Get the Future You Want
Information Security Analyst
Location
Brazil
Posted
4 days ago
Salary
0
Seniority
Lead
Job Description
Information Security Analyst
Capgemini
• Identity and access management • Create, modify, and delete user accounts on mainframe Security systems such as RACF. • Using administration tools such as Vanguard, zSecure (PowerTech) to help administer security databases. • Access control: Implement and maintain security policies using RACF & Vanguard (zOS), PowerTech (AS400). • Policy enforcement: Enforce least privilege and role-based access control (RBAC). • Auditing: Conduct access reviews and audit activities to ensure compliance and proper authorization. • Collaboration: Work with other teams (e.g., security, infrastructure, IT, business stakeholders) to define and implement access requirements. • Automation: Drive automation of access provisioning and de-provisioning to streamline processes. • Documentation: Create and maintain documentation for user accounts, access management, policies, and procedures. • Incident response: Investigate and remediate access-related incidents and vulnerabilities.
Job Requirements
- 7+ years working as a Security Analyst or relevant experience
- 4+ years of experience working with administrative tools like RACF and Vanguard
- Knowledge of MVS/zOS
- Nice to Have
- Experience with PowerTech and AS400
- Experience working with CICS
- DB2
Benefits
- A competitive salary and performance-based bonuses.
- Comprehensive benefits package.
- Flexible work arrangements (remote and/or office-based).
- You will also enjoy a dynamic and inclusive work culture within a globally renowned group.
- Private Health Insurance.
- Paid Time Off.
- Training & Development opportunities in partnership with renowned companies.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
• Own incidents end-to-end — from logging through to closure • Triage and diagnose faults across physical security systems, infrastructure, and hardware • Perform remote troubleshooting across Lenel OnGuard and Milestone environments • Resolve issues in-house wherever possible, reducing external engineer dependency • Coordinate third-party engineers with clear diagnostics and defined scope • Maintain accurate ticketing, documentation, and system data quality • Support system administration (patching, upgrades, firmware, new site onboarding) • Contribute to a global support model, including on-call as services expand
Senior IT Security Analyst
Guild MortgageIn neighborhoods and communities everywhere, we deliver the promise of home.
• Serves as the first line of security alert escalation and guidance for IT Security Analysts. • Performs essential duties with minimal supervision for one or multiple areas of the IT Security Program such as vulnerability management, security awareness, threat intelligence, etc. • Monitor data activity and investigate alerts related to data exfiltration, inappropriate access, and policy violations. • Investigate security incidents involving sensitive data, including unauthorized access and data leakage. • Partner with the Incident Response team to contain, remediate, and document data-related incidents. • Develop and maintain runbooks for data protection incident handling and escalation. • Works closely with IT Security Engineers to draft runbooks, tune alerts, collaborate on escalations, and generate ideas for new alerting. • Acts as lead for small projects by IT Security Manager and/or Director as needed. • Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls, and host-based security systems. • Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources. • Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization. • Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity. • Reviews alerts and data from sensors, and documents formal, technical incident reports. • Works with threat intelligence and/or threat-hunting teams. • Provides network subscribers with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary. • Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts. • Correlates network, cloud, and endpoint activity across environments to identify attacks and unauthorized use. • Researches emerging threats and vulnerabilities to aid in the identification of incidents. • Supports network vulnerability scans, security audits, and risk assessments and provides feedback to ensure compliance with corporate security policies and adherence to industry best practices. • Provides users with incident response support, including mitigating actions to contain activity, and facilitating forensics analysis when necessary. • Performs security standards testing against computers before implementation to ensure security.
Cybersecurity Analyst
Davis Wright Tremaine LLPAn Am Law 100 firm. Advancing our clients’ success. Simplifying their most complex challenges.
• Patrol the firm’s networks, review security audits and logs, and regularly verify the cybersecurity controls in place as part of the firm’s Information Security Management System • Participate in assessing the cybersecurity of the firm’s vendors and contractors as well as respond to client reviews of the firm’s cybersecurity posture • Be prepared to respond nimbly and effectively to possible cyber incidents • Provide incident investigation, handling and documentation; and ensure remediation steps timelines are understood • Remain abreast of the latest cybersecurity news, including assessing the implications for the firm’s systems of newly-identified vulnerabilities • Maintain expertise on the evolving tactics, techniques, and procedures of sophisticated malicious cyber actors • Supports cybersecurity awareness program by explaining policies and best practices, developing training materials, and advising users on secure solutions to business problems
• Analyze, maintain, and manage GoodLife security systems to ensure secure production and development environments • Escalate or respond to incidents as required • Involved in audit and compliance processes, and provide reporting for compliance and investigation • Maintain accurate security systems hardware and software inventories • Maintain and update security systems • Review and action on security system reports • Investigate and respond to security system alerts • Run manual scan jobs as required (Asset, Virus, Vulnerability, etc.) • Perform and maintain backups of security system configurations • Create and respond to Helpdesk security tickets as assigned • Assist with security project work as required • Work and collaborate with various vendors and GoodLife partners • Collaborate with T&I operations to implement and deploy new security systems • Involved in the process of selecting security systems • Keep up to date with the latest security trends and news • Daily, Weekly, Monthly review of various reports and scan jobs • Create and maintain security operational documentation




