Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
C

Senior Cybersecurity Analyst – Cyber Defense

Cruzeiro do Sul Educacional S/A

Cybersecurity Analyst responsible for monitoring, detecting, and responding to security incidents at Cruzeiro do Sul Educacional. Engaging in various security practices and frameworks to safeguard information.

Posted 7/15/2026full-timeRemote • 🇧🇷 BrazilSeniorWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in cybersecurity incident response, threat detection, and vulnerability management, with proficiency in security frameworks and tools. Capable of leading proactive threat hunting and incident response initiatives while ensuring compliance with industry standards.

Highest-signal resume keywords
Incident Response ManagementThreat Detection and AnalysisSIEM ExperienceVulnerability ManagementCybersecurity Frameworks Knowledge

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Cybersecurity Incident ResponseThreat HuntingVulnerability ManagementTCP/IP NetworkingMalware AnalysisDigital ForensicsScripting (Python, Shell)Security HardeningLog AnalysisRoot Cause Analysis
Soft Skills
CollaborationCommunicationAnalytical ThinkingProblem SolvingLeadership
Tools & Technologies
SIEM SolutionsEDR/XDR ToolsFirewallsIDS/IPSWAFAWS Security ServicesGCP Security ToolsAzure Security SolutionsTraffic Analysis ToolsSOAR Platforms
Certifications & Qualifications
CompTIA Security+CySA+CEHGMON
Industry Keywords
MITRE ATT&CKNIST CSFCIS ControlsISO 27001/27002Cyber Kill ChainZero Trust ArchitectureLGPD

Tech Stack

Tools & technologies
AWSAzureCloudDNSGoogle Cloud PlatformLinuxPythonSplunkTCP/IP

About the role

Key responsibilities & impact
  • Execute and improve monitoring, detection, and response activities for cybersecurity incidents.
  • Continuously monitor networks, endpoints, applications, and critical assets, identifying anomalies and threats to information security.
  • Detect and analyze attack attempts, suspicious behavior, exploitable vulnerabilities, malicious actions, and data leakage events.
  • Triage, classify, and escalate security alerts according to criticality and business impact.
  • Lead and support incident response processes from initial identification through containment, eradication, and recovery.
  • Participate in cyber exercises, red/blue team simulations, and Capture the Flag (CTF) events with internal teams and external partners.
  • Prepare technical and executive post-incident (post-mortem) reports, including root cause analysis and remediation recommendations.
  • Perform proactive threat hunting based on hypotheses and threat intelligence (CTI/OSINT) to anticipate attack vectors before they materialize.
  • Work with CTI and OSINT platforms and security ecosystem partners to collect and analyze indicators of compromise (IOCs).
  • Monitor trends in cyber threats, critical vulnerabilities (CVEs), and TTPs mapped to the MITRE ATT&CK framework.
  • Operate, configure, and maintain security solutions: SIEM, EDR/XDR, Firewalls, WAF, IDS/IPS, and Proxy.
  • Contribute to the creation and tuning of detection rules, correlations, and alerts to reduce false positives under technical supervision.
  • Perform cyber hygiene activities: configuration checks, patching/updates, and hardening of systems and services.
  • Develop and review documentation, playbooks, runbooks, operational procedures, and cybersecurity standards.
  • Support continuous improvement initiatives for the security program, promoting the evolution of SOC and CSIRT maturity.

Requirements

What you’ll need
  • Knowledge of key frameworks: MITRE ATT&CK, NIST CSF, CIS Controls, ISO 27001/27002, and the Cyber Kill Chain.
  • Familiarity with vulnerability management and incident response processes.
  • SIEM (primary): hands-on experience with at least one market solution (Google SecOps, Splunk, Microsoft Sentinel, IBM QRadar, Elastic SIEM, or similar).
  • EDR / XDR: experience with SentinelOne, Microsoft Defender, Cortex XDR (Palo Alto), and Bitdefender Endpoint Protector.
  • Perimeter security: Fortinet firewalls, NGFW, F5 Big-IP WAF, IDS/IPS, Proxy, Zero Trust architectures, and CDNs (AKAMAI).
  • SOAR: experience with automating playbooks and orchestration of incident responses.
  • Strong knowledge of TCP/IP networks, protocols (DNS, HTTP/S, SMB, LDAP, etc.), traffic analysis tools (Wireshark, tcpdump), and environment segmentation.
  • Experience securing Windows and Linux operating systems, including hardening and log analysis.
  • AWS: familiarity with security services such as AWS Security Hub, Amazon GuardDuty, AWS IAM, AWS CloudTrail, and Amazon Inspector.
  • GCP: experience with security architecture, Cloud Armor, Security Command Center, IAM, and access policy management.
  • Azure: knowledge of Microsoft Defender for Cloud, Sentinel, and identity controls (Entra ID / MFA).
  • Desired: Python or Shell scripting for task automation and detection support scripts.
  • Desired: Basic knowledge of malware analysis and digital forensics.
  • Desired: Knowledge of LGPD (Brazilian General Data Protection Law) in the context of incidents affecting personal data.
  • Education: Bachelor's degree in Cybersecurity / Information Security or a Technology degree with a specialization in Security.
  • Certifications: CompTIA, CySA+, CompTIA Security+, CEH, GMON, or other relevant certifications are a plus.

Benefits

Comp & perks
  • Medical and Dental coverage.
  • Meal allowance (Meal voucher).
  • Total Pass (commuting benefit).
  • Full scholarship for undergraduate or postgraduate studies.
  • Life insurance.
  • Birthday day off.