Mid-level Security Analyst

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Manage and enhance the Vulnerability Management process, taking charge of identifying, analyzing, prioritizing, tracking, and validating the remediation of vulnerabilities across IT, OT (Operational Technology), and Cloud environments.

• Conduct and oversee vulnerability scans on infrastructure assets, operating systems, applications, APIs, cloud environments, and industrial assets.

• Evaluate findings from Vulnerability Management tools, pinpointing vulnerabilities, confirming false positives, and aiding in the formulation of remediation strategies.

• Categorize and rank vulnerabilities based on risk criteria, the criticality of assets, business impact, and potential for exploitation.

• Organize, coordinate, and monitor remediation efforts with relevant teams, ensuring improvements in security metrics and compliance with established timelines.

• Execute technical re-validations to verify the effectiveness of applied fixes.

• Assist in hardening initiatives, risk management, and the ongoing enhancement of the organization’s security posture.

• Proactively monitor for new vulnerabilities, emerging threats, and risks that may affect the corporate environment.

• Create technical reports, dashboards, and executive metrics to track the maturity of the Vulnerability Management process.

• Engage in alignment meetings with infrastructure, cloud, security, development teams, and business stakeholders.

• Contribute to the evolution of processes, automation, and integrations related to Vulnerability Management.

⛳️ Requirements

• Proven experience in Vulnerability Management.

• Proficient in operating and analyzing Vulnerability Management tools.

• Familiarity with administering the Qualys VMDR platform.

• Experience using Orca Security for risk identification and analysis in Cloud environments.

• Knowledge of Claroty for identifying and analyzing vulnerabilities in OT/ICS environments.

• Understanding of Windows and Linux operating systems.

• Familiarity with Cloud environments (Azure, AWS, GCP, or Oracle Cloud).

• Strong communication skills for engaging with technical teams, managers, and business units.

🏝️ Benefits

• Meal allowance or food voucher

• Discounts on courses, universities, and language schools

• Stefanini Academy — a platform offering free, up-to-date online courses and certificates

• Mentoring

• Benefits club for medical consultations and exams

• Health insurance

• Dental insurance

• Discount club with offers at top establishments

• Travel club

• Pet care partnership/benefits