Cyber Specialist

We are seeking a Cyber Security Specialist to join our team in Belo Horizonte. This role is hands-on and delivery-focused, responsible for designing, implementing, and operating core cybersecurity capabilities across the organisation.

This is not a junior or analyst role. The successful candidate will have demonstrable experience leading or owning security migrations, standing up security services, and managing cyber risk and incidents end-to-end, often working with third-party vendors and MSSPs.

You will act as a trusted technical authority, partnering with infrastructure, cloud, and operations teams to uplift & maintain our security maturity.

Fluency in both English and Portuguese (written and verbal) is essential for this role.

Key Responsibilities

Security Operations & SOC

• Design, implement, and maintain a Security Operations Centre (SOC) model, ideally leveraging third-party / MSSP services
• Define SOC processes, escalation paths, runbooks, SLAs, and reporting
• Act as a senior escalation point for security incidents and investigations

Endpoint Security

• Lead endpoint protection deployments and migrations
• Strong preference for experience migrating CrowdStrike to Microsoft Defender for Endpoint
• Define endpoint security policies, onboarding processes, and operational monitoring

Vulnerability Management

• Own the setup, configuration, and ongoing operation of vulnerability management platforms
• Hands-on experience with one or more of:
• Qualys
• Rapid7
• Claroty (OT/ICS environments highly regarded)
• Drive vulnerability remediation programs with IT and infrastructure teams

SIEM & Logging

• Design and execute SIEM migrations or new deployments
• Strong preference for experience migrating Microsoft Sentinel to Splunk
• Define log ingestion strategies, correlation rules, alerting, dashboards, and retention

Network Security & Internet Access

• Lead internet proxy and secure access migrations
• Strong preference for experience migrating Zscaler to FortiGate
• Collaborate with network teams on firewall policies, secure access, and segmentation

Risk, Incident & Breach Management

• Lead cyber risk assessments, threat modelling, and mitigation planning
• Own cyber incident management, including coordination, containment, eradication, and lessons learned
• Lead data breach response, including technical response, documentation, and executive reporting

Training & Awareness

• Design and deliver cybersecurity training and awareness campaigns
• Run phishing simulations, awareness initiatives, and targeted training for high-risk roles

Governance & Documentation

• Maintain security documentation, architectures, runbooks, and incident reports
• Contribute to security policies aligned with ISO 27001, NIST, and CIS Controls
• Provide regular security posture and risk reporting to leadership

Required Experience & Skills

Technical Experience (Essential)

• 5+ years hands-on cybersecurity experience in enterprise environments
• Proven experience leading or owning security deployments and migrations, not just operating tools
• Strong practical knowledge of:
• SOC operations
• Endpoint protection platforms
• SIEM technologies
• Vulnerability management
• Network and perimeter security
• Process control/Operational Technology environments, ideally at mining organisations

Tooling Experience (Strongly Preferred)

Candidates should have real-world experience with several of the following:

• Microsoft Defender for Endpoint
• CrowdStrike
• Splunk
• Microsoft Sentinel
• Qualys
• Rapid7
• Claroty
• Zscaler
• FortiGate / Fortinet security stack

Soft Skills

• Confident working independently with minimal supervision
• Able to translate technical risk into business impact
• Comfortable engaging with vendors, MSSPs, and senior stakeholders
• Calm, structured approach during security incidents

Language

• Fluent English and Portuguese (written and verbal) – mandatory

Certifications (Preferred, Not Mandatory)

• CISSP
• CISM
• GIAC (GCED, GCIA, GCIH)
• Microsoft Security certifications
• Fortinet certifications

Aqui somos #SangueLaranja!

Estamos há 17 anos no mercado, lado a lado com nossos clientes, proporcionando experiências transformadoras.

Somos um ecossistema de tecnologia e inovação, com expansão global; Além do Brasil estamos presentes na Europa e Reino Unido com escritórios em Portugal, Londres, Dubai e Holanda.

F de Formação: acreditamos na prática da cultura do compartilhamento, no senso de comunidade, e que o conhecimento

tem o poder da transformação!

Possuímos iniciativas, e ações sociais, que promovem o desenvolvimento, como a comunidade tech Orange Juice, o Programa de Formação,

nossa escola de liderança e diversas parcerias com ONGs e Edtechs.

Na FCamara todos são bem-vindos, para nós, Diversidade, Respeito e Ética, são elementos inegociáveis e fazem parte do nosso DNA.

E aí, está pronto para fazer parte de um time incrível e ser protagonista da própria história?