• Monitorar, triar e enriquecer alertas de segurança de baixa, média e alta complexidade gerado pelo SIEM; • Analisar logs provenientes de múltiplas fontes: ZTNA, EDR/XDR, Cloud, Banco de Dados, DLP, WAF e CSPM; • Conduzir análises detalhadas de alertas e eventos de segurança, correlacionando múltiplos indicadores antes de concluir uma investigação; • Investigar e responder a incidentes cibernéticos, propondo ações corretivas e preventivas; • Gerenciar o fluxo de tickets, garantindo registro adequado, acompanhamento e escalação quando necessário; • Desenvolver, revisar e aprimorar Playbooks, Runbooks e Procedimentos Operacionais Padrão (POPs); • Fornecer feedbacks estruturados à Engenharia de Detecção sobre casos de uso que necessita, de tuning de regras; • Identificar lacunas de monitoramento e propor ativamente novos casos de uso para o SIEM, com base no framework MITRE ATT&CK, em TTPs relevantes ao negócio,ativos críticos e ameaças emergentes do setor; • Contribuir ativamente em atividades de Cyber Threat Intelligence (CTI) e Threat Hunting; • Impulsionar a melhora contínua do SOC por meio de automação e otimização de processos; • Produzir relatórios técnicos e gerenciais sobre o status da segurança e incidentes tratados; • Apoiar a conformidade com normas e regulamentos: PCI-DSS, ISO 27001, LGPD e normativas BACEM; • Suportar auditorias internas fornecendo evidências e documentação técnica.

Role Description Lunar Energy is currently seeking a Staff SecOps Engineer to join our talented team of engineers, dedicated to delivering a more sustainable future. You will play a pivotal role in ensuring end-to-end platform security and have the opportunity to strongly influence and contribute to the team’s future. Lunar Energy empowers you to explore multiple facets of our technology stack, aligned with your personal interests and abilities. We have a strong tradition of leveraging functional programming and type systems to craft pragmatic and flexible systems that align with business requirements. Key Responsibilities: - Incident response and detection - Architect and evolve the SecOps platform - Run hypothesis-driven hunts and operationalize threat intelligence - Reason about cloud infrastructure strategy to help ensure that solutions are the best fit for requirements - Develop and evangelise security best practices amongst the wider Software Engineering team, automating secure software development processes where possible. Qualifications - Bachelor's or Master's degree in a technical field, or equivalent practical experience - A minimum of 8 years’ of combined experience in DevOps, SecOps, Platform Engineering or SRE roles, with at least 4 years of specific focus on SecOps. - Offensive background: red team, pentest, or purple team experience - Experience using infrastructure as code - Strong understanding of networking and network security - Strong background in Linux operating systems - Strong expertise in Cloud security in AWS - Proficiency in one or more scripting programming languages (Python, Ruby, Bash, etc.) Requirements - Fluency in compliance frameworks such as SOC2 or ISO27001 - Systems programming in Go or Rust - Experience with serverless technologies - Experience with Typescript - Interest in the IoT and renewable energy industry Benefits We’re dedicated to creating a remarkable employee experience. At Lunar, competitive base pay is one part of our total compensation package. Lunar employees also have the opportunity to become Lunar shareholders by getting equity in a fast-growing company and participating in our employee stock program. - Competitive salary and stock options package - Private Medical Insurance scheme through BUPA (medical history disregarded) - A wellbeing and lifestyle benefits plan through Medicash - 5% employer contributions pension matching - A budget for work related training of £1,000 per financial year and an allowance of 4 training days - Cycle To Work scheme and Workplace Nursery benefit - Access to Spill - Mental Health Support platform - Enhanced Maternity + Paternity Pay - 25 days annual holiday entitlement + 8 Bank Holidays - Flexible start and finish times, fully remote working or hybrid depending on preferences Company Description Lunar Energy was founded to transition homes to 100% clean energy—making our electricity greener, our air cleaner and our energy more safe, secure and reliable for all. We’re a fast-growing, global company building the world’s best clean energy products to electrify all homes and connect communities to form clean, resilient virtual power plants.

