SOC Analyst – Mid-level

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Oversee, prioritize, and enhance security alerts of varying complexities generated by the SIEM.

• Analyze logs from various sources, including ZTNA, EDR/XDR, Cloud, Databases, DLP, WAF, and CSPM.

• Conduct thorough analyses of alerts and security events, correlating multiple indicators to reach investigative conclusions.

• Investigate and address cyber incidents while recommending corrective and preventive measures.

• Manage ticket workflows to ensure accurate logging, follow-ups, and escalations as necessary.

• Develop, review, and refine playbooks, runbooks, and Standard Operating Procedures (SOPs).

• Provide structured feedback to Detection Engineering regarding necessary use cases and rule adjustments.

• Identify monitoring gaps and proactively suggest new SIEM use cases based on the MITRE ATT&CK framework, relevant TTPs, critical assets, and emerging industry threats.

• Actively engage in Cyber Threat Intelligence (CTI) and threat hunting initiatives.

• Propel continuous improvement within the SOC through automation and process optimization.

• Generate technical and management reports on security status and incidents handled.

• Ensure compliance with standards and regulations including PCI-DSS, ISO 27001, LGPD, and BACEN regulations.

• Assist in internal audits by providing necessary evidence and technical documentation.

⛳️ Requirements

• Extensive experience in SOC operations, incident triage, and response.

• Proficient in SIEM, including query creation, alert analysis, and event correlation.

• Familiarity with tools such as EDR/XDR, ZTNA, DLP, WAF, and CSPM.

• Understanding of the MITRE ATT&CK framework as it applies to detection and investigation.

• Knowledge of regulatory standards: PCI-DSS, ISO 27001, LGPD, and BACEN.

• Capability to produce technical documentation and reports effectively.

• Analytical and detail-oriented mindset, with the ability to investigate security events deeply, challenge hypotheses, and support conclusions with solid evidence.

• Skill in proposing and structuring monitoring use cases, translating suspicious behaviors into identified threats and actionable SIEM detection rules.

🏝️ Benefits

• Medical and dental insurance with no co-pay.

• Life insurance coverage.

• Allowance for medication purchases.

• Fitness allowance provided.

• Partnership with Neon for employee financial wellness.

• Zenklub access for mental and physical health: 4 free therapy or nutrition consultation sessions monthly.

• Complimentary food available at the office.

• Childcare assistance offered.

• Parental support program included.

• Extended maternity and paternity leave available.

• In-house training platform accessible.

• Education assistance covering 70% of tuition fees for degree and language courses, as well as course and book purchases.

• Home office allowance provided.

• Necessary work equipment supplied.

• Furniture allowance granted.

• Partnership with WOBA for coworking spaces across Brazil.

• Day off on birthdays.

• Happy hour allowance for team bonding.

• Referral bonus awarded for new hires.

• Performance-based annual bonus structure.

• Stock options plan available.

• Casual and relaxed work environment with no dress code.