Security Engineer II

October 23

Apply Now

Receive Emails with Similar Jobs

Arco Educação

WebsiteLinkedInAll Job Openings

Arco é uma companhia brasileira focada em soluções educacionais para o ensino básico que desenvolve conteúdo, tecnologia e serviços para mais de 1.3 milhões de alunos e +5.000 escolas privadas de todo o país, abrangendo os segmentos da educação infantil ao ensino médio.

1001 - 5000 employees

📋 Description

• Act in the security incident response process (CSIRT), participating in investigations, reporting, remediation and improvements to the incident response plan; • Support monitoring, investigation and enrichment of cyber threat intelligence (CTI), focusing on brand mentions, domains, data leaks and phishing campaigns, using open sources, deep and dark web to strengthen Arco's preventive posture; • Maintain and propose improvements to the vulnerability management workflow in cloud and on-premise environments, ensuring visibility, remediation and proper follow-up within established SLAs; • Support corporate areas with security consulting and recommendations for controls in projects and initiatives; • Implement security controls and automation in corporate platforms such as Google Workspace, Slack, Jira and other SaaS platforms; • Technically lead POCs (proofs of concept) and implementation, maintenance and continuous improvement (tuning) projects for information security and data protection solutions; • Respond technically to internal controls, audits and security assessments, aligning practices, policies and security frameworks with the business strategy; • Evaluate vendors from an information security perspective and support responses to due diligence processes; • Support the creation and dissemination of information security awareness actions, turning identified risks into practical educational content (e.g., guides, Slack messages, short trainings).

🎯 Requirements

• Practical experience in Security Operations Center (SOC) environments, working in SIEM, CSIRT or Cyber Threat Intelligence (CTI) teams, focusing on continuous monitoring, event correlation and incident response; • Knowledge in analysis of network, system and application logs to detect anomalies and suspicious behavior; • Experience with different incident scenarios (phishing, malware, DDoS, digital fraud, etc.) and assessing their severity to prioritize response during an incident; • Knowledge of general security solutions such as: CASB, DLP, ZTNA, MDM, WAF, Firewall, IPS/IDS, Antivirus (EDR/XDR), VPN, password vaults and PAM; • Experience creating and maintaining information security policies; • Experience with Single Sign-On (SSO) and MDM tools such as Okta, JumpCloud, etc.; • Familiarity with security frameworks and standards such as ISO 27001, CIS Controls, MITRE ATT&CK, Cyber Kill Chain or NIST SP 800-61 (Incident Response)

🏖️ Benefits

• Meal and/or food allowance • Health and dental plan • Transportation voucher • Extended maternity and paternity leave • Childcare assistance • Health care: partnership with Wellhub and Zenklub • Education support • Discount on airline tickets • Partnership with pet health insurance • Access to Arco educational materials for employees' children • Partnerships for MBA and postgraduate courses