Cadastra

Information Security Analyst – Senior

Cadastra

full-time

Posted on:

Location Type: Hybrid

Location: São PauloBrazil

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudDNSFirewallsGoogle Cloud PlatformPythonTCP/IPTerraform

About the role

  • Act proactively to protect the company's information assets, with a focus on cloud environments (GCP and AWS), Google Workspace services and security infrastructure (WAF, firewall, IAM), ensuring confidentiality, integrity and availability of information.
  • Responsible for identifying vulnerabilities, proposing solutions, implementing controls and participating in the response to cybersecurity incidents.
  • Implement, configure and monitor security policies in Google Cloud Platform (GCP) and AWS, focusing on IAM, encryption, auditing and hardening.
  • Manage and strengthen the Google Workspace environment by applying security best practices (MFA, DLP, context-aware access, alerts, etc.).
  • Configure and administer WAFs (Web Application Firewalls), VPNs, network firewalls (physical or virtual), IDS/IPS rules and traffic policies.
  • Participate in security architecture and operational projects for cloud and hybrid environments.
  • Conduct vulnerability assessments and internal and external penetration tests (in partnership with third parties or using automated tools).
  • Develop security scripts and automations (e.g., continuous auditing, incident response, compliance monitoring).
  • Support compliance processes with internal and external standards and policies (e.g., ISO 27001, LGPD, GDPR).
  • Respond to internal and external audits.
  • Investigate incidents, perform incident response and basic forensic analysis.
  • Prepare technical and risk reports for internal stakeholders (IT, Legal, Executive Management).
  • Maintain and update security documentation, applied controls, critical asset inventory and risk matrix.

Requirements

  • Proven experience with GCP security (IAM, KMS, VPN, VPC Service Controls, Security Command Center).
  • Strong knowledge of security practices in AWS (IAM, VPN, KMS, GuardDuty, WAF, CloudTrail, etc.).
  • Experience with advanced Google Workspace administration, including GAM, Drive auditing, group management, DLP rules and alerts.
  • Knowledge of next-generation firewalls (Fortinet, SonicWall, Palo Alto, pfSense, etc.).
  • Experience with WAFs (Cloudflare, AWS WAF, Google Cloud Armor, or similar).
  • Solid networking knowledge: TCP/IP, routing, VPN, DNS, NAT and VLANs.
  • Experience with SIEMs, EDRs and log analysis tools.
  • Scripting in Python, Shell or PowerShell for task automation.
  • Familiarity with security frameworks: ISO 27001, NIST CSF, CIS Controls, MITRE ATT&CK.
  • Required certification: Google Cloud Certified – Professional Cloud Security Engineer.
  • Desirable certifications: Workspace Administrator; Cloud Architect; Security+ / ISO 27001 / CISSP; Terraform Associate.
Benefits
  • Meal and food allowance on the FLASH card 🥗
  • Home office allowance on the FLASH card 💳
  • Bradesco health plan 🩺
  • Bradesco dental plan 🦷
  • Birthday day off + credit added to the FLASH card 🎉
  • Extended maternity and paternity leave 🍼
  • Profit sharing (PLR) 💰
  • Life insurance 🧡
  • Childcare assistance 👶
  • Referral bonus 💰
  • Transportation allowance 🚍
  • Clude | Health platform 🩺
  • TotalPass subscription (fitness/wellness) 🏋🏽‍♀️

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
GCP securityAWS securityGoogle Workspace administrationnetwork firewallsWAFsvulnerability assessmentspenetration testingscripting in Pythonscripting in Shellscripting in PowerShell
Soft skills
proactiveincident responseinvestigationreport preparationcollaboration
Certifications
Google Cloud Certified – Professional Cloud Security EngineerWorkspace AdministratorCloud ArchitectSecurity+ISO 27001CISSPTerraform Associate