#PaixãoPorTransformação
Analista de Segurança da Informação Júnior
Location
Brazil
Posted
3 days ago
Salary
0
Seniority
Senior
Job Description
Analista de Segurança da Informação Júnior
Spread Tecnologia
• Monitorizar eventos e alertas de segurança através de ferramentas de segurança • Apoiar na identificação, análise e tratamento de incidentes de segurança • Realizar verificações de vulnerabilidades e acompanhar planos de correção • Auxiliar na gestão de acessos, perfis e permissões de utilizadores • Apoiar a implementação e manutenção de políticas de segurança
Job Requirements
- Profissional responsável por apoiar a implementação e monitorização dos controlos de segurança da informação
- Experiência em monitorar eventos e alertas de segurança
- Habilidades em identificação e tratamento de incidentes de segurança
- Conhecimento em verificações de vulnerabilidades
- Capacidade de auxiliar na gestão de acessos e permissões
Benefits
- Trabalho remoto
- Apoio à diversidade e inclusão
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
GRC Analyst
VercelVercel offers an industry-leading cloud technology platform used by developers and designers to make the web faster and more personalized. In past hiring, the c
About Vercel:Vercel is the agentic infrastructure company. We free people and agents to ship what’s next. For more than a decade, Vercel has shaped how the web is built. As the team behind Next.js, v0, and AI SDK, we create products that help builders move from idea to production with speed, security, and exceptional developer experience. Now, software is entering a new era, and the next generation of products will not just be used by people. They will be built, extended, and operated by agents. We are building the platform for that future, trusted by companies like OpenAI, PayPal, Ramp, Supreme, and millions of developers worldwide. Whether you’re building our products, supporting our customers, growing our community, or shaping our story, you’ll help define what comes next. About the role:We are looking for a GRC Analyst to join our Governance, Risk & Compliance (GRC) team. You will have the opportunity to manage and maintain ongoing compliance with security and privacy frameworks, policies, procedures, and commercial assessments, including ISO 27001, SOC 2, HIPAA, PCI DSS, and more. Your role will be instrumental in ensuring that our company operates ethically, responsibly, and in accordance with regulatory requirements. You will collaborate with cross-functional teams to promote a culture of accountability and integrity throughout the organization and foster an environment where everyone understands the importance of adhering to established guidelines and ethical practices. You will report to the Head of GRC and will be located ((remote, onsite, hybrid)). Think you may not have all the skills and are hesitant to apply? There is no “perfect” candidate and encourage you to apply if you think that you can bring value to our team and are passionate and committed to upholding the highest standards of compliance and ethics. If you’re based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin), the role includes in-office anchor days on Monday, Tuesday, and Friday, even if the role is listed as remote. For location-specific details, please connect with our recruiting team. What you will do: - Collaborate with internal teams to maintain an effective suite of internal controls and driving remediation efforts to completion with clear documentation of progress. - Build strong working relationships across the business so compliance accountability is shared and stakeholders are informed. - Streamline annual audits by managing audit deliverables, developing treatment plans, and coordinating across teams to document and track completion to ensure audit success. - Monitor and improve controls, processes, and evidence management practices, identify opportunities to automate and streamline GRC operations, and contribute to controls maturity scoring and reporting - Enable go-to-market teams and accelerate deal cycles by supporting security questionnaires, addressing compliance inquiries, and maintaining clear, customer-facing documentation on Vercel’s security and compliance posture. - Design and manage company training and enhance visibility on compliance-specific topics for internal stakeholders to ensure an understanding of compliance, ethics, and regulatory requirements within the organization. About you: - At least 3 years of relevant experience in supporting the audit lifecycle in a cloud-centric environment (SOC 2, ISO 27001, PCI, HIPAA, etc.), with strong organizational skills to be flexible and proactive in a high-growth, start-up environment. - Experience collaborating closely with internal partners to seamlessly incorporate policies and technical controls into the SDLC. - Strong project management skills and sense of ownership with the ability to communicate and collaborate effectively, and execute projects across various business units and levels. Bonus if you have : - Strong experience with cloud infrastructure (e.g., Azure, AWS) - Familiarity with compliance or software development tools and systems (e.g., Drata, Linear, Datadog, etc.) - Experience with frontend development and open source components - Relevant industry certifications (i.e., CISM, CISSP, CCEP) is a plus, but not required Benefits: - Competitive compensation package, including equity. - Inclusive Healthcare Package. - Learn and Grow - we provide mentorship and send you to events that help you build your network and skills. - Flexible Time Off. - We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed. The San Francisco, CA base pay range for this role is $134,000-$202,000. Actual salary will be based on job-related skills, experience, and location. Compensation outside of San Francisco may be adjusted based on employee location. The total compensation package may include benefits, equity-based compensation, and eligibility for a company bonus or variable pay program depending on the role. Your recruiter can share more details during the hiring process.
