Senior Cybersecurity Analyst – Cyber Defense

Job not on LinkedIn

🔥 3 minutes ago

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Cruzeiro do Sul Educacional S/A

Cruzeiro do Sul Educacional S/A

5001 - 10000 employees

Founded 1965

📚 Education

👥 B2C

Education • B2C

Cruzeiro do Sul Educacional S/A is a large Brazilian private education group with about 60 years of history that offers education from basic schooling through higher education, delivered both in-person and via distance learning. The company serves hundreds of thousands of students across multiple branded institutions, emphasizes student autonomy and protagonism, invests in pedagogical innovation and methodology development, and operates one of the largest distance-education networks in Brazil. It also engages in investor relations and ESG, employing thousands of faculty and staff to support its educational programs.

📋 Description

• Execute and improve monitoring, detection, and response activities for cybersecurity incidents. • Continuously monitor networks, endpoints, applications, and critical assets, identifying anomalies and threats to information security. • Detect and analyze attack attempts, suspicious behavior, exploitable vulnerabilities, malicious actions, and data leakage events. • Triage, classify, and escalate security alerts according to criticality and business impact. • Lead and support incident response processes from initial identification through containment, eradication, and recovery. • Participate in cyber exercises, red/blue team simulations, and Capture the Flag (CTF) events with internal teams and external partners. • Prepare technical and executive post-incident (post-mortem) reports, including root cause analysis and remediation recommendations. • Perform proactive threat hunting based on hypotheses and threat intelligence (CTI/OSINT) to anticipate attack vectors before they materialize. • Work with CTI and OSINT platforms and security ecosystem partners to collect and analyze indicators of compromise (IOCs). • Monitor trends in cyber threats, critical vulnerabilities (CVEs), and TTPs mapped to the MITRE ATT&CK framework. • Operate, configure, and maintain security solutions: SIEM, EDR/XDR, Firewalls, WAF, IDS/IPS, and Proxy. • Contribute to the creation and tuning of detection rules, correlations, and alerts to reduce false positives under technical supervision. • Perform cyber hygiene activities: configuration checks, patching/updates, and hardening of systems and services. • Develop and review documentation, playbooks, runbooks, operational procedures, and cybersecurity standards. • Support continuous improvement initiatives for the security program, promoting the evolution of SOC and CSIRT maturity.

🎯 Requirements

• Knowledge of key frameworks: MITRE ATT&CK, NIST CSF, CIS Controls, ISO 27001/27002, and the Cyber Kill Chain. • Familiarity with vulnerability management and incident response processes. • SIEM (primary): hands-on experience with at least one market solution (Google SecOps, Splunk, Microsoft Sentinel, IBM QRadar, Elastic SIEM, or similar). • EDR / XDR: experience with SentinelOne, Microsoft Defender, Cortex XDR (Palo Alto), and Bitdefender Endpoint Protector. • Perimeter security: Fortinet firewalls, NGFW, F5 Big-IP WAF, IDS/IPS, Proxy, Zero Trust architectures, and CDNs (AKAMAI). • SOAR: experience with automating playbooks and orchestration of incident responses. • Strong knowledge of TCP/IP networks, protocols (DNS, HTTP/S, SMB, LDAP, etc.), traffic analysis tools (Wireshark, tcpdump), and environment segmentation. • Experience securing Windows and Linux operating systems, including hardening and log analysis. • AWS: familiarity with security services such as AWS Security Hub, Amazon GuardDuty, AWS IAM, AWS CloudTrail, and Amazon Inspector. • GCP: experience with security architecture, Cloud Armor, Security Command Center, IAM, and access policy management. • Azure: knowledge of Microsoft Defender for Cloud, Sentinel, and identity controls (Entra ID / MFA). • Desired: Python or Shell scripting for task automation and detection support scripts. • Desired: Basic knowledge of malware analysis and digital forensics. • Desired: Knowledge of LGPD (Brazilian General Data Protection Law) in the context of incidents affecting personal data. • Education: Bachelor's degree in Cybersecurity / Information Security or a Technology degree with a specialization in Security. • Certifications: CompTIA, CySA+, CompTIA Security+, CEH, GMON, or other relevant certifications are a plus.

🏖️ Benefits

• Medical and Dental coverage. • Meal allowance (Meal voucher). • Total Pass (commuting benefit). • Full scholarship for undergraduate or postgraduate studies. • Life insurance. • Birthday day off.

Apply Now

Similar Jobs

🕒 Yesterday

Positivo S+

1001 - 5000

🤝 B2B

🔒 Cybersecurity

🏢 Enterprise

Supervisor de Segurança da Informação liderando a operação de monitoramento em Home Office. Atuando na análise, mitigação de ameaças e gestão de identidades e acessos na Positivo S+.

🗣️🇧🇷🇵🇹 Portuguese Required

Cloud

🕒 4 days ago

Grupo Boticário

10,000+ employees

💄 Beauty

🛒 Retail

🧘 Wellness

Safety Technician III managing operational services in the leading Brazilian beauty company Group Boticário. Overseeing safety compliance and managing third-party service contracts.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 5 days ago

Capco

1001 - 5000

💸 Finance

⚡ Energy

Técnico de Segurança do Trabalho focado em segurança do trabalho para a Capco. Atuará com gestão de anomalias e programas de treinamento de segurança.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 6 days ago

ORAEX CLOUD CONSULTING

51 - 200

🏢 Enterprise

🤖 Artificial Intelligence

Cybersecurity Analyst focusing on implementing AppSec practices and automation in DevSecOps. Collaborating across various teams to enhance security measures and respond to vulnerabilities.

🗣️🇧🇷🇵🇹 Portuguese Required

Azure

Cyber Security

Docker

Jenkins

Kubernetes

Python

🕒 July 7

WTime Business Intelligence

51 - 200

🤖 Artificial Intelligence

☁️ SaaS

🤝 B2B

Senior Data Security Specialist leading data protection strategies in corporate environments. Ensuring the security of sensitive information across on-premises, cloud, and analytical ecosystems.

🗣️🇧🇷🇵🇹 Portuguese Required

AWS

Azure

Google Cloud Platform