Hitss Brasil

Senior Information Security Analyst

Hitss Brasil

full-time

Posted on:

Location Type: Hybrid

Location: São PauloBrazil

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

Linux

About the role

  • Perform penetration tests on IT infrastructure, including networks, operating systems, servers and network devices, as well as web and mobile applications;
  • Execute penetration testing phases in accordance with established best practices, processes and methodologies;
  • Identify and exploit security vulnerabilities in systems, networks and applications using manual techniques and automated tools;
  • Prepare and present detailed penetration testing reports.

Requirements

  • Bachelor's degree in Cyber Defense, Computer Science, Information Systems or a related field;
  • Basic English proficiency;
  • Strong experience in offensive security projects (penetration testing);
  • Experience using methodologies such as OWASP, OSSTMM, NIST, PTES, among others;
  • Experience creating testing methods to identify and exploit vulnerabilities;
  • Experience finding security flaws in software (web applications and proprietary and open-source systems);
  • Experience documenting test results and discussing findings with internal and external teams;
  • Experience providing recommendations for vulnerability remediation;
  • Experience preparing and presenting detailed penetration testing reports;
  • Familiarity with tools such as proxies, port scanners, vulnerability scanners, exploit frameworks, Burp Suite, Nessus, Nmap, Metasploit;
  • Knowledge of computer networks (protocols);
  • Knowledge of operating system architecture (Windows and Linux);
  • Certifications such as CompTIA Security+, CompTIA PenTest+, EC-Council CEH, Desec.
Benefits
  • Gender and race/ethnicity equity
  • Positions eligible for professionals with disabilities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
penetration testingoffensive securityvulnerability assessmentsecurity flaw identificationtest result documentationvulnerability remediationweb application securitynetwork securityoperating system architecturemethodologies
Soft Skills
communicationpresentationteam collaboration
Certifications
CompTIA Security+CompTIA PenTest+EC-Council CEHDesec