57 Empregos para Security operations - São Paulo

Founded in Hong Kong in 2013, Lalamove is an on-demand delivery platform born with a mission to empower communities by making delivery fast, simple, and affordable. At the click of a button, individuals, small businesses, and corporations can access a wide fleet of delivery vehicles operated by professional driver partners.

Powered by technology, we seamlessly connect people, vehicles, freight and roads, moving things that matter and bringing benefits to local communities in 11 markets across Asia and Latin America.

We Are Looking For a Security Operations Specialist with high potential and interest in the digital/tech world.

What you’ll do

• Monitoring and Analysis: Monitor network security systems, including but not limited to WAF, IDS, Bot Management etc., identify potential security threats and abnormal behavior.Incident
• Response: Respond to attacks such as vulnerability exploitation, intrusions, crawlers, webshells, getshells, viruses and conduct emergency treatment and source tracing analysis, and build analysis reports.
• SOP Management: Participate in the maintenance and update of the security incident response plan and related operational manuals.
• Management of Endpoint Detection Response (EDR): Administer and optimize EDR solutions to detect and respond to endpoint threats.
• Implementation of Zero Trust Network Access (ZTNA): Support the implementation of Zero Trust architecture across the organization.
• ISO 27001 ISMS Control Monitoring: Ensure controls related to the ISO 27001 Information Security Management System (ISMS) are effectively in place.

• A bachelor's degree in computer science, information technology, or a related field, with network security operations experience
• Familiar with common security tools and platforms, such as Sentinel One, Cloudflare, etc
• Familiar with hacker attack methods such as the ATT&CK framework
• Familiar with OWASP Top 10, those who have optimized WAF strategy is an advantage
• Knowledge of ISO 27001 standards and experience with ISMS implementation
• Certifications such as CISSP, CISM, CEH, or equivalents are highly desirable.
• Ownership mindset, strong logical thinking ability, learning ability, communication skills, proactive, and stress-resistant.

The Role

As a Security Operations Engineer, you will analyze software designs and implementations from a security perspective and identify and propose resolutions to security issues.

You will include the appropriate security analysis, tooling and techniques to uncover InfoSec vulnerabilities, both static and dynamically, in our software solution.

Responsibilities include:

• Build effective relations and engage in business security activities like vulnerabilities assessment, engage in third party penetration tests, DAST, SAST, security testing.
• Work with development and internal IT teams to ensure compliance to WTW security standards.
• Manage and oversee ad hoc projects related to enhancing information and data security controls for business to meet compliance.
• Implement, test and operate advanced software security tools and techniques. Maintain technical documentation.
• Collaborate with other development teams to ensure that Security Testing activities provide the highest benefits. Help security/infosec move towards left in the SDLC.

The Requirements

• Proficient understanding of all aspects of information security principles, policy and its application in business and technology areas (at least 2 years of experience).
• 2+ years prior hands-on experience in a Security Engineer/Security Tester/Security Operations role.
• Experienced in security testing and understanding of information security concepts for cloud-based applications.
• Experience working in cross-functional virtual teams
• Effective communication and documentation skills
• Experience with client or internal stakeholder communication with respect to security assessments, controls, supporting client audit activities, third party penetration test etc.
• Client focus: ability to engage positively with WTW clients and business stakeholders.
• Proficient in the use of security testing tools for SAST, DAST, SCA, security testing etc. (eg. – Invicti, Mend, SNYK, Checkmarx, CredScan, Burp Suite, OWASP ZAP, Qualys, etc.)
• Interest in all aspects of security research and development and assist in recommending testing tools for the team.
• Bachelor’s Degree in Computer Science, Engineering, Information Systems, or related field;
• Experience with testing products and/or development in any of the following technologies: C#, SQL, Angular, jQuery, web services or similar.
• Knowledge on or exposure to compliance regulations like NYDFS, DORA, HIPAA etc. is good to have.

Venha fazer parte de uma consultoria líder em Tecnologia da Informação! 

Com mais de 15 anos de experiência e sólida presença no mercado, a 9NET é especializada em Segurança da Informação, GRC, Privacidade, LGPD, IaaS, Gestão de TI e Cloud. Nosso objetivo é entregar soluções inovadoras e estratégicas para empresas de diversos setores.

Estamos em busca de um Analista de SOC (Security Operations Center) apaixonado(a) por Tecnologia da Informação para se juntar à nossa equipe e atuar em um ambiente dinâmico e inovador.

Sobre a Vaga:
   Posição: Analista de SOC
   Local de Trabalho: São Paulo/SP
   Modelo de Trabalho: Híbrido
   Modelo de Contratação: CLT
   Remuneração: À combinar

Formação:
   Análise de Sistemas, Ciência da Computação, Processamento de Dados, Sistemas de Informação ou Engenharia da Computação acrescido de uma Pós-graduação na área Tecnologia da Informação.

