Administrador em Segurança da Informação – Sênior, Linux

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Configure and manage security policies in Linux operating systems, including access control, file permissions, and firewall settings;

• Monitor event logs on Linux servers and workstations to identify suspicious or anomalous activities;

• Apply security patches and updates in Linux systems according to established guidelines;

• Implement hardening practices on Linux servers and workstations, aligned with the organization’s security standards;

• Conduct periodic compliance audits on Linux systems to verify adherence to internal and regulatory security policies;

• Assess user permission configurations and privileges in Linux systems to identify deviations or excessive access;

• Document security incidents related to the Linux environment and propose technical recommendations for mitigation;

• Collaborate with internal teams to investigate incidents involving Linux systems;

• Prepare technical reports on the security status of Linux systems and performance metrics of the tools used;

• Configure and maintain firewalls and other protective tools in Linux systems, such as iptables and UFW (Uncomplicated Firewall);

• Conduct periodic scans for vulnerability detection on Linux servers and workstations;

• Execute integrity audits of critical files and logging systems in Linux environments;

• Evaluate the use of privileged accounts and role segregation in Linux systems during audits;

• Implement and manage data encryption solutions in Linux systems, such as LUKS (Linux Unified Key Setup), for the protection of sensitive information;

• Assess and configure application control policies (SELinux/AppArmor) to prevent unauthorized software execution;

• Monitor and respond to security alerts generated by SIEM (Security Information and Event Management) tools specific to Linux environments;

• Implement and oversee security policies to protect critical services, such as SSH, LDAP, and databases in Linux systems;

• Conduct forensic analyses on compromised Linux systems to identify attack vectors and impacts;

• Evaluate and implement multi-factor authentication (MFA) solutions in Linux environments;

• Develop resilient and secure architectures for Linux systems, including network segregation, load balancing, and implementing granular controls to minimize attack surfaces;

• Perform simulations of advanced attacks, such as zero-day vulnerability exploitation, privilege escalation techniques, and lateral movement, to identify weaknesses and propose robust improvements;

• Create and maintain custom scripts (in Bash, Python, or other languages) to automate tasks such as containing compromised endpoints, disabling suspicious accounts, and removing malware;

• Design and execute advanced strategies for prevention, detection, and recovery from ransomware attacks, including immutable backups, rapid restoration of critical systems, and regular disaster scenario simulations;

• Carry out other activities related to information security and Linux environments as needed by the operation.

⛳️ Requirements

• Bachelor's degree in Information Technology (IT) or a related field.

• Experience in information security or Linux environments.

• ITIL 4 training with a minimum duration of 12 (twelve) hours.

• Official ITIL 4 Foundation certification or higher.

• Linux Professional Institute LPIC-3 Security certification.

• Hold one of the following certifications:

• ◦ ECSA (EC-Council Certified Security Analyst) or

• ◦ CySA+ (CompTIA Cybersecurity Analyst) or

• ◦ ECIH (EC-Council Certified Incident Handler) or

• ◦ CSIH (Certified Specialist Incident Handler).

🏝️ Benefits

• Health plan through Hapvida, Bradesco, or Unimed (according to regional CCT values);

• Dental plan through Hapvida Odonto or Bradesco Dental;

• Meal or food allowance;

• Life insurance fully funded by Lanlink;

• Totalpass;

• Pharmacy agreement;

• College agreement;

• Corporate Education Platform;

• Welcome kit for new parents;

• Moodar platform.