Simplificamos o recebimento de cobranças para pessoa física, MEIs e grandes empresas.
Senior SOC Analyst
Location
Brazil
Posted
4 days ago
Salary
0
Seniority
Senior
Job Description
Senior SOC Analyst
ASAAS
• Identify, assess and mitigate cyber risks and vulnerabilities, ensuring protection of the company’s assets • Manage the SIEM platform by creating, tuning and improving correlation rules and use cases, and defining severity and criticality levels for prioritization and response • Ingest new data sources into the SIEM, including maintenance, normalization/parsing of logs and integrations with internal and external systems • Perform and oversee continuous monitoring of security events and incidents using SIEM, SOAR, EDR/XDR and related solutions • Conduct threat hunting activities to proactively identify suspicious behavior and threats • Work with Threat Intelligence (production and consumption of CTI), integrate with TIPs (such as MISP), and automate IOCs • Lead investigations and incident response efforts for cyber incidents, proposing corrective and preventive actions • Create and review operational documentation and incident response playbooks/flows • Support and follow up on security tests (penetration tests) and track remediation plans • Ensure compliance with standards and regulations (PCI-DSS, ISO 27001, SOC 2, Central Bank regulations), supporting internal and external audits • Produce technical and management reports on security status and incidents handled, recommending continuous improvements • Support and participate in incident simulation exercises: tabletop, red team, blue team and purple team • Drive continuous improvement of SOC processes, workflows and maturity • Collaborate with internal teams on the ongoing evolution of information security practices • Mentor and train team members, promoting information security best practices
Job Requirements
- Extensive experience in SOC environments, including handling complex security incidents
- Critical thinker with attention to detail and strong analytical skills
- Investigative mindset and a sense of urgency in identifying and addressing threats
- Previous experience in financial institutions or highly regulated environments
- Advanced knowledge of monitoring and incident response tools (SIEM, SOAR, IDS/IPS, EDR/XDR)
- Solid understanding of security frameworks and standards (ISO 27001, PCI-DSS, NIST, MITRE ATT&CK, CIS Controls, OWASP)
- Experience with scripting and automation (Python, PowerShell or similar) to optimize and automate security processes
- Experience implementing and managing cybersecurity controls
- Effective communication skills for interacting with technical and non-technical stakeholders
Benefits
- Medical and dental plans with no copayment
- Life insurance
- Medication purchase allowance
- Fitness allowance
- Partnership with Neon for the team’s financial wellness
- Partnership with Zenklub for physical and mental health (includes 4 free monthly sessions with a therapist or nutritionist)
- Quick massage available at headquarters
- Flexible meal benefit via a credit card (Visa)
- Free meals at headquarters
- Childcare assistance
- Parental support program
- Extended maternity and paternity leave
- In-house training platform
- Education assistance covering 70% of tuition for degrees and language courses, and support for purchasing courses and books
- Home office allowance
- Work equipment provided
- Furniture allowance
- Partnership with WOBA for coworking access across Brazil
- Day off during the month of your birthday
- Happy hour allowance
- Referral bonus for new hires
- Performance bonus based on annual targets
- Stock option plan
- Casual work environment, no dress code
Related Guides
Related Categories
Related Job Pages
More Security Operations Jobs
Mid-Market SecOps Buyer – Purchasing Workflows
TeracDemocratizing the future of market research with AI
• Walk us through your end-to-end process for evaluating security software. • Detail the specific steps and stakeholders involved in a recent SIEM or SecOps purchase. • Describe the challenges you face when comparing different security vendors. • Provide feedback on what makes a vendor evaluation successful for your organization.
SOC Analyst
StradaWe’re Strada, a global pioneer in payroll, human capital, and financial management solutions.
• Monitor and respond to security alerts from Microsoft Sentinel, Microsoft Defender XDR, ZeroFox, and Entra ID related activity • Perform initial triage of alerts to determine severity, scope, and whether activity is malicious or a false positive • Conduct basic investigations using available telemetry from Azure, Endpoint, Office, etc • Utilize Kusto Query Language (KQL) to query logs and validate suspicious activity when required • Escalate validated or high-risk alerts to Tier 2 analysts with clear documentation, supporting evidence, and timelines • Follow established SOC playbooks and SOP during alert handling and investigations • Document all investigations and actions taken in the case management system (ServiceNow) with accuracy and clarity • Track and identify recurring alerts or patterns in the environment and report findings to support detection tuning efforts • Support incident response efforts by collecting relevant artifacts and assisting Tier 2 in identifying potential root cause • Provide feedback on SOC processes, playbooks, and workflows to improve operational efficiency • Assist with projects and ongoing efforts to create documentation, support automation initiatives, and review legacy SOC processes • Ensure timely response and adherence to SLAs for alert acknowledgment, triage, and escalation • Assist Compliance teams with audit requests by retrieving and organizing relevant security log data from Sentinel
Cyber Operations Lead – Incident Response
Chickasaw Nation Industries, Inc.Service Without Reservation
• Overseeing and managing the organization’s cyber incident response and operational security activities • Directing response strategies, guiding investigations, and coordinating remediation efforts • Collaborating with cross-functional teams to protect the organization from cyber threats • Developing and implementing effective incident response plans
• Responsible for ensuring client satisfaction and efficient execution of engagement plans • Serve as a coach and advisor to team members • Focus on IT controls, security, and compliance across SOC 2 and SOC 1 engagements • Evaluate, test, and document controls related to security, availability, processing integrity, and key business processes • Build strong client relationships through a deep understanding of client systems, technology environments, and compliance requirements