Experiência:
   Experiência mínima de 2 (dois) anos em administração e gerência de centralizador de logs; administração de sistemas operacionais Linux e Windows Server 2012 ou superior.
   Experiência mínima de 2 (dois) anos em atividades de Tratamento e Resposta aos Incidentes Cibernéticos Blue Team, análise forense, como análise de logs, correlacionamento de eventos, resposta a incidentes de segurança da informação (cibernética);

Conhecimentos e Habilidades necessárias:
   Conceitos Básicos de Segurança da Informação;
   Identificação e Autenticação;
   Redes e Protocolos;
   Criptografia;
   Ameaças de Segurança;
   Segurança de Dispositivos e Aplicações;
   Gerenciamento de Riscos;
   Políticas e Procedimentos de Segurança;
   Monitoramento e Análise de Logs;
   Segurança de Redes Avançada;
   Liderança e Gerenciamento de Equipe;
   Auditoria de Segurança.

O que oferecemos:
   Remuneração compatível com o mercado
   Auxílio Creche
   Auxílio Natalidade
   Day Off de Aniversário
   Plano Odontológico
   Plano de Saúde
   Seguro de Vida
   Vale Presente de Aniversário
   Vale Refeição
   Vale Transporte
   Wellhub (Gympass)

Como se Candidatar:    
Se você tem os requisitos que buscamos e está pronto para um novo desafio, candidate-se agora ou envie seu currículo para

Junte-se à 9NET e contribua para o futuro da tecnologia! 

***Os currículos serão mantidos pela empresa durante o processo seletivo e por um período adicional de 2 anos, para eventuais processos seletivos futuros, em conformidade com a Lei Geral de Proteção de Dados (LGPD).***

Join to apply for the Staff Security Operations Engineer role at Canonical

Continue with Google Continue with Google

Join to apply for the Staff Security Operations Engineer role at Canonical

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's SecOps security standards and playbooks
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• Experience with security standards such as ISO 27001
  
  

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Head of Security Operations role at Canonical

Continue with Google Continue with Google

Join to apply for the Head of Security Operations role at Canonical

Get AI-powered advice on this job and more exclusive features.

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

Continue with Google Continue with Google

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

• Hire and mentor a team of outstanding technical security professionals
• Define Canonical's SecOps security standards and playbooks
• Own and drive the architecture and design of the SOC
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• Proven track record of mitigating with advanced threat actors and nation state threats
• Expert technical understanding of SOCs from the ground up
• In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
• Someone who understands how the SOC works not just how to use it
• Expert in Linux security
• Ability to define, implement, automate and measure effective incident response playbooks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Confidence to report security performance metrics with accountability for accuracy and completeness
  
  

• Experience in offensive or defensive security teams with hands-on ability
• Experience with open source security tools
• Experience with security standards such as ISO 27001
• Experience with security posture management of corporate endpoitns

• Seniority level Director

• Employment type Full-time

• Job function Other, Information Technology, and Management
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Continue with Google Continue with Google

Continue with Google Continue with Google

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Senior Security Operations Engineer role at Canonical

Continue with Google Continue with Google

Join to apply for the Senior Security Operations Engineer role at Canonical

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's Security Operation Center
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Previous professional experience working or leading a Security Operation Center
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF and ISO27001
  
  

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

O que buscamos:

Profissional que atue com Network Security Engineer

Requisitos e qualificações:

• Atuar com suporte operacional de nível 3 para questões complexas de segurança de rede.
• Projetar, configurar e gerenciar soluções de segurança como firewalls, ZTNA, SWG e segurança em nuvem.
• Automatizar processos usando Terraform e técnicas de infraestrutura como código (IaC).
• Analisar tráfego de rede e logs de segurança com ferramentas como Splunk .
• Gerenciar atualizações e ciclo de vida da infraestrutura de segurança.
• Melhorar continuamente procedimentos operacionais e documentações.
• Experiência com ZScaler (esse é o mais importante)

Perfil esperado:

• Divisão de tarefas: 60% operações / 40% engenharia .

• Habilidade para mentorar e apoiar membros L1/L2 do time
• Inglês Fluente.

Procuramos uma pessoa que:

• Goste de trabalhar em equipe e seja colaborativa em suas atribuições;
• Tenha coragem para se desafiar e ir além, abraçando novas oportunidades de crescimento;
• Transforme ideias em soluções criativas e busque qualidade em toda sua rotina;
• Tenha habilidades de resolução de problemas ;
• Possua habilidade e se sinta confortável para trabalhar de forma independente e gerenciar o próprio tempo ;
• Tenha interesse em lidar com situações adversas e inovadoras no âmbito tecnológico.

Big enough to deliver – small enough to care.

