It4us Cyber Security logo
It4us Cyber Security

Garantindo a Cyber Segurança de nossos amigos e clientes !

Information Security Analyst

Security OperationsSecurity OperationsFull TimeRemoteSeniorTeam 51-200Since 2010H1B No SponsorCompany SiteLinkedIn

Location

Brazil

Posted

3 days ago

Salary

0

Seniority

Senior

Job Description

Information Security Analyst

It4us Cyber Security

• Implement and configure Google SecOps environments. • Onboard log sources using BindPlane, Syslog, APIs and other integration methods. • Configure and manage collectors and log ingestion pipelines. • Integrate different technologies. • Configure parsers, normalization (UDM), enrichment and validation of collected events. • Develop and tune detection rules and use cases. • Execute acceptance and validation testing of the platform. • Produce technical implementation documentation and operational procedures. • Collaborate with client technical teams throughout all phases of the project. • Support troubleshooting, adjustments and post-deployment optimizations.

Job Requirements

  • Proven experience implementing SIEM platforms.
  • Hands-on experience with Google SecOps.
  • Knowledge of BindPlane, including installation, configuration and collector management.
  • Experience integrating diverse log sources.
  • Familiarity with authentication and secure communication protocols (TLS, SSH, LDAP, Kerberos).
  • Knowledge of information security architecture.
  • Ability to troubleshoot integrations and log collection issues.
  • Good communication skills and ease interacting with clients.
  • Google Cloud or Google SecOps certifications (preferred).
  • Experience with BindPlane OP (preferred).
  • Experience migrating SIEMs (QRadar, Microsoft Sentinel, Splunk, ArcSight, Elastic, Chronicle, LogRhythm, etc.) to Google SecOps (preferred).
  • Knowledge of Google Cloud Platform (GCP) (preferred).
  • Familiarity with YARA-L and detection rule development (preferred).
  • Experience with automation using APIs, Python or Terraform (preferred).
  • Knowledge of SOAR and response automation (preferred).
  • Experience in deployment projects for large enterprise environments (preferred).

Benefits

  • Structured career plan (semi-annual and/or annual reviews)
  • Support for training courses and technical certifications
  • 100% online medical care (telemedicine, specialists, nutrition and psychology)
  • Life insurance
  • Accounting support for MEI (individual micro-entrepreneur)
  • Day off during birthday month
  • Paid leave after one year

Related Categories

Related Job Pages

More Security Operations Jobs

Commvault logo

Security Operations Analyst

Commvault

Commvault is the gold standard in cyber resilience, helping customers prevail against ransomware at the lowest TCO.

Full TimeRemoteTeam 1,001-5,000Since 1996H1B Sponsor

• Investigate security alerts using tools such as CrowdStrike Falcon Suite, Microsoft Sentinel, endpoint telemetry, identity logs, network data, and cloud security sources. • Perform alert triage and analysis to determine the scope, severity, and potential impact of security events. • Support incident response activities, including investigation, containment, remediation, recovery, and post-incident documentation. • Participate in rotational on-call escalation coverage for higher-priority security events outside normal business hours, as needed. • Write clear incident reports, investigation summaries, timelines, findings, and recommended improvements. • Support selected SOC projects focused on improving detection quality, workflows, playbooks, reporting, automation, and response readiness. • Participate in regular security operations reviews and collaborate with cross-functional teams, including Security Engineering, Threat and Vulnerability Management, Networking, Infrastructure, Identity, and IT Operations.

New Jersey
$54.4K - $120.8K / year

Cybersecurity Operations Analyst II

HARVEST VALUATIONS

Harvest Valuations LLC is an equal opportunity employer. In accordance with anti-discrimination law, it is the purpose of this policy to effectuate these principles and mandates. Harvest Valuations LLC prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law. Harvest Valuations LLC conforms to the spirit as well as to the letter of all applicable laws and regulations.

