We are seeking a Cyber Security Specialist to join our team in Belo Horizonte. This role is hands-on and delivery-focused, responsible for designing, implementing, and operating core cybersecurity capabilities across the organisation.
This is not a junior or analyst role. The successful candidate will have demonstrable experience leading or owning security migrations, standing up security services, and managing cyber risk and incidents end-to-end, often working with third-party vendors and MSSPs.
You will act as a trusted technical authority, partnering with infrastructure, cloud, and operations teams to uplift & maintain our security maturity.
Fluency in both English and Portuguese (written and verbal) is essential for this role.
Responsabilidades e atribuições
Key Responsibilities
Security Operations & SOC
-
Design, implement, and maintain a Security Operations Centre (SOC) model, ideally leveraging third-party / MSSP services
-
Define SOC processes, escalation paths, runbooks, SLAs, and reporting
-
Act as a senior escalation point for security incidents and investigations
Endpoint Security
-
Lead endpoint protection deployments and migrations
-
Strong preference for experience migrating CrowdStrike to Microsoft Defender for Endpoint
-
Define endpoint security policies, onboarding processes, and operational monitoring
Vulnerability Management
-
Own the setup, configuration, and ongoing operation of vulnerability management platforms
-
Hands-on experience with one or more of:
-
Qualys
-
Rapid7
-
Claroty (OT/ICS environments highly regarded)
-
Drive vulnerability remediation programs with IT and infrastructure teams
SIEM & Logging
-
Design and execute SIEM migrations or new deployments
-
Strong preference for experience migrating Microsoft Sentinel to Splunk
-
Define log ingestion strategies, correlation rules, alerting, dashboards, and retention
Network Security & Internet Access
-
Lead internet proxy and secure access migrations
-
Strong preference for experience migrating Zscaler to FortiGate
-
Collaborate with network teams on firewall policies, secure access, and segmentation
Risk, Incident & Breach Management
-
Lead cyber risk assessments, threat modelling, and mitigation planning
-
Own cyber incident management, including coordination, containment, eradication, and lessons learned
-
Lead data breach response, including technical response, documentation, and executive reporting
Training & Awareness
-
Design and deliver cybersecurity training and awareness campaigns
-
Run phishing simulations, awareness initiatives, and targeted training for high-risk roles
Governance & Documentation
-
Maintain security documentation, architectures, runbooks, and incident reports
-
Contribute to security policies aligned with ISO 27001, NIST, and CIS Controls
-
Provide regular security posture and risk reporting to leadership
Required Experience & Skills
Technical Experience (Essential)
-
5+ years hands-on cybersecurity experience in enterprise environments
-
Proven experience leading or owning security deployments and migrations, not just operating tools
-
Strong practical knowledge of:
-
SOC operations
-
Endpoint protection platforms
-
SIEM technologies
-
Vulnerability management
-
Network and perimeter security
-
Process control/Operational Technology environments, ideally at mining organisations
Tooling Experience (Strongly Preferred)
Candidates should have real-world experience with several of the following:
-
Microsoft Defender for Endpoint
-
CrowdStrike
-
Splunk
-
Microsoft Sentinel
-
Qualys
-
Rapid7
-
Claroty
-
Zscaler
-
FortiGate / Fortinet security stack
Soft Skills
-
Confident working independently with minimal supervision
-
Able to translate technical risk into business impact
-
Comfortable engaging with vendors, MSSPs, and senior stakeholders
-
Calm, structured approach during security incidents
Language
-
Fluent English and Portuguese (written and verbal) – mandatory
Certifications (Preferred, Not Mandatory)
-
CISSP
-
CISM
-
GIAC (GCED, GCIA, GCIH)
-
Microsoft Security certifications
-
Fortinet certifications
Requisitos e qualificações
Informações adicionais
Aqui somos #SangueLaranja!
Estamos há 17 anos no mercado, lado a lado com nossos clientes, proporcionando experiências transformadoras.
Somos um ecossistema de tecnologia e inovação, com expansão global; Além do Brasil estamos presentes na Europa e Reino Unido com escritórios em Portugal, Londres, Dubai e Holanda.
F de Formação: acreditamos na prática da cultura do compartilhamento, no senso de comunidade, e que o conhecimento
tem o poder da transformação!
Possuímos iniciativas, e ações sociais, que promovem o desenvolvimento, como a comunidade tech Orange Juice, o Programa de Formação,
nossa escola de liderança e diversas parcerias com ONGs e Edtechs.
Na FCamara todos são bem-vindos, para nós, Diversidade, Respeito e Ética, são elementos inegociáveis e fazem parte do nosso DNA.
E aí, está pronto para fazer parte de um time incrível e ser protagonista da própria história?
