A Tecnologia do Grupo Casas Bahia - A dedicação nunca foi tão forte!
Cybersecurity Specialist, Incident Response
Location
Brazil
Posted
3 days ago
Salary
0
Seniority
Senior
Job Description
Cybersecurity Specialist, Incident Response
Casas Bahia Tecnologia
• Coordinate Security Operations Center (SOC) operations, ensuring continuous monitoring, rapid response, and alignment with company security policies. • Assess and optimize incident response processes, implementing automation, playbooks, and metrics to increase efficiency and reduce response time. • Conduct detailed incident analyses, identifying root causes and impacts, and proposing corrective and preventive measures. • Manage SIEM, SOAR, and other monitoring tools, ensuring integration and effectiveness in threat detection. • Collaborate with cybersecurity defense teams, GRC, IAM, and infrastructure to coordinate actions during incidents and improve overall security posture. • Prepare technical and executive reports on incidents, trends, and implemented improvements. • Train SOC analysts and other stakeholders on incident response best practices and tool usage. • Stay current on new attack techniques, response frameworks (e.g., NIST, MITRE ATT&CK), and market trends.
Job Requirements
- Bachelor's degree in Computer Science, Computer Engineering, Information Systems, or a related field.
- Proven experience in incident response, SOC management, and investigation of complex incidents.
- Knowledge of EDR/XDR (e.g., Microsoft Defender, CrowdStrike).
- Experience with SOAR and process automation.
- Understanding of network protocols.
- Familiarity with MITRE ATT&CK and NIST frameworks.
- Proficiency in scripting languages (Python, PowerShell) for automation.
- Experience with public cloud security (AWS, Azure and/or GCP), including native detection and protection tools, cloud log management, and understanding of the shared responsibility model.
- Ability to correlate events, identify patterns, and propose effective strategies.
- Ability to present clear and detailed reports to technical and executive audiences.
- Commitment to continuous learning and participation in trainings and conferences.
- Ability to collaborate with cross-functional teams to ensure coordinated responses.
Benefits
- Profit-sharing / Bonus: Additional recognition to reward your effort and dedication.
- Medical and Dental Coverage: Health benefits to support you and your family.
- Meal Allowance: Support for daily meals.
- Life Insurance: Financial protection for you and your dependents.
- Extended Maternity Leave: 180 days of leave for new mothers.
- Extended Paternity Leave: 20 days of leave for new fathers.
- Fitness Support: Access to Wellhub (Gympass) and TotalPass to encourage physical activity.
- Transportation Allowance: Support for your commute.
- Partnership with SESC: Access to cultural, leisure and health benefits.
- Discount Club: Savings of up to 70% with over 2,000 partners across Brazil and Latin America.
- Birthday Day Off: A day off to celebrate your birthday.
- Pharmacy Discounts: Exclusive discounts on medications to help with healthcare costs.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Adjunct Faculty, Homeland Security, Intelligence, Emergency Management
UMGC VenturesA new model in higher education funding from a leader in education innovation, UMGC.
• Teach online in the Homeland Security, Intelligence, and Emergency Management programs. • Actively engage students through frequent interaction that motivates them to succeed. • Guide students in collaboration and application of their learning in problem- and project-based learning demonstrations. • Provide rich feedback, utilizing rubrics effectively for assessment of student work. • Demonstrate relevant subject-matter expertise and connect concepts across the program.
Claims Examiner II – Social Security
Lincoln FinancialWe help people confidently plan for their version of a successful financial future.
• Delivers routine work independently, in accordance with established procedures and guidelines, in a timely manner and meets deadlines appropriately. • Applies expanded knowledge obtained from the role in increasingly more complex situations and continues to acquire more knowledge to apply in role. • Reviews and interprets disability insurance policies with specific attention to provisions related to other income and/or offsets. • Contacts and educates claimants eligible for SSDI benefits. • Explains both the differences and coordination between the disability policy/benefits and the SSA's benefits/adjudication. • Provides initial guidance and continues on-going communication with claimants regarding their SS responsibilities and follow-up items until a final determination is made. • Accurately posts SS offsets in applicable system(s). • Develops and maintains working relationships with SSDI vendors and/or claimant attorneys. • Works closely with internal benefits/claims teams; regularly providing information and updates regarding Social Security eligibility and determinations. • Takes initiative to investigate issues and identify root causes; recommends solutions to improve operational effectiveness. • Maintains and updates knowledge of SSDI guidelines and departmental policies & procedures.