Role Description Harvest is seeking a Cybersecurity Operations Analyst II to join our team on a full-time basis. The Cybersecurity Operations Analyst is responsible for protecting the organization's information systems through the administration of security technologies, continuous monitoring, vulnerability management, incident response, and operational security initiatives. This position works closely with IT teams to maintain a secure environment while supporting the organization's compliance objectives. - Monitor, investigate, and respond to security events, alerts, and incidents across endpoint, identity, cloud, and network security platforms. - Administer and maintain cybersecurity technologies including endpoint protection, vulnerability management, security logging, email security, and identity security solutions. - Perform vulnerability assessments, coordinate remediation efforts with IT teams, and validate corrective actions to reduce organizational risk. - Support security operations by maintaining security documentation, developing operational procedures, and assisting with security audits, compliance initiatives, and customer security assessments. - Participate in the implementation, configuration, and continuous improvement of security controls, technologies, and operational processes. - Assist with user access reviews, security awareness initiatives, phishing campaigns, and other activities that promote a strong security posture. - Collaborate with cross-functional teams to investigate security concerns, support infrastructure projects, and ensure security best practices are incorporated into daily operations. Qualifications - 3+ years of experience in cybersecurity, systems administration, or information technology with a security focus. - Experience administering endpoint protection, vulnerability management, security logging/SIEM, and Microsoft Windows environments. - Working knowledge of Active Directory, Microsoft 365/Azure, networking fundamentals, and incident response processes. - Strong analytical, troubleshooting, documentation, and communication skills. - Ability to manage multiple priorities while working independently and collaboratively in a fast-paced environment. Preferred Qualifications - Experience with CrowdStrike, Microsoft 365 Security, Azure, Log360 or similar SIEM platforms, and vulnerability management solutions. - Familiarity with SOC 2, CIS Controls, or the NIST Cybersecurity Framework. - Industry certifications such as Security+, CySA+, SSCP, or equivalent. Physical Requirements - Prolonged periods of sitting at a desk and working on a computer. - Ability to operate computer equipment. - Ability to occasionally walk, stand, bend, or reach when accessing equipment, cabling, or hardware components. - Ability to communicate effectively in person and via electronic means. Remote Work Environment Requirements - Dedicated, quiet workspace free from distractions to maintain focus and accuracy. - Reliable high-speed internet connection to support secure document processing and collaboration. - Ability to meet deadlines in a remote setting while maintaining attention to detail. - Strong self-discipline and time management skills to work independently and efficiently. - Comfortable using remote communication tools (e.g. email, Microsoft Teams, Zoom) for team collaboration. Benefits - This is a full-time position with competitive compensation and good work/life balance. - Health insurance. - Paid Time Off. - Disability insurance. - Paid holidays. - 401k with employer contribution. - Remote work environment. - Generally, promotion within firm.

United States
$95.4K - $105.8K / year
Jamf logo

Security Operations Engineer I – Weekend Shift

Jamf

The Standard in Apple Enterprise Management

Full TimeRemoteTeam 1,001-5,000Since 2002H1B Sponsor

• Responsible for the tools, configuration, administration and related processes around Security Information and Event Management. • Responsible for Web application firewall and related prevention, detection and mitigation of DDoS attack. • Performs regular firewall audits in line with our procedures and provides the appropriate documentation. • Responsible for tooling, processes and follow up actions related to vulnerability scanning. • Handles the identification, planning and implementation of cloud hardening needs. • Performs security incident analysis, response and remediation. • Participates in design and implementation of security automation workflows. • Maintain the technical documentation of processes and procedures. • Perform scripting duties in Bash and Python. • Maintain an advanced level of knowledge of JAMF Cloud Services and related products.

Poland
ASAAS logo

Senior SOC Analyst

ASAAS

Simplificamos o recebimento de cobranças para pessoa física, MEIs e grandes empresas.

Full TimeRemoteTeam 501-1,000Since 2010H1B No Sponsor

• Identify, assess and mitigate cyber risks and vulnerabilities, ensuring protection of the company’s assets • Manage the SIEM platform by creating, tuning and improving correlation rules and use cases, and defining severity and criticality levels for prioritization and response • Ingest new data sources into the SIEM, including maintenance, normalization/parsing of logs and integrations with internal and external systems • Perform and oversee continuous monitoring of security events and incidents using SIEM, SOAR, EDR/XDR and related solutions • Conduct threat hunting activities to proactively identify suspicious behavior and threats • Work with Threat Intelligence (production and consumption of CTI), integrate with TIPs (such as MISP), and automate IOCs • Lead investigations and incident response efforts for cyber incidents, proposing corrective and preventive actions • Create and review operational documentation and incident response playbooks/flows • Support and follow up on security tests (penetration tests) and track remediation plans • Ensure compliance with standards and regulations (PCI-DSS, ISO 27001, SOC 2, Central Bank regulations), supporting internal and external audits • Produce technical and management reports on security status and incidents handled, recommending continuous improvements • Support and participate in incident simulation exercises: tabletop, red team, blue team and purple team • Drive continuous improvement of SOC processes, workflows and maturity • Collaborate with internal teams on the ongoing evolution of information security practices • Mentor and train team members, promoting information security best practices

Brazil