively (Red Team). This professional will be responsible for protecting the organization’s digital assets, identifying vulnerabilities before they are exploited, and continuously strengthening our security posture. The position requires a strategic and technical profile with strong analytical capability, risk awareness, adversarial mindset, and hands-on experience in complex environments. ### **Your Responsibilities** #### **Blue Team (Defense)** * Monitor, detect, and respond to security incidents. * Lead incident investigations (digital forensics and malware analysis). * Develop and enhance incident response playbooks. * Implement and manage tools such as SIEM, EDR, NDR, and SOAR. * Conduct log analysis, threat hunting, and event correlation. * Implement security controls based on frameworks (NIST, ISO 27001, MITRE ATT\&CK). * Manage vulnerabilities and perform risk-based prioritization. * Work on infrastructure, cloud, and application hardening. * Support audits and regulatory requirements (LGPD, GDPR, etc.). #### **Red Team (Offense)** * Plan and execute internal and external penetration tests (pentests). * Conduct attack simulations (Red Team Exercises). * Perform testing on web applications, APIs, infrastructure, networks, and cloud environments. * Develop custom scripts and exploits when necessary. * Conduct controlled phishing campaigns. * Map attack surfaces and identify critical vulnerabilities. * Produce technical and executive reports with clear recommendations. * Collaborate with the Blue Team to improve detection and response. ### **Requirements** * Proven experience in Blue Team and Red Team roles. * Proficiency with tools such as: * + SIEM (Elastic) + EDR/XDR (CarbonBLack) + Pentesting tools (Burp Suite) * Experience with cloud environments (AWS, GCP). * In-depth knowledge of: * + Networking (TCP/IP, DNS, VPN, Firewalls) + Windows/Linux systems + Application security (OWASP Top 10\) + MITRE ATT\&CK * Experience with scripting (Python, PowerShell, or Bash). * Certifications such as: * + OSCP, OSEP + CEH + CISSP + GIAC (GCIA, GCIH, GPEN) * Experience in DevSecOps. * Knowledge of security automation. * Experience with Zero Trust architecture. * Participation in CTFs or bug bounty programs. #### **Performance Indicators (KPIs)** * Mean Time to Detect (MTTD). * Mean Time to Respond (MTTR). * Reduction of critical vulnerabilities. * Effectiveness of penetration testing. * Improvement in security maturity. ### **More About You** * Critical and analytical thinking. * Offensive and defensive mindset. * Clear communication with technical and executive stakeholders. * Technical leadership capability. * Proactivity and ownership mindset. * High ethical standards and confidentiality. ### **Why This Role Stands Out** This role is strategic for the organization, combining defense and offense within a single senior position. The professional will serve as the technical security reference, directly contributing to the company’s cyber resilience. ### **What We Offer** At Certta, we believe work goes beyond the job description: it’s about being part of a dynamic, collaborative, and transparent environment where everyone has space to grow. Here, we celebrate achievements, encourage innovation, and value work-life balance. Our benefits include: * Caju R$ 915.00 (flexible for meal and food vouchers) * Health and dental insurance * Caju Mais: Conexa Saúde, Psicologia Viva, and Wellhub * Birthday Day Off * Language school partnership ### **About Certta** At Certta, we believe innovation only makes sense when born from trust and respect among people. Our culture is grounded in ethics, diversity, and security — non-negotiable values guiding all our decisions. Here, every voice matters, every talent has space to grow, and every achievement is celebrated. ### **Equal Opportunity** Certta believes in the power of diversity to transform teams and businesses. We are committed to building an inclusive, respectful, and discrimination-free environment. All applications are welcome, regardless of race, gender, sexual orientation, age, disability, religion, or any other characteristic protected by law.
