Cybersecurity Specialist – Incident Response

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Oversee the operations of the Security Operations Center (SOC), ensuring ongoing monitoring, swift responses, and compliance with the organization’s security policies;

• Evaluate and enhance incident response procedures by implementing automation, developing playbooks, and establishing metrics to boost efficiency and decrease response times;

• Conduct thorough analyses of incidents, pinpointing root causes and impacts while recommending corrective and preventive actions;

• Administer SIEM, SOAR, and various monitoring tools, ensuring their integration and effectiveness in detecting threats;

• Work in collaboration with cyber defense, GRC, IAM, and infrastructure teams to coordinate actions during incidents and enhance the overall security posture;

• Create both technical and executive reports on incidents, trends, and improvements made;

• Educate SOC analysts and other stakeholders on best practices for incident response and usage of tools;

• Keep abreast of emerging attack techniques, response frameworks (e.g., NIST, MITRE ATT&CK), and industry developments;

⛳️ Requirements

• Bachelor’s degree in Computer Science, Computer Engineering, Information Systems, or a related field;

• Demonstrated experience in incident response, SOC management, and investigation of complex incidents;

• Familiarity with EDR/XDR solutions such as Microsoft Defender and CrowdStrike;

• Experience with SOAR and process automation;

• Understanding of network protocols;

• Knowledge of MITRE ATT&CK and NIST frameworks;

• Skills in scripting languages (Python, PowerShell) for automation purposes;

• Experience with public cloud security (AWS, Azure, and/or GCP), including native detection and protection tools, log management in cloud environments, and comprehension of the shared responsibility model;

• Ability to correlate events, recognize patterns, and suggest effective strategies;

• Excellent communication skills to deliver clear, detailed reports to both technical and executive audiences;

• Dedication to continuous learning and engagement in training and conferences;

• Capability to collaborate across teams to ensure coordinated responses.

• Nice to have (differentials):

• Certifications such as CEH, CompTIA, SC-200, and cloud security certifications;

• Experience with SIEM (Azure Sentinel).

🏝️ Benefits

• Profit Sharing/Bonus: Additional recognition to reward your effort and dedication! 💸

• Medical and Dental Insurance: To ensure health coverage and care for you and your family. 🏥

• Meal Allowance: Because we know quality meals are essential for your day-to-day. 🍽️

• Life Insurance: Peace of mind and protection for you and your loved ones. 🛡️

• Extended Maternity Leave: 180 days to allow new mothers to enjoy this special time with their baby. 👶

• Extended Paternity Leave: 20 days so fathers can also be present in the early days of their child’s life. 👨‍👩‍👧‍👦

• Incentive for physical activity: Access to Wellhub (Gympass) and TotalPass to support your health and keep you active. 🏋️‍♂️

• Transportation Voucher: To ensure your commute to work is smooth and worry-free. 🚆

• Partnership with SESC: Enjoy benefits in culture, leisure, health, and more. 🎭

• Discount Club: Savings of up to 70% on products and services with over 2,000 partners across Brazil and Latin America! 🛍️

• Birthday Day Off: Celebrate your day with time off to relax and enjoy! 🎉

• Pharmacy Discounts: Exclusive discounts on medications to help you save on healthcare costs! 💊