Cybersecurity Specialist

Description

Job Summary: Defend digital infrastructure and data integrity by designing and monitoring security controls and ensuring compliance with the LGPD. Key Highlights: 1. Comprehensive protection of sensitive data and digital infrastructure 2. Leadership in cyber incident response and forensic analysis 3. Guarantee of compliance with the General Data Protection Law (LGPD) As a **Cybersecurity Specialist** at Fundação Misnihayatulamal Gunungsari, you will be the primary guardian of our digital infrastructure and institutional data integrity. Your mission is to design, implement, and monitor robust security controls to protect sensitive information against unauthorized access, cyberattacks, and system vulnerabilities—ensuring operational continuity and strict compliance with Brazilian data protection laws. **Key Responsibilities** * **Defense Management:** Administer and configure firewalls, intrusion detection and prevention systems (IDS/IPS), VPNs, and endpoint protection solutions. * **Threat Monitoring:** Operate SIEM (Security Information and Event Management) tools to identify and respond to security incidents in real time. * **Vulnerability Analysis:** Conduct periodic vulnerability scans and basic penetration tests to identify weaknesses in networks, servers, and applications, coordinating remediation plans. * **Incident Response:** Lead the cyber incident response plan, performing basic forensic analysis and mitigating damage in case of breaches. * **Compliance and LGPD:** Ensure all Foundation data processing activities strictly comply with the **General Data Protection Law (LGPD)**. * **Identity and Access Management (IAM):** Manage access control policies, multi-factor authentication (MFA), and user privileges to enforce the principle of least privilege. * **Security Awareness:** Develop and deliver security training for Foundation staff, focusing on best practices, phishing, and social engineering. **Technical Requirements** * **Network Security:** Proficiency in TCP/IP protocols, Wi\-Fi security, DNS, and secure routing. * **Operating Systems:** Advanced knowledge of security in **Windows Server** and **Linux** environments. * **Tools:** Experience with tools such as Wireshark, Metasploit, Nessus/OpenVAS, and enterprise antivirus solutions (EDR/XDR). * **Cryptography:** Knowledge of encryption standards for data at rest and in transit (SSL/TLS, AES). * **Cloud Security:** Experience securing cloud environments (Azure, AWS, or Google Cloud). **Qualifications and Experience** * **Education:** Bachelor’s degree in Information Security, Computer Science, Computer Networks, or related fields. * **Experience:** Minimum of **4 years** in roles directly related to cybersecurity or network administration with a security focus. * **Certifications:** Certifications such as **CompTIA Security\+**, **CEH (Certified Ethical Hacker)**, or **CompTIA CySA\+** are highly desirable. * **Languages:** Native or fluent Portuguese. **Technical English** is essential for reading documentation, logs, and global threat forums. **Desirable Attributes** * Analytical mindset with exceptional attention to detail and anomalous patterns. * Excellent communication skills to explain technical risks to managers from other departments. * Ability to remain calm and act precisely under pressure during security crises. Employment Type: Full-time Compensation: R$18\.000,00 per month Benefits: * Health insurance * Life insurance * Meal allowance * Transportation allowance Work Location: On-site