Role Description We are seeking a skilled Cloud Security Engineer to strengthen the security of our multi-cloud infrastructure. The ideal candidate will be responsible for: - Cloud security operations - Security monitoring - Incident response - Configuration reviews - Automation - Implementing security best practices across cloud platforms, endpoints, email systems, and AI-enabled workloads This role requires hands-on experience with cloud security technologies, identity management, SIEM, CSPM, automation, and cloud-native security services. Qualifications - Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field - 5–8 years of experience in Cloud Security, Security Operations, or Cloud Infrastructure Security - Hands-on experience securing AWS, Microsoft Azure, Google Cloud Platform (GCP), or Oracle Cloud Infrastructure (OCI) - Strong understanding of Identity & Access Management (IAM), cloud networking, and cloud-native security services - Experience with Cloud Security Posture Management (CSPM) tools and Endpoint Detection & Response (EDR) platforms such as CrowdStrike - Experience working with SIEM platforms and incident response processes - Knowledge of identity-aware access solutions such as Teleport or similar secure access platforms - Proficiency in Python scripting - Understanding of AI/ML workload security, API security, and cloud data protection Requirements - Monitor, analyze, and respond to security events across AWS, Azure, GCP, or OCI environments - Investigate cloud security alerts and perform threat analysis - Support continuous monitoring and improvement of the organization's cloud security posture - Analyze security findings related to cloud infrastructure, endpoints, email security, and monitoring platforms - Document risk assessments, severity classifications, business impact, and remediation recommendations - Maintain accurate security findings within ticketing systems and reporting platforms - Triage, investigate, and classify security alerts from cloud security and monitoring tools - Maintain detailed investigation records, including analysis performed, mitigation actions, escalations, and final resolution - Assist in security incident investigations, root cause analysis, and post-incident reporting - Conduct secure configuration assessments across cloud environments - Review IAM configurations and evaluate Cloud Security Posture Management (CSPM) findings - Recommend improvements to strengthen cloud security controls and compliance - Secure AI/ML workloads deployed in cloud environments, including training pipelines, inference services, and data storage - Monitor AI services and third-party AI APIs for misuse, anomalies, and unauthorized access - Collaborate with engineering teams to implement secure AI deployment practices - Support governance and policy development for responsible AI adoption - Design, develop, and maintain security automation workflows and scripts - Develop automation using Python and Infrastructure as Code (IaC) tools such as Terraform - Document automation processes to support operational teams - Prepare operational reports covering security alert trends, remediation progress, cloud security posture improvements, and tool optimization and tuning - Present security status updates and findings to internal stakeholders Company Description
Role Description We are seeking an experienced Corporate Security Architect to lead security assessments for third-party vendors and enterprise technologies. This role is responsible for strengthening the organization's security posture by conducting Third-Party Risk Assessments (TPRA), evaluating SaaS applications, cloud services, and enterprise platforms, and providing risk-based recommendations to support secure business operations. The ideal candidate will collaborate with Procurement, Legal, IT, Privacy, Compliance, and business teams to assess security risks, review vendor security controls, and ensure compliance with organizational security standards and governance frameworks. Key Responsibilities - Third-Party Risk Assessments (TPRA) - Conduct comprehensive security assessments of third-party vendors, suppliers, and service providers. - Review vendor security documentation, including SOC 2 reports, ISO 27001 certifications, penetration testing reports, security questionnaires, and architecture documents. - Evaluate security controls related to identity and access management, data protection, infrastructure security, business continuity, and incident response. - Document assessment findings, risk ratings, remediation recommendations, and approval decisions. - Corporate Technology Security Reviews - Perform security assessments of SaaS applications, enterprise platforms, cloud services, and corporate technologies. - Evaluate authentication, authorization, encryption, integrations, logging, monitoring, and overall security posture. - Assess emerging technologies, including AI-enabled solutions, for security risks and compliance. - Provide risk-based recommendations to support secure technology adoption. - Assessment Operations & Stakeholder Management - Execute security assessments in accordance with established policies, standards, and governance processes. - Maintain complete assessment documentation, supporting evidence, findings, and recommendations. - Track remediation activities and monitor assessment progress through completion. - Partner with Procurement, Legal, IT, Privacy, Compliance, and business stakeholders throughout the assessment lifecycle. - Escalate critical security risks through appropriate governance channels. - Reporting & Operational Metrics - Prepare reports covering assessment volumes, turnaround time, risk trends, remediation status, and overall program performance. - Develop stakeholder-ready summaries and support internal and external audit requirements. - Contribute to continuous improvement initiatives by identifying opportunities for process optimization and assessment automation. Key Deliverables - Completed Third-Party Risk Assessment (TPRA) reports. - Security assessment reports for SaaS applications, cloud services, and enterprise technologies. - Risk findings with severity ratings and remediation recommendations. - Assessment documentation, supporting evidence, and approval recommendations. - Remediation tracking and validation reports. - Monthly operational dashboards and assessment metrics. - Executive-ready reports and stakeholder presentations. - Recommendations for improving assessment processes and program scalability. Qualifications - Bachelor's degree in Cybersecurity, Information Security, Computer Science, or a related discipline. - 8+ years of experience in Information Security, Security Architecture, Risk Management, or Corporate Security. - Hands-on experience managing or supporting Third-Party Risk Management (TPRM/TPRA) programs. - Experience conducting security assessments for SaaS platforms, cloud services, and enterprise applications. - Strong knowledge of security frameworks and standards, including NIST CSF, ISO 27001, SOC 2, CIS Controls, cloud security, and Identity & Access Management (IAM). - Experience reviewing vendor security documentation and performing risk-based security assessments. - Excellent analytical, documentation, communication, and stakeholder management skills. Preferred Qualifications - Experience supporting enterprise SaaS environments and cloud-based technologies. - Hands-on experience with Governance, Risk & Compliance (GRC) platforms and vendor risk management tools. - Experience developing security dashboards, metrics, and operational reporting. - Professional certifications such as CISSP, CISM, CRISC, CCSP, or CISA are preferred. - Experience evaluating AI-enabled technologies and defining security requirements for AI adoption.


