Mid-level Information Security Analyst – Vulnerability and Identity Management

Job not on LinkedIn

🔥 0 minutes ago

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Portobello

Portobello

1 - 10 employees

Founded 2020

A new type of game – a game that promotes circular economy, provides a fun experience, and a marketing and consumer analytics platform – all in one!

📋 Description

• Execute the Vulnerability Management lifecycle: analyze scan results, prioritize based on risk, and coordinate and track remediation with the responsible teams (Infrastructure, Systems, etc.). • Maintain, update and improve operational indicators and remediation workbooks (agent coverage, severity, monitoring of remediation SLAs). • Operate Identity and Access Management (IAM) processes: provisioning, deprovisioning, privilege granting, periodic access reviews and support for MFA mechanisms. • Actively support corporate access review campaigns and validation of segregation of duties (SoD). • Monitor, classify and investigate alerts generated by the security tools within your scope. • Perform initial triage and analysis of security incidents, escalating to a Specialist when necessary. • Produce periodic operational reports and security metrics for your area of responsibility. • Prepare and keep technical documentation and Standard Operating Procedures (SOPs) up to date.

🎯 Requirements

• Professional experience in Information Security, Infrastructure, Systems Administration or related areas with a security focus. • Hands-on experience with Vulnerability Management processes and the use of market scanning tools (Qualys, Tenable, Rapid7 or equivalents). • Solid knowledge of Active Directory, IAM, SSO and MFA solutions. • Practical experience monitoring and triaging alerts on SIEM platforms. • Knowledge of TCP/IP networking, segmentation and communication protocols. • Basic administration knowledge of Windows and Linux environments. • Proven technical analysis skills and attention to documenting activities. • Strong analytical skills and meticulous attention to detail. • Organization, discipline and focus on executing standardized processes. • Good communication skills for daily interaction with technical teams and business areas. • Sense of responsibility and interest in continuous learning. • Preferred/Additional: • Specific experience with Wazuh, Elastic Stack (ELK) or other open-source SIEM platforms. • Knowledge of the ISO/IEC 27001 and CIS Controls frameworks. • Knowledge of LGPD (Brazilian Data Protection Law) as applied to logs, identities and personal data protection in security tools. • Basic scripting knowledge (PowerShell, Bash or Python) for automating routine tasks. • Entry-level certifications in Information Security (e.g.: Security+, CySA+, Microsoft SC-900/SC-300).

🏖️ Benefits

• Life insurance • Health and dental plans • Portobello Corporate University platform • Profit Sharing (PPR) • Discounts at local pharmacies • Private pension plan • Union membership • Discount network — partnerships with various educational institutions • Discounts on Portobello product purchases • Vacation bonus • "Portobello Mom" allowance — for purchasing a baby layette • Daycare allowance • Assistance for dependents with disabilities • Professional training and development programs • Wellhub and many more

Apply Now

Similar Jobs

🕒 Yesterday

Portobello Shop

1001 - 5000

🛒 Retail

🛍️ eCommerce

Operar e monitorar a plataforma SIEM e administrar Firewalls na Portobello Shop. Garantir segurança da informação e eficiência operacional.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 June 19

Agility

51 - 200

🔒 Cybersecurity

🤝 B2B

🏢 Enterprise

Senior Information Security Analyst specializing in SIEM/SOAR at Agility. Leading incident detection and response processes using Palo Alto XSIAM and Wazuh.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 May 21

Phoebus

51 - 200

💳 Fintech

☁️ SaaS

🔌 API

Information Security Analyst promoting security and compliance at Phoebus, managing vulnerability assessments, security controls, and cloud security projects.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 May 6

Grupo Adriano Cobuccio

1001 - 5000

🌾 Agriculture

💸 Finance

🏠 Real Estate

Analista de Segurança da Informação na BRASIL CARD apoiando testes de segurança e monitoramento de incidentes. Colaborando na otimização do cenário de cibersegurança.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 March 12

IPV7

201 - 500

🔒 Cybersecurity

Entry-level SOC Analyst for IPV7 Tecnologia, monitoring security events and analyzing alerts. Executing initial containment actions and documenting incidents per ITSM standards.

🗣️🇧🇷🇵🇹 Portuguese Required