• Design, deploy, and optimize DLP solutions across network, endpoint, and cloud. • Build and refine data classification schemes for sensitive assets (wallets, trading algorithms, customer PII). • Configure DLP policies to prevent data exfiltration while minimizing false positives. • Monitor, analyze, and tune alerts and incidents for continuous improvement. • Lead investigations of DLP incidents and insider threats. • Conduct threat hunting and forensic analysis of data exfiltration attempts. • Integrate DLP monitoring into broader SOC workflows and incident response playbooks. • Build custom DLP tools and integrations (e.g., macOS Swift endpoint protection, Unix socket monitoring). • Develop automation scripts, APIs, regexes and integrations to enhance detection and response. • Explore AI/LLM-driven methods for anomaly detection and response efficiency. • Ensure controls align with crypto and financial regulations (AML, KYC, GDPR, CCPA). • Support audits and regulatory reviews related to data protection. • Assess and mitigate data loss risks across trading platforms, onboarding systems, and blockchain infrastructure.

Role Description We are seeking a Security Operations Center Manager who will lead and mature our 24x7 cybersecurity threat detection and response processes, procedures, and strategy, manage and provide oversight for the team of analysts and associated vendors, and other various cybersecurity operations responsibilities. The role will also support the Deputy Chief Information Security Officer (Deputy CISO) in defining controls and governance for the overall corporate cybersecurity strategy with a focus on: - Incident response - Logging & analysis - Regulatory compliance - Ongoing defense & detection hardening of the various on-prem and Cloud technologies utilized by the enterprise In this role, you will… - Lead the 24x7 incident detection and response team and day-to-day efforts. - In the event of a breach, lead efforts with detection, containment, and mitigation as well as aid the corporate response team (General Counsel, HR, Marketing, etc.) as needed. - Update and maintain the Incident Response Plan's processes and procedures to keep current with industry best practices, regulatory requirements, and the threat landscape. - Lead efforts in ongoing tabletop and red/blue team exercises to continue implementing better defenses and quick incident detection and response. - Research and understand the regulatory and compliance mandates to ensure cybersecurity practices fulfill these requirements. - Lead efforts with external and internal audit control compliance and responses to due diligence inquiries. - Review industry news, intelligence reports, and emerging technologies to ensure MedPro is taking the proper action to mitigate risk and improve defenses. - Provide recommendations and assistance with developing short and long-term enterprise-wide cybersecurity goals and objectives. - Assist with security assessments and help provide recommendations on applications, vendor, and business & technical team processes and practices used by MedPro. - Work closely with and provide support to the cybersecurity technical team. - Assist with the execution and completion of cybersecurity related projects. - Perform other related duties. Qualifications - Bachelor's degree in computer science, computer engineering, information technology with a focus on cybersecurity, or relevant field. - Seven years of management and industry experience or ten years of management and relevant cybersecurity related experience. - A thorough understanding of cybersecurity defense hygiene and industry best practices (like MITRE ATT&CK tactics) and risk management frameworks (like NIST, COBIT, or OCTAVE). - Strong knowledge of financial services cybersecurity regulations and controls. - Significant experience leading security incident response activities (including detection, analysis, containment, response, and prevention procedures). - Experience with building, defining, and leading 24x7 SOC teams and efforts. - Experience with vendor contracting and management. - A thorough understanding of Cybersecurity attack and defense methodologies. - Ability to work independently, while reporting back to team leader/manager on any issues or concerns in a timely fashion. - Excellent learning, teamwork, relationship management, influence, and creativity skills. - Excellent customer service skills. - Excellent oral and written communication skills. Benefits - Medical, vision, and dental insurance options - Life and accident insurance - 401(k) - Short-term and long-term disability insurance Company Description MedPro Group’s mission is built on a century-old legacy of protecting those who protect others. From our roots in our hometown of Fort Wayne, Indiana, we've worked diligently to become the nation's premier healthcare liability coverage provider, currently insuring more than 300,000 customers. With that growth, we've built a significant presence in all 50 states. Our team works across the country to provide the best strategies to mitigate risk and preserve the reputations of those who have entrusted their good name to us. That passion – built on a foundation of a culture that values uncompromised integrity, obsessive client focus, great teamwork, and a long-term mindset – makes MedPro a preferred employer that many call their career home.