"Alerted.org

Job Description

The Information Security Analyst will be tasked with monitoring and identifying organizational security risks, detecting attack methods and sources, and preserving electronic evidence when required. This role requires expertise in analyzing, recommending, designing, implementing, and maintaining systems and processes that safeguard business and client data. Core responsibilities include conducting risk assessments, performing security analyses, and creating remediation strategies. The individual should be capable of working independently while contributing to security programs as part of the incident response team. Strong written communication skills are essential for preparing formal reports. Professional fluency in English and Portuguese is required. This is an onsite position in Brazil, five days per week, offered as a 6–12 month contract with potential for extension or conversion to a full-time role.

Responsibilities but not limited to:

• IT Security Administration: Focus on minimizing downtime and ensuring scalability by addressing security risks across systems and networks.

• Application Security Alignment: Guarantee that security architecture, designs, plans, controls, and policies comply with IT standards and overall security requirements.

• Documentation: Develop and maintain detailed records for all security systems and networks, updating documentation whenever changes occur.

• Project Participation: Contribute to initiatives and projects centered on information security.

• Program Support: Assist with implementing, maintaining, and monitoring the information security program, including gap analysis, risk assessments, third-party evaluations, procedure development, recurring processes, and incident response.

• Solution Deployment: Handle integration, initial configuration, and upgrades of new and existing security solutions following industry best practices.

• Operating Systems Expertise: Demonstrate advanced knowledge of Linux, Windows, and OS X environments.

• Cloud Security: Apply experience in securing cloud infrastructures such as AWS and Azure.

• Vulnerability Management: Lead efforts to identify and remediate security weaknesses in networks and systems, providing technical guidance and support.

• Policy Development: Create, implement, and maintain internal procedures to safeguard data and manage incident response effectively.

• Collaboration: Work with project teams and system architects to design secure systems and project plans that meet established security standards.

• Threat Awareness: Stay informed on current and emerging security threats and design architectures to mitigate potential risks.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

• Knowledge with Security solutions: SIEM, IAM, PAM, EDR/XDR, CSAM, CASB, Proxies, ZTNA

• Solid security understanding with Microsoft security controls (AD, Entra, O365, Intune MDM, etc)

• Minimum 7+ years of experience in information technology security or equivalent combination of education and experience

• Security+, CISSP, CISA or SANS GIAC certification

• Understanding of application, network, operating system, and core infrastructure security concepts.

• Knowledge on security monitoring tools such as UTM, IPS, IDS and other security appliances

• Project management, organizational and prioritizing skills

• Understanding of WAN, MPLS, and technologies such as VoIP beneficial

• Working knowledge of common information technology management frameworks such as ISO/IEC 27001, ITIL, COBIT, and NIST