Sr. Cybersecurity Analyst - Blue Team
Summary
The main responsibilities of a Blue Team include responding to security incidents, creating and maintaining security playbooks, conducting threat intelligence analysis, implementing edge controls, securing APIs, and managing WAF.
What you'll do
Incident Response: Efficiently and effectively respond to security incidents, ensuring quick containment, investigation, and resolution.
Security Playbooks: Develop, maintain, and regularly update security playbooks for various incident scenarios, ensuring structured responses.
Web Application Protection: Implement and manage Web Application Firewalls (WAF) to safeguard web applications from security threats.
Cloud Security: Utilize and manage AWS services to enhance security in cloud environments, ensuring data protection and system integrity.
Security Automation: Automate security processes and workflows through scripting to improve efficiency and reduce manual intervention.
Threat Intelligence: Conduct thorough threat intelligence analysis to identify, assess, and mitigate risks from emerging threats.
End-to-End Security Processes: Lead security processes from incident identification through to resolution and post-incident analysis.
Incident and Vulnerability Prioritization: Define the criticality of incidents and vulnerabilities to prioritize response actions based on severity.
Financial Market Knowledge: Leverage expertise in the financial sector, ensuring security practices align with sector-specific regulations and compliance requirements.
Mission-Critical Systems: Ensure high availability and security of systems operating in mission-critical environments, managing security at scale.
Minimum Qualifications
Language Skills:
English Advanced
Technical Skills:
Incident Response: Proven experience in handling security incidents, from detection to resolution, ensuring minimal disruption.
WAF Knowledge: Strong experience in implementing and managing Web Application Firewalls (WAF) to protect web applications.
AWS Security: Expertise in utilizing and managing AWS services to secure cloud infrastructure and applications.
Threat Intelligence: In-depth knowledge of threat intelligence analysis and using intelligence feeds to identify and mitigate risks.
Mission-Critical Environments: Experience working in environments where high availability, reliability, and security are crucial.
Financial Market Experience: Familiarity with industry-specific regulations and security best practices within the financial market.
Criticality Assessment: Ability to assess and define the criticality of incidents and vulnerabilities for effective prioritization of actions.
Desirable Qualifications
Security Automation: Experience automating security processes with scripting languages such as Python, PowerShell, or Bash.
Advanced Threat Detection: Familiarity with advanced threat detection tools and techniques.
Desired Certifications:
CompTIA Security+
Certified Information Systems Security Professional (CISSP)
CySA+ (Certified Cybersecurity Analyst)
ISC2 and other relevant cybersecurity certifications.
Core Benefits
Remote work
Flexible hours
Meal & Food vouchers
Remote work financial support
Life Insurance
Medical and Dental
Assistance Employee child care benefit: daycare
Private Pension (2x1)
Vidalink partnership
Support for studying languages
Incentive for AWS and GCP certifications
Sesc Partnership
Performance Incentive Plan
Sr. Cybersecurity Analyst - Blue Team
Summary
The main responsibilities of a Blue Team include responding to security incidents, creating and maintaining security playbooks, conducting threat intelligence analysis, implementing edge controls, securing APIs, and managing WAF.
What you'll do
Incident Response: Efficiently and effectively respond to security incidents, ensuring quick containment, investigation, and resolution.
Security Playbooks: Develop, maintain, and regularly update security playbooks for various incident scenarios, ensuring structured responses.
Web Application Protection: Implement and manage Web Application Firewalls (WAF) to safeguard web applications from security threats.
Cloud Security: Utilize and manage AWS services to enhance security in cloud environments, ensuring data protection and system integrity.
Security Automation: Automate security processes and workflows through scripting to improve efficiency and reduce manual intervention.
Threat Intelligence: Conduct thorough threat intelligence analysis to identify, assess, and mitigate risks from emerging threats.
End-to-End Security Processes: Lead security processes from incident identification through to resolution and post-incident analysis.
Incident and Vulnerability Prioritization: Define the criticality of incidents and vulnerabilities to prioritize response actions based on severity.
Financial Market Knowledge: Leverage expertise in the financial sector, ensuring security practices align with sector-specific regulations and compliance requirements.
Mission-Critical Systems: Ensure high availability and security of systems operating in mission-critical environments, managing security at scale.
Minimum Qualifications
Language Skills:
English Advanced
Technical Skills:
Incident Response: Proven experience in handling security incidents, from detection to resolution, ensuring minimal disruption.
WAF Knowledge: Strong experience in implementing and managing Web Application Firewalls (WAF) to protect web applications.
AWS Security: Expertise in utilizing and managing AWS services to secure cloud infrastructure and applications.
Threat Intelligence: In-depth knowledge of threat intelligence analysis and using intelligence feeds to identify and mitigate risks.
Mission-Critical Environments: Experience working in environments where high availability, reliability, and security are crucial.
Financial Market Experience: Familiarity with industry-specific regulations and security best practices within the financial market.
Criticality Assessment: Ability to assess and define the criticality of incidents and vulnerabilities for effective prioritization of actions.
Desirable Qualifications
Security Automation: Experience automating security processes with scripting languages such as Python, PowerShell, or Bash.
Advanced Threat Detection: Familiarity with advanced threat detection tools and techniques.
Desired Certifications:
CompTIA Security+
Certified Information Systems Security Professional (CISSP)
CySA+ (Certified Cybersecurity Analyst)
ISC2 and other relevant cybersecurity certifications.
Core Benefits
Remote work
Flexible hours
Meal & Food vouchers
Remote work financial support
Life Insurance
Medical and Dental
Assistance Employee child care benefit: daycare
Private Pension (2x1)
Vidalink partnership
Support for studying languages
Incentive for AWS and GCP certifications
Sesc Partnership
Performance Incentive Plan