• Atuação na defesa do ecossistema Omie, você será um dos responsáveis por garantir a operação segura do maior ERP do Brasil. • Detecção e Análise: Monitoramento contínuo via SIEM, triagem de alertas e análise para identificação de ameaças. • Contenção e Erradicação: Execução de medidas imediatas para isolar incidentes e remover vetores de ataque do ambiente. • Conclusão e Lições Aprendidas: Documentação pós-incidente, análise de causa raiz e implementação de melhorias nos controles preventivos.

Role Description Social Finance, LLC seeks Cybersecurity Architect in San Francisco, CA: - Be a Cybersecurity architect evangelist who can translate security concepts into language that is meaningful to our product teams and engineering. - Integrate new and existing security tools, standards, and processes into the development life cycle. - Develop Security test plans for new products. - Design security solution blueprints that meet the system needs. - Automate security checklists and implement them as "security as code" using cloud services and CICD components. - Advise on the secure design of product and application architecture; communicate security requirements with well-defined user stories and initiatives and epics. - Review new features, product offerings and perform threat modeling in a continuous delivery agile environment. - Conduct business level security architecture assessments to features product security program and cloud application architecture, identify weaknesses, and make recommendations. - Work with our risk and compliance organization to provide input to security risk impact assessment. - Contribute to security policy, standards, and guidelines related to Information Security. - Work with engineering teams to ensure that application security risks are effectively identified using market leading tools SAST, DAST, SCA, etc and appropriately addressed while maintaining a balance between security usability. - Architects, designs, prioritizes, coordinates, and communicates the security technologies necessary to ensure a highly secure yet usable computing environment. - Provide subject matter expertise on encryption, security controls, secure design and programming practices across the Technology organization. Qualifications - Bachelor’s degree (or its foreign degree equivalent) in Computer Science, Engineering (any field), or a related quantitative discipline. - Three (3) years of experience in the job offered or in any occupation in related field. Requirements - Penetration Testing - Vulnerability Assessment - Secure Code Review - Spring Boot - SQL - Wireshark - Java, J2EE and Python - MVC frameworks - Application Servers, Web Servers and Databases Benefits - Salary: $250,000.00 - $275,000.00 per annum & standard company benefits. - Full-time telecommuting is an option.

Role Description The Cybersecurity Incident Response Engineer, Senior leads complex incident response efforts for enterprise networks and mission‑critical systems, owning the technical direction and coordination of high‑impact events in a highly regulated environment. This role applies ITIL‑aligned incident management principles to structure major incident handling while maintaining deep technical focus on threat containment and eradication. It also drives proactive cybersecurity initiatives, including automation, custom scripting, and advanced defensive engineering, to strengthen the organization’s ability to prevent, detect, and rapidly respond to sophisticated adversarial tactics. The Senior Engineer develops and deploys scalable countermeasures, enhances SOC tooling and integrations, and implements advanced detection and response programs to defend against complex attacks. This role also mentors junior responders, shapes incident response governance, and influences broader security architecture and operations based on emerging threats and incident trends. Key Responsibilities - Lead major incident bridges and war rooms, orchestrating technical teams, tracking actions, and making time‑critical decisions to restore service and mitigate business risk. - Integrate ITIL incident and major incident management practices with technical response workflows, ensuring disciplined prioritization, communication, and closure. - Design and optimize incident detection and response processes, including playbooks, escalation paths, and automation, to improve consistency, speed, and quality of response. - Build automation, orchestration, and custom scripting solutions to reduce manual workload, enhance triage and response, and streamline containment and eradication actions. - Perform advanced threat and forensic analysis of endpoint, network, identity, and cloud data to understand attacker objectives, lateral movement, and persistence mechanisms. - Partner with problem management and change management functions to translate incident findings into long‑term corrective actions, configuration changes, and risk‑reducing initiatives. - Define and track incident metrics such as MTTR, MTTD, incident volume, and recurrence, using data to identify systemic weaknesses and to brief leadership on operational risk. - Provide technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality, and stakeholder communication. Qualifications - 8+ years of progressive IT and cybersecurity experience with significant responsibility for incident response and major incident leadership. - Bachelor’s degree in IT, Cybersecurity, Computer Science, Business Administration, or a related field, or equivalent work experience. - Strong understanding of ITIL principles and incident management best practices, including experience with major incident processes. - Proficiency with incident management and service management tools integrated with security operations. - Excellent problem‑solving, analytical, communication, and interpersonal skills with demonstrated ability to manage multiple simultaneous incidents. Preferred Qualifications - Demonstrated leadership of ITIL‑based major incident processes in large enterprises, including executive and customer‑facing communications. - Strong experience with enterprise incident management tools and service management platforms integrated with SOC and cyber defense functions. - Certifications such as ITIL Foundation plus advanced cybersecurity or incident response credentials evidencing both service management and deep technical capability. - At least one cybersecurity‑related professional certification — or the ability to obtain one within one year of hire — such as Security+, CySA+, GSEC, CEH, GCIA, GCIH, CISM or another industry‑recognized equivalent. Compensation Ranges Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to, location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. The compensation displayed for this role is a general guideline based on these factors and is unique to each role. Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies. All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. All decisions on employment are made to abide by the principle of equal employment. Physical Requirements The physical requirements described in "Knowledge, Skills and Abilities" above are representative of those which must be met by an employee to successfully perform the primary functions of this job. Reasonable accommodations may be made to enable individuals with qualifying disabilities, who are otherwise qualified, to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

