Cybersecurity Specialist

Description

Job Summary: As a Cybersecurity Specialist, you will assist in implementing security best practices, participate in event monitoring, handle incidents, and lead code and architecture review initiatives to ensure the security of applications and infrastructure. Key Highlights: 1. Assistance in implementing security best practices and tools. 2. Participation in incident response and threat investigation. 3. Leadership in code review, application architecture, and design. Caixa Vida e Previdência offers a wide range of life insurance products, pension plans, and credit insurance solutions. We provide solutions of all types and price points to serve diverse customer profiles. Our purpose is to **care for Brazilian families**. Daily, we look across Brazil to understand the present and contribute to planning for the future. CVP exists for those who want to supplement retirement income, secure funding for their children’s college education, purchase a home, or for talented professionals seeking a new professional journey toward success. If you value caring for Brazilians and wish to grow with Caixa Vida e Previdência, the doors are open. **Responsibilities and Duties** **As a Cybersecurity Specialist, you will be responsible for:** * Assisting in configuration and implementation of security best practices in SAST/DAST tools and Microsoft Azure Cloud (domain, MS365, and infrastructure); * Participating in Security Operations Center (SOC) and Managed Security Services (MSS) event monitoring implementation; * Actively participating in incident response alongside CSIRT teams through threat investigation and reproduction; * Collaborating closely with IT teams and other departments to ensure cybersecurity; * Supporting teams in vulnerability remediation/mitigation and establishing security controls; * Proposing new security solutions based on emerging market trends and technologies; * Conducting Proof-of-Concept (PoC) evaluations for new technologies and tools to improve departmental processes; * Developing KPIs, technical reports, and managerial reports; * Leading code, architecture, and design review initiatives for Mobile, Web, APIs, and microservices applications; * Driving and maintaining the Secure by Design program, secure SDLC, and DevSecOps practices; * Identifying requirements for deploying DAST, SAST, IAST, SCA, and security tools within CI/CD pipelines; * Performing Threat Modeling, Code Review, and internal penetration tests focused on critical applications; * Conducting workshops and technical training for developers and architects, emphasizing vulnerability remediation and secure coding best practices; * Supporting definition of security requirements for new projects and third-party application integrations; * Monitoring vulnerabilities in third-party libraries and supporting secure dependency management; * Participating in architecture committees and technical reviews to ensure security from the beginning of the software lifecycle. **Requirements and Qualifications** * Knowledge of Windows and Linux server infrastructure; * Experience in application security and penetration testing for on-premises and Azure cloud environments; * Knowledge of Single Sign-On (SSO) authentication solutions and federation standards such as ADFS and Azure AD; * Familiarity with security methodologies and frameworks including ISO 27001/27002, NIST CSF, CIS 20, ISF Healthcheck, SUSEP 638, among others; * Experience with Agile methodology; * Strong ability to read, interpret, and translate English-language texts; * Excellent written and verbal communication skills; * Proficiency in CI/CD pipeline automation; * Expertise in SAST and DAST tools; * Knowledge of secure development practices to analyze and remediate vulnerabilities; * Knowledge of containers and virtualization; * Experience in threat modeling; * Understanding of Infrastructure-as-Code (IaC) concepts; * Knowledge of Agile methodologies, DevSecOps, CSSLP (Certified Secure Software Lifecycle Professional), and CDSP (Certified DevOps Security Professional); * Degree in Information Technology or related fields (e.g., Computer Engineering, Computer Science, Information Systems, Data Processing, Information Security, Networks, etc.); * Postgraduate degree in technology or information security is desirable; * Certifications in information security such as OSCP, OSCE, OSWE, SANS GIAC, CEH, DCPT, CompTIA, CSSLP (Certified Secure Software Lifecycle Professional), CDSP (Certified DevOps Security Professional), among others, are desirable. **Additional Information** **These are our benefits:** **Profit Sharing** After achieving goals, we deserve an additional payment, right? **Flexible Working Hours** You may arrive between 8:00 AM and 10:00 AM and leave between 5:00 PM and 7:00 PM. **Meal and Food Allowance** One card for groceries and another for lunch with coworkers. If preferred, both amounts can be loaded onto a single card. **Wellhub** Health matters! CVP employees use Wellhub Gold+ at no cost. **Transportation Allowance** Simply provide your daily commute details to receive this benefit. **Health Insurance Plan** No co-payment and no monthly deduction — take care of your health and that of your dependents. **Dental Insurance Plan** Let’s celebrate our achievements and smile confidently in photos. **Pharmacy Allowance** Use the Vidalink app to access discounts at thousands of pharmacies. **Childcare and Babysitting Allowance** Financial support so your child is well cared for while you work. **Life Insurance** Benefits for you and your family, especially during the most difficult times. **Travel Insurance** Coverage for domestic and international trips — fully complimentary. **Pension Plan** Caixa Vida e Previdência contributes the same percentage as you do, up to a limit of 2%–12%. **Maternity Kit** New mothers and fathers receive a gift from Caixa Vida e Previdência. **Maternity Leave** Up to 180 days of leave. CVP has joined the “Empresa Cidadã” (Citizen Company) Program. **Paternity Leave** At CVP, fathers can enjoy extra time with their newborns. At CAIXA Vida e Previdência, we are committed to understanding our customers’ dreams, desires, and future plans. We tirelessly support them on their journey toward major personal achievements. As a company recognized by the Great Place to Work® seal, it’s clear why CVP ranks among Brazil’s largest insurers, specializing in Life Insurance, Pension Plans, and Zero-Debt Solutions. Our solutions turn dreams into reality — whether purchasing a car, a home, or financing college for your children. In the most important moments, the most exciting accomplishments, and the most unexpected challenges, we stand beside millions of Brazilians. Here, we value talent ownership and development, respecting the diversity of every individual. If you identify with these values and seek a challenging journey, follow our job openings and become part of our success story!