
Information Security Specialist
Posted Jun 30

Posted Jun 30
This is a fully remote position, open to applicants anywhere in the world.
• Serve as the technical lead for the information security operations platform, overseeing the architecture, strategy, and maintenance of controls related to detection, incident response, vulnerability management, identity management, and perimeter governance.
• Act as the primary technical authority in this domain, aiding in process maturation and the technical growth of the team.
• Design, implement, and oversee the upkeep of an open-source-based SIEM platform, which encompasses data collection, normalization, event correlation, processing pipelines, and retention policies.
• Create and sustain detection use cases that align with the MITRE ATT&CK framework, consistently fine-tuning to minimize false positives and enhance detection performance.
• Strategically manage the corporate Vulnerability Management program, focusing on risk-based prioritization, coordinating remediation efforts with technology teams, and tracking executive-level indicators.
• Define and oversee Identity and Access Management (IAM) processes, including identity lifecycle management, segregation of duties, RBAC, MFA, and regular access reviews.
• Establish and govern policies and guidelines for Next-Generation Firewalls (NGFW), involving network segmentation, routine rule assessments, and hardening practices.
• Offer technical guidance during critical security incidents, assisting in containment, forensic analysis, and the coordination of remediation activities.
• Implement and oversee environment hardening based on established industry benchmarks (CIS Benchmarks).
• Create automations and integrations through tools and scripting languages to enhance team efficiency.
• Prepare and maintain intricate technical documentation, standard operating procedures, security policies, and reference architectures.
• Mentor team analysts, fostering knowledge transfer, a strong technical culture, and operational continuity.
• Proven and robust experience in Information Security operations (SecOps, Blue Team, or related fields).
• Advanced practical experience with open-source SIEM platforms (including crafting complex rules, event correlation, tuning, and detection engineering).
• Experience in designing and managing corporate Vulnerability Management programs.
• Familiarity with commercial Vulnerability Management tools (such as Qualys, Tenable, Rapid7, or similar).
• Experience governing Identity and Access Management (IAM), including Active Directory, SSO, MFA, identity federation, and RBAC models.
• Background in administration and governance of Next-Generation Firewalls (like Check Point, Palo Alto, Fortinet, or similar).
• Practical understanding of ISO/IEC 27001, NIST Cybersecurity Framework, and CIS Controls frameworks.
• Experience with automation using Python, Bash, or PowerShell.
• Proficiency in both Windows and Linux environments.
• Knowledge of Cloud environments (such as AWS, Azure, or OCI).
• Technical independence and resilience in decision-making under resource constraints or crisis situations.
• Highly collaborative mindset with a focus on solving complex problems.
• Strong verbal and written communication skills to engage with both technical and executive (non-technical) audiences.
• Commitment to thorough documentation and knowledge sharing.
• Differential:
• Advanced expertise in regex and developing custom parsers.
• Recognized certifications in Information Security (e.g., CISSP, CISM, CompTIA CySA+, Security+, eLearnSecurity).
• Practical knowledge of the Brazilian General Data Protection Law (LGPD) as it pertains to log management and security monitoring.
• Experience in Operational Technology (OT) / industrial settings.
• Life insurance;
• Health and dental insurance;
• On-site cafeteria/restaurant;
• Transportation voucher or dedicated company shuttle for employees - specific routes;
• Portobello Corporate University platform;
• On-site medical clinic;
• Workplace exercise program (ginástica laboral);
• Profit Sharing (PPR);
• Discounts at local pharmacies;
• Free parking;
• Private pension plan;
• Union membership;
• Discount network - partnerships with various educational institutions;
• Discounts on Portobello product purchases;
• Vacation bonus (Abono Férias);
• "Mother Support" allowance - to purchase baby layette;
• Childcare allowance;
• Assistance for dependents with disabilities (PCD dependents);
• Professional training and development programs;
• Wellhub and many more!!!
Salesforce
Plurilock
Navitas Business Consulting, Inc.
Foresite Cybersecurity
Get handpicked remote jobs straight to your inbox weekly.