#VempraGFT

#VamosVoarJuntos

#ProudToBeGFT

Join to apply for the Threat Intelligence Lead role at Canonical

Join to apply for the Threat Intelligence Lead role at Canonical

The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Canonical, and the use of intelligence on Tactics, Techniques and Procedures (TTP) to better our products and internal cybersecurity controls. You will collaborate with internal stakeholders as well as with the wider cybersecurity community, making sure that Canonical is recognised as a thought leader on open source threat intelligence.

This role will report to the CISO.

You will lead intelligence gathering and development activities on threat actors targeting software supply chains. You'll study attack trends across the wider open source software landscape, report findings to internal security teams, and advise the wider engineering community on the best course of action to detect and mitigate possible threats.

As the publisher of Ubuntu, Canonical products are directly or indirectly present in almost every organisation and household in the world, making them a prime target for threat actors. This team's mission is to help Canonical, and by extension countless community members and companies around the world, secure their software infrastructure.

What you'll do in this role

• Build and own Canonical's threat intelligence strategy
• Build and maintain OSINT research environments
• Develop OSINT tradecraft, principals, and techniques
• Identify and track targeted intrusion cyber threats, trends, and new developments by cyber threat actors through analysis of proprietary and open source datasets
• Collaborate across teams to inform on activity of interest
• Coordinate adversary/campaign tracking
• Contribute to the wider threat intelligence community, establishing Canonical as a key contributor and thought leader in the space
• Work with product and engineering teams to explain cybersecurity threats and advise on mitigation strategies
• Work with the OPSEC and IS team to help implement/update security controls prioritising cyber defence
• Identify intelligence gaps and propose new tools and research projects to fill them
• Conduct briefings for executives, internal stakeholders and external customers
  
  

• An experienced threat intelligence leader (or similar)
• Knowledgeable about the current open source threat landscape and computer networking/infrastructure concepts
• Highly competent with OSINT tools (e.g., Buscador, Trace Labs OSINT VM, OSINT Framework, Maltego, Shodan, social media scraping tools, etc.)
• Able to identify, organise, catalogue, and track adversary tradecraft trends — often with incomplete data
• Experienced using threat intelligence data to influence enterprise architecture or product development decisions
• An excellent communicator with the ability to clearly articulate and tailor technical content to a variety of audiences
• Able to travel twice a year, for company events up to two weeks long
  
  

• A professional portfolio of OSINT related scripts, tools, or frameworks
• Demonstrated involvement in the larger OSINT community (please share relevant links)
• Degree qualified, with a bachelor's degree in computer science, information security, or a related field
• Certifications in related areas (e.g. GOSI, SANS SEC487 & SEC587, IntelTechniques OSIP, etc)
• Experience in a tech company or government/military signal intelligence departments
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

The primary purpose of your role will be to achieve goals set, generating and closing opportunities for Threat Intelligence in Brazil region. The key objective is to identify new business growth points and create action plans that would increase revenue in Brazil region in this domains.

You will work very closed with the Sales Teams to coordinate and to manage the customers which you are facing with projects for your products.

Main Responsibilities

• To be a leader and evangelist of Kaspersky brand with focus on Threat Intelligence area;
• Execution of sales plan and new business generation;
• Active participation at all sales cycle stages, negotiations with decision-makers;
• Carries out product’s pipeline coverage and forecast accuracy;
• Increases product’s awareness of Sales team, share experience and collect success stories;
• Participation in various media activities as a speaker and expert
• Conducts local competitors’ and compliance analysis;
• Finding key growth limiting factors and creating a plan to mitigate them;
• Lead development of product go to market strategies;
• Identifies most prospect customers/partner working closely with Enterprise Sales/Channel team as well as formulate the portrait of customer/partner, initiate the search process, evaluate and improve onboarding, enablement and motivation processes;
• Develops strong relationship with customers, partners, regional sales teams and HQ Product team.

Requirements

• 3+ years’ experience in b2b software sales as channel or direct sales manager with strong track record of success;
• Understanding of IT and cybersecurity landscape (threats, solutions, vendors, compliance, trends);
• Deep knowledge about the SOC building and considering security solution ( Treat Intelligence) capabilities, as a plus;
• Experience of launching a new product/service to a market as a plus;
• Experience of evaluation and defense of business cases, customer and market research as a plus;
• Experience as a public speaker and high presentation skills;
• Ability to interact with all stakeholders in the customer (from technical expert to C-Level management);
• Inclusive and collaborative – driving teamwork, and cross-team alignment;
• Strong leadership and effective interpersonal skills;
• Excellent verbal and written communication skills;
• English language on Upper-intermediate level or above.

With Estimated Timeline

Recruitment Process (approx. 2–3 weeks total):

1) Resume review (1–3 business days)

2) Introductory call with Recruiter (30 min)

3) Interview with Hiring Manager (60 min)

4) Optional final interview (if needed)

5) Offer & reference check