Browse
···
Log in / Register
Job Summary: We are seeking a professional to work in the field of information security, with a focus on governance, access management, infrastructure security, DLP, monitoring, and incident response—including Red Team and Blue Team activities. Key Highlights: 1. Creation and updating of information security policies 2. Access and privilege management (IAM, PAM) 3. Vulnerability assessment and DevSecOps Our mission is to train the future technology leaders who will transform Brazil. Instead of theory alone, we emphasize hands-on practice. Our students learn by developing technological solutions for real-world problems brought by industry partners. Our innovation ecosystem is growing, and we seek individuals eager to live and breathe this environment—aligned with our core values: Market Economy, Rule of Law, Ethics, and Sustainability. **Responsibilities and Duties** **Governance and Security Policies** * Lead the creation, updating, and dissemination of **information security policies (ISP)**, standards, guidelines, and procedures. * Evaluate and propose continuous improvements to security directives aligned with best practices (ISO 27001, CIS Controls, NIST, etc.). * Conduct **LGPD compliance validation** and security policy adherence assessments for vendors, partners, and tools in use. **Identity and Access Management** * Define and execute **access and privilege management** processes (IAM, PAM), based on the principle of least privilege and segregation of duties. * Perform periodic access reviews and permission audits across cloud and on\-premise environments. **Infrastructure and Application Security** * Support technical teams in defining and implementing **server, endpoint, and container hardening**. * Assess and guide remediation of **vulnerabilities in applications, networks, on-premises infrastructure, and cloud environments (AWS, GCP, etc.)**. * Participate in security evaluations throughout **secure development lifecycles (DevSecOps)**. **DLP, Monitoring, and Auditing** * Manage and operate **DLP (Data Loss Prevention)**, SIEM, and EDR/XDR solutions. * Monitor alerts and generate **compliance reports, anomalous behavior reports, and sensitive data exposure reports**. * Actively participate in internal and external audits. **Incident Response and Business Continuity** * Respond to security incidents by performing **identification, containment, eradication, and recovery**. * Participate in the development and testing of the **Incident Response Plan** and **Business Continuity Plan (BCP/DRP)**. **Red Team (Offensive Activities / Security Testing)** * Conduct and/or oversee vendor-led activities including: * **Penetration tests (Pentests)** and attack simulations (e.g., phishing). * **Attack surface management (ASM)** assessments. * Simulations of data exfiltration and lateral movement (*lateral movement*). * Produce executive and technical vulnerability reports, and **coordinate corrective actions with responsible teams**. **Blue Team (Defensive Activities / Monitoring)** * Perform continuous security monitoring via SIEM, DLP, and detection solutions. * Implement and maintain **security controls on endpoints, servers, and cloud environments**. * Develop **security metrics**, support investigations, and prepare forensic evidence when required. * Participate in **attack simulation exercises** with other organizational units. **Requirements and Qualifications** **Mandatory:** * Experience with security policies, access management, and incident response. * Knowledge of cloud security (AWS and GCP), hardening, and DLP. * Familiarity with security frameworks (ISO 27001, NIST, LGPD). * Experience with Pentest tools, SIEM, EDR, and vulnerability scanners. **Desirable:** * Certifications such as: **Security\+, ISO 27001 Lead Implementer, CEH, OSCP, CompTIA CySA\+**. * Experience with DevSecOps and CI/CD. * Advanced Red Team techniques. **Additional Information** **And what benefits does being an Inteli student offer?** * Meal allowance via Visa-branded card (Caju) * Bradesco health insurance with no co-payment at accredited providers (including premium networks such as Einstein, Sírio Libanês, and Vila Nova Star); * Dental plan; * Daycare assistance; * SESC membership; * Discounts on Totalpass plans; * Ample opportunity to make things happen with us! **What is our work model?** **100% in-person** **FACULTIES ARE ALREADY BEING BUILT AS THEY WILL BE IN THE FUTURE** =========================================== At Inteli, we train Brazil’s future technology leaders—preparing each of our students for real-world market demands. We demonstrate that cutting-edge technology and education matter—and so does the human element behind them.
