Security Engineer – Rio De Janeiro

Nine Twenty Recruitment está com vaga(s) de emprego para Security Engineer – Rio De Janeiro em Rio de Janeiro

Cargo:

Security Engineer – Rio de Janeiro

Role : SecOps Engineer Salary : Competitive package + equity Location : Rio de Janeiro - Hybrid Note : This role may require occasional out of hours and weekend work. Summary Our client, a rapidly growing HealthTech Unicorn, is on a mission to humanise the healthcare experience for doctors, patients, and clinics through their digital product. A leader in 13 countries supporting millions of patients and doctors, our client is now turning their focus to the security team and seeking a crucial hire to support their growth. We are looking for a seasoned Senior Security Operations Engineer to join our team. In this role, you will lead incident response initiatives and conduct thorough cybersecurity investigations to mitigate risks effectively. You will play a key role in enhancing our security program by refining processes, optimizing tooling and implementing advanced threat detection and mitigation strategies across diverse technology landscapes. Responsibilities: Perform daily alert investigation and incident response in both cloud-native and traditional environments Identify, scope, and manage ongoing incidents for our customers, developing remediation plans to improve security maturity Improve and maintain processes, tooling, documentation and training to mature and enhance cybersecurity incident response Design, implement and maintain monitoring systems Assist our development and operations teams on improving our log monitoring capabilities Tools and Technologies: Cloud-based environment (AWS), Datadog, AWS WAF, Infrastructure as Code, Terraform, Kubernetes Requirements: Security operations experience, including alert triage, investigation, and incident response Experience designing, building and maintaining monitoring and alerting systems from scratch Proficiency in managing the incident lifecycle with the ability to handle multiple work streams concurrently Understanding of secure software development practices, including knowledge of common vulnerabilities such as OWASP Top 10. Effective communication skills to articulate complex technical issues to diverse audiences (IT professionals, executives, business decision-makers) in a clear, authoritative, and actionable manner Experience in start-up/tech environment in a SaaS company Nice to Have: Familiarity with scripting languages (Python, Bash…) and APIs Awareness of cybersecurity standards and regulations such as NIST, CIS, ISO 27001, and PCI DSS A basic understanding of Forensic processes

A combinar

Não foi informado