Role Description The Cybersecurity Incident Response Engineer, Mid supports the detection, containment, and recovery of cybersecurity incidents across enterprise networks and mission‑critical systems in a highly regulated government environment. This role contributes to developing and executing response strategies, including automation, scripting, and playbooks, to enhance the speed and consistency of security operations. - Perform detailed technical analysis and coordinate with cross‑functional teams to isolate affected systems. - Implement proactive cybersecurity countermeasures. - Support forensic investigations, documentation, regulatory alignment, and continuous improvement of incident response processes. Qualifications - Typically 4–7 years of hands‑on experience in cybersecurity operations and incident response across enterprise environments. - Bachelor’s degree in IT, Cybersecurity, Computer Science, or a related field, or equivalent work experience. - Demonstrated experience with incident response tools and platforms such as SIEM, IDS/IPS, and EDR in enterprise environments. - Strong understanding of incident response principles, containment and eradication techniques, and data security best practices. - Proven analytical and problem‑solving ability with strong written and verbal communication skills. Requirements - Demonstrated leadership of ITIL‑based major incident processes in large enterprises, including executive and customer‑facing communications. - Strong experience with enterprise incident management tools and service management platforms integrated with SOC and cyber defense functions. - Certifications such as ITIL Foundation plus advanced cybersecurity or incident response credentials evidencing both service management and deep technical capability. - At least one cybersecurity‑related professional certification — or the ability to obtain one within one year of hire — such as Security+, CySA+, CEH, GSEC, GCIA, GCIH, or an equivalent industry‑recognized credential. Benefits - Compensation ranges for ASM Research positions vary depending on multiple factors; including but not limited to location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance and investigation level, and years of experience. - The compensation displayed for this role is a general guideline based on these factors and is unique to each role. - Monetary compensation is one component of ASM's overall compensation and benefits package for employees. EEO Requirements - ASM's policy ensures that an individual's race, color, religion, sex, disability, age, sexual orientation, or national origin are not considered in any personnel or management decisions. - All recruiting, hiring, training, and promoting for all job classifications is done without regard to race, color, religion, sex, disability, or age. - All decisions on employment are made to abide by the principle of equal employment. Physical Requirements - The physical requirements described are representative of those which must be met by an employee to successfully perform the primary functions of this job. - Reasonable accommodations may be made to enable individuals with qualifying disabilities to perform the primary functions. Disclaimer The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.