A Tecnologia do Grupo Casas Bahia - A dedicação nunca foi tão forte!
Endpoint Security & PAM Specialist
Location
Brazil
Posted
35 days ago
Salary
0
Seniority
Senior
Job Description
Endpoint Security & PAM Specialist
Casas Bahia Tecnologia
• Manage security for Windows, macOS and mobile devices, ensuring adherence to corporate security policies; • Maintain continuous visibility and monitoring of the endpoint estate (critical vulnerabilities and exposure); • Manage, evolve and administer the MDM environment (Microsoft Intune): implement compliance and configuration policies, manage corporate devices and BYOD, apply endpoint hardening, manage corporate applications and security profiles, and automate configurations and remediation processes; • Administer and optimize solutions such as Microsoft Defender for Endpoint and CrowdStrike Falcon for threat detection and response; analyze and handle alerts, reduce false positives, integrate with SIEM and SOC platforms, and support Threat Hunting activities; • Define and operate patch management processes; • Ensure operating systems and applications are updated and continuously improve the security posture; • Reduce the risk window of corporate assets; • Implement security standards based on CIS Benchmarks, ensuring compliance with corporate policies and regulatory requirements; • Administer and evolve Privileged Access Management (PAM) solutions; • Monitor privileged access, perform periodic privilege reviews, and enforce segregation of duties; • Develop operational and executive dashboards using Power BI, Microsoft Sentinel, Azure Monitor, EDR/XDR consoles, and PAM tools; • Develop automations using PowerShell and Python; automate onboarding and offboarding processes, access reviews, and credential rotation; • Integrate EDR, SIEM, MDM and PAM solutions; • Respond to incidents involving endpoints and compromised credentials: perform triage and basic forensic analysis, investigate misuse of privileged accounts, isolate compromised devices, and execute containment, remediation, and recovery actions; • Collaborate with SOC, IAM, Infrastructure, Cloud and GRC teams; • Support internal and external audits; • Contribute to Zero Trust and Least Privilege initiatives; • Support identity and access management projects; • Train users and technical teams on endpoint security and promote credential protection best practices; • Stay up to date on trends, threats and new security technologies; participate in relevant training and certifications; • Contribute to the continuous improvement of Endpoint Security and PAM maturity.
Job Requirements
- Bachelor's degree in Computer Science, Engineering, Information Systems or related fields;
- Proven experience in Endpoint Security;
- Experience with Microsoft Intune;
- Experience with Microsoft Defender for Endpoint and/or CrowdStrike Falcon;
- Experience with PAM solutions and enterprise password vaults;
- Experience in vulnerability management and patch management;
- Experience with audits and privileged access controls;
- Certifications such as Microsoft Certified: Endpoint Administrator Associate; Security Operations Analyst (SC-200); Identity and Access Administrator (SC-300); Delinea Specialist; and CompTIA Security+;
- Experience or background in retail.
Benefits
- Profit sharing / Bonus: An additional recognition to value your effort and dedication!
- Medical and Dental Care: Health coverage for you and your family.
- Meal Allowance: Because quality meals are essential to your day-to-day!
- Life Insurance: Peace of mind and protection for you and your loved ones.
- Extended Maternity Leave: 180 days for our mothers to enjoy the early months with their baby!
- Extended Paternity Leave: 20 days so fathers can also be present during the first days of life.
- Physical Activity Incentive: Access Wellhub (Gympass) and Total Pass to stay active and healthy.
- Commuting Allowance: To ensure your travel to work is smooth and worry-free.
- Partnership with SESC: Enjoy benefits in culture, leisure, health and more!
- Discount Club: Access discounts of up to 70% on products and services with over 2,000 partners across Brazil and Latin America!
- Birthday Day-off: Celebrate your day with a paid day off on your birthday!
- Pharmacy Discounts: Exclusive discounts on medications to help you save on healthcare!
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Diseñar la estrategia de seguridad aplicada a IA de toda la organización: cubrir los vectores de IA como atacante, como vector de ataque y como objetivo, incluyendo prompt injection, harness security y guardrails. • Liderar la estrategia de ciberseguridad de Kavak con foco en cumplimiento SOX, ISO 27001 y NIST como pilares no negociables. • Garantizar el cumplimiento normativo SOX, ISO 27001, NIST • Liderar un equipo • Garantizar cobertura en las disciplinas clave: AppSec, ProdSec, SecOps, IAM y GRC, con capacidad de operar hands-on cuando el contexto lo requiera. • Ser owner del presupuesto del área, headcount y herramientas, con el objetivo de optimizar los recursos existentes • Liderar la transformación del área de seguridad en Kavak, construyendo las alianzas necesarias con Finanzas, AI, Plataforma y Operaciones para ejecutar con velocidad y sin fricciones. • Ejecutar y mantener el plan de respuesta a incidentes, BCP/DRP, pentesting y awareness organizacional.
• Lead new customer acquisition efforts across Indiana, with a focus on the commercial real estate and multifamily verticals • Build and execute a territory growth plan centered on proactive outreach, discovery, and long-term account development • Own the prospect and customer-facing milestones of the sales lifecycle, from prospecting and discovery to solution positioning, proposal delivery, negotiation, and close • Conduct persuasive product and solution demos, aligning customer needs with cloud, on-prem, or hybrid physical security offerings • Partner closely with Sales Engineering and Technical Account Management to ensure accurate solution design and smooth project transitions • Represent K Group Companies at industry events, networking functions, and regional engagements • Maintain accurate CRM data, pipeline forecasts, and activity reporting • Act as a trusted advisor to prospects, helping them modernize legacy systems and plan long-term technology refresh cycles
Security Consultant – Detection Engineer
Sunshine Enterprise USAOur commitment to creating American jobs
• Support enterprise security monitoring, threat detection, and detection engineering initiatives • Develop, tune, and maintain security detections • Monitor threat intelligence sources and translate emerging threats into actionable detections • Collaborate with SOC Analysts and Threat Hunters to improve detection capabilities
Senior Manager, Email Security Engineering
Material SecurityMaterial protects accounts even after they’re compromised or harmful messages get through.
• Lead and scale a team of high-performing engineers, providing mentorship and career development. • Own the delivery and execution of the Email Security roadmap, ensuring high velocity without compromising on quality or reliability. • Drive architectural decisions for complex, high-throughput distributed systems and platforms. • Partner cross-functionally with Product and Security teams to align technical strategy with customer needs. • Foster a culture of operational excellence, overseeing oncall rotations, incident response, and system health.



