Analista de Segurança da Informação Pleno – Gestão de Identidades e Acessos
Cartão Elo
AWSAzureCloudGoogle Cloud PlatformOraclePythonSOAP
Mid-Level Information Security Analyst – Identity and Access Management
Cartão Elo
full-time
Posted on:
Location Type: Hybrid
Location: Barueri • Brasil
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudGoogle Cloud PlatformOraclePythonSOAP
About the role
- Implement and manage IAM and CIAM solutions with a focus on SailPoint, Microsoft EntraID (Azure AD), and Okta/Auth0.
- Automate Identity Governance and Administration (IGA) processes: provisioning, RBAC/ABAC, SoD (Segregation of Duties), workflows, and periodic access reviews.
- Develop and maintain secure, scalable authentication and authorization flows, including SSO, MFA, OAuth 2.0, OIDC, and SAML.
- Implement MFA, SSO, adaptive authentication, and passwordless solutions for internal users and end customers.
- Integrate critical payments systems (gateways, acquirers, issuers, ERPs, CRMs, APIs, and SaaS) with identity platforms.
- Support internal and external audits, ensuring compliance with PCI-DSS, LGPD (Brazilian Data Protection Law), ISO 27001, NIST, BACEN (Central Bank of Brazil) requirements, and Open Banking/Open Finance frameworks.
- Monitor access and respond to identity and access-related incidents.
- Prepare technical documentation, security policies, and procedures.
- Collaborate with architecture, development, cloud, and security teams to integrate identity solutions in hybrid and multi-cloud environments.
Requirements
- Hands-on experience with IAM/CIAM using SailPoint (IdentityNow/IdentityIQ), Microsoft EntraID (Azure AD), and Okta/Auth0.
- Proficiency in identity protocols and standards: LDAP, SAML, OAuth 2.0, OIDC, SCIM, Kerberos.
- Experience in process automation and integration of legacy and modern applications (REST/SOAP APIs, microservices, SaaS).
- Experience in regulated payments environments (acquirers, issuers, fintechs, PSPs).
- Knowledge of Zero Trust Architecture and the principle of least privilege.
- Scripting/automation skills (PowerShell, Python, Bash).
- Preferable knowledge of Cloud Identity (AWS IAM, GCP Identity, Oracle Identity Cloud – OIC).
- Preferable knowledge of PAM/PIM and password vaults.
- Technical English for reading and writing documentation.
Benefits
- Profit Sharing Program (PPR)
- Health insurance (Bradesco – co-payment)
- Optional dental insurance (Bradesco)
- Life insurance (Banco do Brasil)
- Optional private pension plan (employee can contribute up to 7.8% of salary; Elo's contribution ranges from 100% to 200% according to plan rules)
- Meal/food allowance of R$1,800.00
- R$150.00 flexible credit balance to use for credit-type expenses
- Holiday (Christmas) card: R$750.00
- Home office allowance of R$200.00 for hybrid model and R$300.00 for remote model
- Mobility allowance of R$400.00
- Free parking
- Childcare assistance for parents
- Culture allowance (benefit for theater, cinema, or bookstores)
- Extended parental leave (for LGBTQ+ couples, fathers, adoptive parents, etc.)
- Birthday day off
- Zenklub (psychotherapy – up to 4 sessions per month fully covered by Elo)
- WellHub and TotalPass (network of gyms and studios for sports and wellness activities)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
IAMCIAMSailPointMicrosoft EntraIDOktaMFASSOOAuth 2.0OIDCSAML
Soft skills
collaborationtechnical documentationsecurity policiesincident response
Certifications
PCI-DSSISO 27001NIST