Senior Cyber Security Analyst SR - Blue Team

EBANX is a global fintech founded in 2012 with a mission to be the leading payments partner in rising markets. With its own technology and infrastructure, combined with in-depth knowledge of the Latin American market, EBANX allows these companies to connect to hundreds of payment methods in different countries in the region. And it goes further, creating results for businesses and simple shopping experiences for consumers.

From the beginning of our journey, we have an important mission: to give access. And this is not just about our products and services, but it goes through everything we are and do. We believe that it is only possible to innovate with diversity, so we cherish differences in gender, race, nationality, disability, sexual orientation, religion and age. Plurality is what makes our Big Dream possible.

We are called ebankers and we are changing the way people buy, connect, and live globally. Let's make history together?

We are looking for an Cybersecurity Analyst SR focused on Blue Team techniques to join a high-growth technology and payments company with a solid track record of delivering high value to our customers.

To be a successful Blue Team analyst at EBANX, you must possess a deep understanding of information security with a focus on security protection, incident response and vulnerability management. They must understand basic concepts such as network, application and operating system functionality and be able to learn advanced concepts such as offensive security, application manipulation, exploit development and stealth operations.

The Cyber ​​​​Security team is responsible for all initiatives related to the technological aspect of information security. We are not here to deny the demands of the business areas, but to guide a safe path. We also follow the standards considered in ISO27000 and PCI DSS.

You will also be responsible for:

• Protect any and all information against threats in order to reduce damage to the business, through a set of services, controls, policies and procedures. Acting in risk management and monitoring the environment to detect and mitigate possible anomalies and malicious actions that could compromise business continuity.
• Will support the operation that manages restriction security tools
• Will act in the analysis of cases of security incidents (malware, alerts, blocks, violations);
• It will support the execution of internal/external IS audits;
• Will support the dissemination of best security practices
• It will support the construction of performance indicators and adherence to IS processes;
• Research new Information Security solutions to make the EBANX environment more robust against cyber threats;
• Monitor the implementation of new projects ensuring compliance with ISO27001 standards and IS best practices.
• Controlling the application of patches for internal and external EBANX products as well as managing security updates
• Malware analysis and malware reverse engineering to extract indicators of compromise to be used to support testing and hunting activities.
• Developer of comprehensive and accurate reports and presentations for technical and executive audiences
• Effectively communicate findings and strategies to EBANX stakeholders, including technical staff, executive leadership and legal counsel

Main requirements for this position:

• Professional level understanding of TCP/IP fundamentals, network protocols, system administration and network architectures.
• Experience with security services and tools (Firewall, VPN, WAF, Proxy, AV, SIEM, IPS, DLP, IAM, Password Vault)
• Knowledge of networks, cloud and current legislation regarding information security.
• Experience in Network Hardening, Operating Systems, Services and Applications;
• Knowledge of operating systems (Windows, Unix/Linux);
• Experience in Cloud Computing environments – AWS, Azure, Google;
• Experience in some of the tools, such as Firewall, IPS, AntiSpam, Encryption, DLP, Vulnerability Management, Antivirus, IAM.
• Knowledge in network protocols;
• Knowledge of ISO 27001, ISO 27002 security standards and good practices of frameworks such as SANS, NIST and OWASP;

What else would we like to see? 

• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Fluency in English and Spanish, we have customers from all around the world and it is commonplace for us to speak and write English and Spanish when helping, supporting, and writing specifications with them.
• Deep knowledge of information security and privacy frameworks, like ISO/IEC 27000 series, and NIST Privacy Framework.
• Experience working in a global team.
• Security certifications (OSCP, CEH, Security+, AWS/Azure certifications). 

EBANX offers:

• A challenging environment, with opportunities to grow;
• Casual office and flexible dress code;
• Spanish, English and Portuguese classes;
• WAVES - Program of goals and results (variable compensation);
• EBANX Play - Wellness (Gympass, e-Sports, SESC );
• Semi flexible hours (8 hours a day - Monday to Friday);
• Meal Allowance;
• Transportation voucher (if needed);
• EBANX Education: scholarship;
• EBANX Skills: budget for workshops and courses;
• EBANX Flexible: monthly Day Off from February to November, birthday Day Off and Rest up Month - one month of paid leave every three years of work anniversary.
• EBANX Family: Daycare assistance, extended leave for caregivers and support program for children and pregnant women;
• EBANX Health: Health and Dental Insurance, with subsidy for dependents, and medicine subsidy for ebankers;
• Life Insurance: Life Insurance 100% paid by EBANX
• Hello ebanker: psychology, finance and legal orientation.
• Blue Club: Exclusive discount for ebankers in bakeries, restaurants, courses, electronics store and more!

Follow us on LinkedIn and check out our Instagram to learn more about the #ebanxlife.