Cybersecurity Solutions Engineer M/F

Cybersecurity Solutions Engineer M/F

YOUR MISSIONS

The Cybersecurity Solutions Engineer is responsible for the administration, optimization, and continuous improvement of security technologies, while also serving as a Tier 3 escalation point for complex security incidents. This role bridges advanced incident response with hands-on engineering of cybersecurity tools, ensuring seamless integration, effective threat detection, and rapid response capabilities. Acting as an extension of external Tier 1 and Tier 2 security operations, the engineer plays a critical role in enhancing the organization’s overall security posture through proactive monitoring, tool fine-tuning, and strategic incident handling.

Security Tools Administration

• Administer and optimize security tools, including SIEM, EDR/XDR (Microsoft Defender), firewalls, vulnerability management, email and identity security solutions.
• Ensure seamless integration of security tools with IT and cloud environments for continuous monitoring and threat detection.
• Maintain security policies, configurations, and automation rules to improve operational efficiency and reduce false positives.
• Manage log sources, data ingestion pipelines, and correlation rules within SIEM to enhance security visibility.

Security Operations & Incident Response

• Act as a Tier 3 escalation point for security incidents requiring advanced investigation and resolution.
• Conduct deep-dive forensic analysis and threat-hunting activities to detect and mitigate sophisticated threats.
• Support the SOC team and external Tier 1 & Tier 2 analysts by providing expertise on complex security incidents.
• Enhance and refine incident response playbooks, ensuring effective collaboration across all security layers.
• Align incident response efforts with cybersecurity frameworks such as MITRE ATT&CK, NIST CSF, and ISO 27001.

Threat Intelligence & Vulnerability Management

• Analyze threat intelligence feeds and proactively adjust defenses based on evolving attack techniques.
• Coordinate vulnerability assessments, collaborate with IT teams, and track remediation efforts to mitigate risks.
• Perform proactive threat-hunting activities to identify potential security gaps before they are exploited.
• Ensure compliance with patch management policies and security best practices.

QUALIFICATIONS & EXPERIENCES

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• At least 3 years of experience in security tools administration, incident response, or security operations.
• Experience in listed companies, large-scale enterprises, or multi-geographical organizations is a plus.
• Deep knowledge of Microsoft Security solutions.
• Hands-on experience with SIEM, EDR/XDR, firewalls, and security automation tools.
• Proficiency in threat intelligence, forensic analysis, and malware analysis.
• Strong understanding of network security, log analysis, and cloud security.
• Experience with vulnerability management solutions.
• CISSP, GCIA, GCIH, Microsoft Certified: Security Operations Analyst, or equivalent.
• Proficiency both in Portuguese & English languages.
• Availability to travel internationally

KEY SKILLS

• Problem-Solving and organizational skills.
• Strong ability to explain technical issues to both technical and non-technical stakeholders.
• Experience working cross-functionally with IT, cloud, and development teams, as well as external security partners.
• Attention to Detail.
• Resilient.
• Willingness to stay current with evolving cybersecurity threats and technologies.
• Ability to manage multiple security incidents and projects simultaneously.

If this opportunity excites you, apply now!