Junior Cybersecurity

Sonae Arauco
03, December 2025
Cibersegurança
Tempo inteiro

Descrição do trabalho

To reinforce Sonae Arauco's current Cyber Security team, we are recruiting a Junior Cyber Security Analyst with the following profile :

Responsibilities

Analyze and investigate alerts escalated by the SOC : triage, validation, and classification of incidents; determine impact and scope.

Correlate events and perform investigations using platforms such as Microsoft Security, EDR / XDR (e.g., CrowdStrike), and network / endpoint logs.

Support incident response activities : evidence collection, data preservation, and basic forensic analysis (memory, logs, traffic).

Assist in the tuning and maintenance of detection rules in SIEM, EDR, and IDS / IPS; propose improvements to reduce false positives.

Collaborate on the development and update of incident response playbooks; implement simple automations.

Produce technical investigation reports and status dashboards; prepare communications for stakeholders when required.

Participate in post-incident reviews, identifying root causes, mitigation measures, and lessons learned.

Work closely with OT / IT teams to ensure that security measures are suitable for industrial environments (network segmentation, IoT / OT asset control).

Contribute to the continuous strengthening of the SOC (documentation, detection testing, simulation exercises).

Profile

Bachelor's degree in Cybersecurity, Computer Engineering, Networks, or equivalent areas; or relevant hands-on experience in SOC / security engineering.

Proven experience (1–3 years) in Cyber Security teams, preferably in incident response, security monitoring, or security engineering.

Knowledge of vulnerability management and patching processes.

Familiarity with EDR / XDR tools (e.g., CrowdStrike), SIEM solutions (e.g., Microsoft Sentinel), and detection frameworks (MITRE ATT&CK).

Solid understanding of networks, protocols, and log analysis.

Basic scripting skills (Python, PowerShell, Bash) for task automation.

Experience with rule tuning and integration of security solutions.

Experience with cloud environments (Azure, AWS) – valued.

Proficiency in English (spoken and written) is essential for technical communication and collaboration with global teams.

Valued certifications : CompTIA Security+, CySA+, GCIH, GCIA, Azure Security Engineer (not mandatory).

Experience in industrial environments (OT / IoT) or with MSSPs – valued.

Analytical, communicative, and proactive profile, with the ability to work under pressure and as part of a team.

Voltar para homepage