Information Security Administrator – Senior

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Establish and implement hardening policies for operating systems, servers, and network devices;

• Set up and oversee endpoint protection solutions, which include antivirus, EDR (Endpoint Detection and Response), XDR (Extended Detection and Response), and device control tools;

• Apply security patches and updates to operating systems and applications on endpoints;

• Conduct regular scans on devices to identify vulnerabilities and threats;

• Monitor security events on endpoints to detect suspicious or abnormal activities;

• Perform in-depth analysis of logs and events to recognize atypical behavior on endpoints;

• Record endpoint-related security incidents and suggest technical mitigation strategies;

• Assist in forensic investigations of incidents on devices, documenting attack vectors and providing recommendations;

• Create and maintain incident response playbooks for scenarios like ransomware, APTs, and other advanced threats;

• Conduct incident simulation tests to validate and enhance response processes;

• Generate comprehensive technical reports on incidents, detailing attack vectors, impacts, and prevention suggestions;

• Keep track of sources such as NVD, vendor alerts, and CVEs to identify new critical vulnerabilities;

• Test the effectiveness of fixes in controlled environments before deploying them to production;

• Evaluate the impact of vulnerabilities concerning regulations such as LGPD (Brazilian General Data Protection Law), ISO/IEC 27001, and other relevant regulations;

• Set up and manage network segmentation policies (VLANs, security zones, DMZs) to reduce the attack surface;

• Implement and refine Network Detection and Response (NDR) solutions to spot anomalies in both internal and external traffic;

• Configure and manage Identity and Access Management (IAM) solutions using role-based (RBAC) and attribute-based (ABAC) policies;

• Implement and optimize Privileged Access Management (PAM) systems, which include automatic password rotation and secure vaults;

• Design and create multi-factor authentication (MFA) flows integrated with critical systems;

• Oversee user lifecycle management (provisioning and deprovisioning), ensuring compliance with policies;

• Conduct periodic audits of permissions, identifying excessive privileges and adjusting PAM policies as needed;

• Monitor privileged account logs for unusual behavior.

⛳️ Requirements

• Bachelor’s degree in Information Technology (IT) or a related field.

• Demonstrated experience in information security through a legal entity (Pessoa Jurídica) contract or employment record (Carteira de Trabalho), including start and end dates.

• ITIL 4 training with a minimum duration of 12 (twelve) hours.

• Official ITIL 4 Foundation certification or a higher level.

• Advanced, professional, expert, or equivalent certification for the Endpoint protection tool.

• Certification: ECSA (EC-Council Certified Security Analyst) or CySA+ (CompTIA Cybersecurity Analyst) or ECIH (EC-Council Certified Incident Handler) or CSIH (Certified Specialist Incident Handler).

🏝️ Benefits

• Health plan: Hapvida, Bradesco Saúde, or Unimed (dependent on local availability);

• Dental plan: Hapvida Odonto or Bradesco Dental;

• Meal or Food Voucher (Alelo);

• Life insurance fully covered by Lanlink;

• Transportation voucher;

• Pharmacy discounts/convention;

• University partnership/tuition discounts;

• Total Pass;

• Internal education platform;

• Moodar platform (therapy platform).