Cadastra

Information Security Analyst – Senior

Cadastra

full-time

Posted on:

Location Type: Hybrid

Location: São PauloBrazil

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudDNSFirewallsGoogle Cloud PlatformPythonTCP/IPTerraform

About the role

  • Act proactively to protect the company's information assets, with a focus on cloud environments (GCP and AWS), Google Workspace services and security infrastructure (WAF, firewall, IAM), ensuring confidentiality, integrity and availability of information.
  • Responsible for identifying vulnerabilities, proposing solutions, implementing controls and participating in the response to cybersecurity incidents.
  • Implement, configure and monitor security policies in Google Cloud Platform (GCP) and AWS, focusing on IAM, encryption, auditing and hardening.
  • Manage and strengthen the Google Workspace environment by applying security best practices (MFA, DLP, context-aware access, alerts, etc.).
  • Configure and administer WAFs (Web Application Firewalls), VPNs, network firewalls (physical or virtual), IDS/IPS rules and traffic policies.
  • Participate in security architecture and operational projects for cloud and hybrid environments.
  • Conduct vulnerability assessments and internal and external penetration tests (in partnership with third parties or using automated tools).
  • Develop security scripts and automations (e.g., continuous auditing, incident response, compliance monitoring).
  • Support compliance processes with internal and external standards and policies (e.g., ISO 27001, LGPD, GDPR).
  • Respond to internal and external audits.
  • Investigate incidents, perform incident response and basic forensic analysis.
  • Prepare technical and risk reports for internal stakeholders (IT, Legal, Executive Management).
  • Maintain and update security documentation, applied controls, critical asset inventory and risk matrix.

Requirements

  • Proven experience with GCP security (IAM, KMS, VPN, VPC Service Controls, Security Command Center).
  • Strong knowledge of security practices in AWS (IAM, VPN, KMS, GuardDuty, WAF, CloudTrail, etc.).
  • Experience with advanced Google Workspace administration, including GAM, Drive auditing, group management, DLP rules and alerts.
  • Knowledge of next-generation firewalls (Fortinet, SonicWall, Palo Alto, pfSense, etc.).
  • Experience with WAFs (Cloudflare, AWS WAF, Google Cloud Armor, or similar).
  • Solid networking knowledge: TCP/IP, routing, VPN, DNS, NAT and VLANs.
  • Experience with SIEMs, EDRs and log analysis tools.
  • Scripting in Python, Shell or PowerShell for task automation.
  • Familiarity with security frameworks: ISO 27001, NIST CSF, CIS Controls, MITRE ATT&CK.
  • Required certification: Google Cloud Certified – Professional Cloud Security Engineer.
  • Desirable certifications: Workspace Administrator; Cloud Architect; Security+ / ISO 27001 / CISSP; Terraform Associate.
Benefits
  • Meal and food allowance on the FLASH card 🥗
  • Home office allowance on the FLASH card 💳
  • Bradesco health plan 🩺
  • Bradesco dental plan 🦷
  • Birthday day off + credit added to the FLASH card 🎉
  • Extended maternity and paternity leave 🍼
  • Profit sharing (PLR) 💰
  • Life insurance 🧡
  • Childcare assistance 👶
  • Referral bonus 💰
  • Transportation allowance 🚍
  • Clude | Health platform 🩺
  • TotalPass subscription (fitness/wellness) 🏋🏽‍♀️
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GCP securityAWS securityGoogle Workspace administrationnetwork firewallsWAFsvulnerability assessmentspenetration testingscripting in Pythonscripting in Shellscripting in PowerShell
Soft Skills
proactiveincident responseinvestigationreport preparationcollaboration
Certifications
Google Cloud Certified – Professional Cloud Security EngineerWorkspace AdministratorCloud ArchitectSecurity+ISO 27001CISSPTerraform Associate