Security Analyst
IntigritiGlobal crowdsourced security provider, trusted by world's largest organizations
• Oversee incoming security vulnerability reports from researchers' community • Challenge and support both researchers and security teams using security skillset • Research, POC and evaluate reports that come in through our platform • Handle escalations of tickets and researcher mediation • Mentor and coach more junior team members • Track changes in the team’s workload and prioritize accordingly • Assess the severity of reported issues in relation to business disruption • Calculate CVSS ratings • Review and provide feedback on reports in a constructive manner • Motivate and engage security researchers • Provide remediation advice and help customers make value out of received reports • Communicate, document, and share findings • Stay updated on the latest malware and security threats • Perform penetration tests and security validation on computer systems, networks and applications • Create new testing methods to identify vulnerabilities
ServiceNow - Identity & Access Management IAM Security Analyst III
Tower HealthTower Health, a regional healthcare system, serves communities across multiple counties in Pennsylvania. Its network includes: Reading Hospital Phoenixville Hospital Pottstown Hospital St. Christopher's Hospital for Children (in partnership with Drexel University) Committed to academic medicine and training, Tower Health offers various programs, including: Residency and fellowship programs Drexel University College of Medicine at Tower Health Reading Hospital School of Health Sciences Additionally, the system provides a wide range of healthcare services, such as: Reading Hospital Rehabilitation at Wyomissing Home healthcare via Tower Health at Home TowerDirect ambulance and emergency response Tower Health Medical Group Tower Health Providers (a clinically integrated network) Tower Health Urgent Care facilities across its service area
Role Description The IAM Security Analyst III is a key member of the team helping evolve role-based access with ServiceNow. Provides technical support for customer account inquiries in effectively resolving or escalating incidents and inquiries related to access or account management services across multiple applications and technology platforms. Addresses end-user's access and other security related issues and recommends improvements to address security issues or gaps. Ability to make general decisions without guidance and direction in problem solving based upon a solid knowledge of the IAM functions, processes, and procedures. May participate in a project team involved in completion of difficult assignments, requiring proficient knowledge of field of specialization. This is a remote role with a strong preference for candidates residing in Pennsylvania. Candidates in Eastern and Central time zones will be considered. Qualifications - Relevant experience with ServiceNow. - Strong familiarity and experience with IAM. - Strong leadership skills to coordinate work, handle IAM escalations, interact across departments and in meetings. - Understanding of cybersecurity. - High School Diploma - OR - GED - OR - Relevant experience may be considered in lieu of education. - Obtains certification or training for applicable system(s) or application(s) as assigned, and meets department expected outcomes regarding time frame for completion, overall scoring and other aspects of training or certification process: Epic Security certification. Requirements - Analytical Skills - Collaborative Skills - Computer Skills to include use and navigation - Customer Service Skills - Delegation Skills - Detail Oriented - Epic Proficiency - Excellent Communications Skills - Excellent Interpersonal Skills - Good Reasoning Skills - Microsoft Office Applications - Multitasking - Organizational Skills - Problem Solving Skills - Project Management Skills - Service Orientation - Strong Team Player Company Description Tower Health is a regional integrated healthcare system that offers leading-edge, compassionate healthcare and wellness services to communities in Berks, Chester, Montgomery, and Philadelphia Counties. With 1,200 beds across the system, Tower Health consists of Reading Hospital in West Reading; Phoenixville Hospital in Phoenixville; Pottstown Hospital in Pottstown; and St. Christopher's Hospital for Children, a partnership of Tower Health and Drexel University in Philadelphia. For more information, please visit https://towerhealth.org/ .
• Identity and access management • Create, modify, and delete user accounts on mainframe Security systems such as RACF. • Using administration tools such as Vanguard, zSecure (PowerTech) to help administer security databases. • Access control: Implement and maintain security policies using RACF & Vanguard (zOS), PowerTech (AS400). • Policy enforcement: Enforce least privilege and role-based access control (RBAC). • Auditing: Conduct access reviews and audit activities to ensure compliance and proper authorization. • Collaboration: Work with other teams (e.g., security, infrastructure, IT, business stakeholders) to define and implement access requirements. • Automation: Drive automation of access provisioning and de-provisioning to streamline processes. • Documentation: Create and maintain documentation for user accounts, access management, policies, and procedures. • Incident response: Investigate and remediate access-related incidents and vulnerabilities.



