SOC Analyst - Remote

Overview

This position is for the SOC area, which is responsible for detecting, responding to, filtering, and investigating security incidents. This is a team passionate about incident investigation, and you can excel if you enjoy delving deep into understanding cases related to Information Security.

In Short

• Work with the SOC team, responsible for SIEM operations, mainly related to Splunk Enterprise.
• Create use cases based on frameworks such as Splunk, NIST, and Mitre Attack.
• Develop integrations with various existing technologies for sustainable and agile growth.
• Propose and implement correlation rules for service detection and protection.
• Participate in project discussions interfacing with various areas of the company.
• Monitor and act effectively during crises and incidents.
• Utilize security experience and intuition to identify threats in corporate and production environments.
• Develop creative solutions for complex security problems balancing business needs and risks.
• Participate in audits to present controls and seek evidence for auditors.

Requirements

• Bachelor's degree in Information Security, Computer Science, Information Systems, Software Engineering, or related fields.
• Experience with implementation and development of integrations with Splunk Enterprise.
• Active participation in the implementation and maintenance of SOC/SIEM tools.
• Advanced SPL (Search Processing Language) programming skills.
• Experience with Linux command line, security monitoring, log analysis, and forensic tools.
• Knowledge of at least one of the following programming languages: Ruby, Python, Perl, Go, Groovy, Bash.
• Experience with event systems of Windows and Linux operating systems.
• Intermediate English.
• Experience in information security, conducting security assessments.
• Ability to work with a high degree of autonomy.
• Passion for learning and thriving in a dynamic and constantly changing environment.
• Practical knowledge of risk and security frameworks, standards, and best practices (Mitre, NIST, SANS CIS Critical Security Controls).
• Demonstrable knowledge of common attack vectors.
• Ability to work within multidisciplinary teams with agile methodology.

Benefits

• Health and wellness: health plan, dental plan, Gympass, Zenklub, meal allowance, transportation allowance, life insurance.
• Parental leave: daycare assistance for parents, maternity leave of 6 months, paternity leave of 20 days.
• Exclusive investment advisory and access to exclusive investment funds.
• Flexible working hours.
• Work model varies according to the function: in-person for business fronts and hybrid for other teams.