Security Engineer
Job Description:
Syffer is an all-inclusive consulting company focused on talent, tech and innovation. We exist to elevate companies and humans all around the world, making change, from the inside to the outside.
We believe that technology + human kindness positively impacts every community around the world. Our approach is simple, we see a world without boarders, and believe in equal opportunities. We are guided by our core principles of spreading positivity, good energy and promote equality and care for others.
Our hiring process is unique! People are selected by their value, education, talent and personality. We dont present ethnicity, religion, national origin, age, gender, sexual orientation or identity.
Its time to burst the bubble, and we will do it together!
We are looking for a professional to join a client team
Who you are:
- You have a strong understanding of cybersecurity principles and practices;
- You have experience with tools and techniques to protect sensitive information, you are proficient in using and managing firewalls, web application firewalls (WAF), and endpoint protection solutions.
- You have knowledge of ISO 27001 standards and best practices, with experience in implementing and maintaining information security management systems in compliance with this standard;
- You have knowledge and experience in managing User Behavior Analysis (UBA) and Network Behavior Analysis (NBA) tools, with the ability to identify and mitigate anomalous behaviors that may indicate security threats;
- You possess practical experience using attack tools such as Mimikatz;
- You hold a Bachelors degree or equivalent in Network Computing or Cybersecurity, providing a solid educational foundation to support the necessary technical and theoretical capabilities for the role;
- High capacity to define and structure the company's Information Security Policy.Ability to define and implement policies for the collection, storage, and processing of logs in complex application environments;
- Configure and maintain firewalls, web application firewalls (WAF) and endpoint protection solutions to ensure they are up to date and functioning correctly to protect the network from threats;
- Implement and maintain information security management systems in accordance with ISO 27001 standards, carry out internal audits and prepare the organization for external audits;
- Implement and manage UBA and NBA tools to monitor user and network behavior, analyze the data collected to identify suspicious patterns and mitigate potential threats;
- Use attack tools such as Mimikatz to carry out penetration tests, assess network vulnerabilities and develop strategies to strengthen security based on the test results;
- Monitor and respond to security incidents in real time, coordinating mitigation and recovery actions to minimize the impac;
- Knowledge of CI/CD (Continuous Integration/Continuous Deployment) application development processes.
What you'll do:
- Configure and maintain firewalls, web application firewalls (WAF), and endpoint protection solutions to ensure they are up-to-date an;d functioning correctly to protect the network against threat;
- Implement and maintain information security anagement systems according to ISO 27001 standards, conduct internal audits, and prepare the organization for external audits;
- Implement and manage UBA and NBA tools to monitor user and network behavior, analyze collected data to identify suspicious patterns, and mitigate potential threats;
- Use attack tools such as Mimikatz to conduct penetration tests, assess network vulnerabilities, and develop strategies to strengthen security based on test results;
- Monitor and respond to security incidents in real-time, coordinating mitigation and recovery actions to minimize the impact of incidents;
- Develop and conduct security training and awareness programs for employees;
- Document security policies, procedures, and incidents, and generate regular reports on the state of information security and incidents that occurred.
- Work in a hybrid regime.
What youll get;
An inspiring work environment
Allocation of health insurance from the beginning of the employment ;
Delivery of work equipment adjusted to the performance of functions;
Implementation of a hybrid work regime whenever possible;
Payment of the food allowance in meal card (exempt from legal discounts); And others Work together with expert teams on projects of large magnitude and intensity, long term together with our clients, all leaders in their industries.
Are you ready to step into a diverse and inclusive world with us ?
Together we will promote uniquess!
Required Skills:
Mitigation Information Security Religion Network Security Firewalls Protection Hiring Energy Consulting Insurance Security Education Training Management