A Agility busca um(a) Analista de Segurança da Informação Sênior com forte perfil técnico, visão sistêmica e autonomia. Este profissional será **referência técnica em SIEM/SOAR**, atuando diretamente com Palo Alto XSIAM e Wazuh, liderando a evolução dos processos de detecção, automação e resposta a incidentes de segurança.

Role Description At Tractian, our IT team is the backbone of our operations, ensuring that our global infrastructure is as reliable and fast as the industrial sensors we build. We are looking for a technical, security-minded IT Infrastructure Analyst to help us build and maintain the digital fortress that supports our rapid global growth. As an IT Infrastructure Analyst, your mission is to ensure our network is bulletproof and our systems are seamless. You will be the guardian of the backend—managing our firewalls, optimizing VPNs, and monitoring the pulse of our environment through advanced observability tools. You will play a critical role in our "remote-first" security posture. Responsibilities - Network & Connectivity: Manage and optimize our network infrastructure, including Next-Gen Firewalls (NGFW), VPN tunnels, and SD-WAN. - Infrastructure Monitoring: Utilize Datadog to monitor system health, network performance, and application availability. - Endpoint Security & MDM: Oversee our global fleet via JumpCloud MDM, ensuring all macOS and Windows devices are compliant, encrypted, and up-to-date. - Threat Detection: Manage our Sophos EDR/MTR environment, responding to security alerts and conducting vulnerability assessments. - Infrastructure-as-Code & Documentation: Maintain detailed network diagrams, security protocols, and disaster recovery plans. - IT General Support: Act as a second level of support to general IT demands. Qualifications - 3–5 years of experience in IT Infrastructure or Network Administration, with a heavy focus on the Fortinet stack. - Hands-on experience configuring Fortinet environment (Firewall policies, Switches, Wifi, etc). - Deep understanding of TCP/IP, DNS, DHCP, VLANs, and Routing protocols. - Practical experience with EDR (Sophos) and MDM (JumpCloud) solutions. - Proficiency in using Datadog (or similar tools like New Relic/Zabbix) to maintain 99.9% uptime. - Advanced English language skills for collaboration with global vendors and teams. Requirements - Fortinet Certifications: FCP (Fortinet Certified Professional) or the legacy NSE 4/5/6 would be a plus. - Experience with Cloud Infrastructure (AWS, Azure, or GCP) and Cloud-based Firewalls would be a plus. - Knowledge of scripting (Python, Bash, or PowerShell) to automate network tasks would be a plus. - Previous experience in a high-growth startup or a fast-paced tech environment would be a plus. Benefits - Competitive salary and stock options. - 30 days of paid annual leave. - Education and courses stipend. - Earn a trip anywhere in the world every 4 years. - R$1.035/month for meals allowance. - Health plan with national coverage and without coparticipation. - Dental Insurance: we help you with dental treatment for a better quality of life. - Wellhub and Sports Incentive: R$300/mo extra if you practice activities.

• Support the Department of Veterans Affairs in maintaining cybersecurity compliance across VA research environments. • Own the paperwork that keeps VA systems authorized and running: ATO and ATC packages, security artifacts, POA&Ms, gap analyses, and FISMA documentation. • Develop, review, and maintain ATO and ATC packages including system security plans (SSPs), control implementation statements, FISMA documents, and POA&Ms across a portfolio of VA research systems. • Own the tracking and resolution of open POA&M items, keep authorization schedules current. • Support all RMF steps from security categorization through authorization, coordinating with VA ISOs, ISSOs, site managers, and system owners to close gaps and hit deadlines. • Conduct security assessment reviews for VA research submissions, work within the VA's Continuous Authorization and Monitoring (CAM) framework, and support product installation planning for major system changes. • Lead client-facing meetings on ATO topics regularly.

• Perform security monitoring and analysis across alerts, logs, and events to detect, investigate, and escalate potential threats, anomalies, and policy violations • Perform initial review and triage of security alerts, phishing reports, suspicious activity, and endpoint security events, escalating alerts that require deeper investigation to the Information Security Specialists • Coordinate security incident response activities by gathering relevant information, documenting findings, tracking actions, and coordinating with appropriate teams • Track security findings from scans, audits, and assessments, ensuring timely remediation and clear status reporting • Review and handle security-related service requests based on established procedures, escalating complex issues to senior team members when needed • Maintain accurate documentation for security tickets, incidents, procedures, playbooks, and recurring operational tasks • Support security awareness initiatives by helping track reported issues, recurring user concerns, phishing trends, and common security gaps • Help prepare security reports, summaries, metrics, and status updates for review by the Information Security Team • Performs analogous tasks as needed.