Key skills
DNSFirewallsLinuxMacOSTCP/IPIAMLeadershipCollaboration
About this role
Role Overview
- Ensure the protection of digital assets through alert monitoring, vulnerability analysis, access control, and support in implementing security policies and procedures, in order to reduce the risk of incidents, ensure compliance with standards, and raise employees' security maturity.
- Monitor security alerts by reviewing security tools' dashboards and applying basic response procedures to detect incidents in a timely manner and reduce the risk of intrusion or malware spread.
- Support vulnerability analyses by running scans, reviewing reports, and creating remediation tickets to identify weaknesses in systems/infrastructure and assist in applying fixes.
- Contribute to the creation and review of security policies, standards, and procedures by drafting internal documents, reviewing access and patterns to keep the company aligned with compliance and governance requirements.
- Manage access and permissions by verifying system access and applying the principle of least privilege to reduce the risk of unauthorized access and maintain identity governance.
- Support awareness campaigns and phishing simulations by preparing, monitoring, and recording results to increase employees' information security maturity.
- Assist in conducting security checklists for new systems, vendors, or equipment by applying questionnaires, evaluating minimum requirements, and validating configurations to ensure deployed solutions meet security requirements.
- Document processes and maintain organized records by creating and updating procedures, incident logs, and inventories to preserve history, provide traceability, and facilitate operational continuity.
- Perform other related professional activities inherent to the role as required by the area, through training, professional development, and guidance from the immediate supervisor, to ensure continuous professional development.
Requirements
- Bachelor's degree in Information Security, Computer Engineering, Computer Science, or related fields.
- Basic English for reading technical documentation.
- Experience with networks and protocols (TCP/IP, DNS, HTTP/HTTPS, VPNs).
- Security tools: corporate antivirus, EDR, SIEM, vulnerability scanners, firewalls.
- Knowledge of security frameworks such as ISO 27000 and NIST; operating systems Windows, Linux, and macOS.
- Proficiency with security event monitoring tools.
- Basic knowledge of Identity and Access Management (IAM), including RBAC, MFA, and account lifecycle.
- Customer focus, professionalism, collaboration, innovation, strategic and business vision, technical leadership, and organizational skills.
Tech Stack
- DNS
- Firewalls
- Linux
- MacOS
- TCP/IP
Benefits
- Health and Dental Plan
- Life Insurance
- Meal and/or Food Voucher
- Transportation Voucher
- Profit-sharing (PLR)
- Wellz
- Wellhub
- Day off
- Apoio Pass for you and your dependents
- Discounts on personal insurance purchases such as auto, life, home, travel, and others.