Information Security Analyst

Information Security Recife, Brazil

About Liferay

Liferay, Inc. is a uniquely profitable B2B enterprise software company with 1,000  fiery-eyed employees all across Europe, the Americas, Middle East, and Asia. As the leading provider of enterprise open source technologies, we have been recognized by Gartner for empowering businesses around the world to solve complex digital challenges.  Our flagship product is the Liferay Digital Experience Platform, which companies like HP, Domino’s, and Airbus use to build customized experiences for their customers and employees.  But we don’t just make awesome software, we are also fueled by a greater-than-profit vision. By building a vibrant business, making technology useful, and investing in communities, we make it possible for people to reach their full potential to serve others. We give our employees five days paid off to volunteer at charities they’re excited about, and Liferay donates 10% of our profits to charities around the world. Oh, we’re also self-funded which gives us the freedom to work on whatever we think brings the most value to customers and communities in the long run!
About You and this Role
You’re excited about the chance to help build out the Information Security team. You thrive on understanding the tactics, techniques, and strategies of attackers. You love to detect, monitor, and alert all those around when you find attackers. You love information security and seek to protect others.

In this role you will be the active protection against hackers, work closely in a global SOC team to prevent and act on security incidents.

Main Responsibilities

  • Perform analysis of security exploits, threats, and vulnerabilities providing remediation activities
  • Support the resolution of information security issues
  • Performs incident response procedures using information gathered from a variety of sources
  • Performs incident triage to include determining scope, urgency, and potential impact
  • Performs incident response to identify the specific vulnerability
    Evaluate new security technology and trends, and then makes recommendations to strengthen our information security environment
  • Research current industry practices and standards to improve information security

Required Qualifications

  • Bachelor’s Degree or equivalent from four year college or university in a STEM focused area or equivalent in a related field, or commensurate experience
  • Beginning knowledge of software development and information technology operations (DevOps)
  • Familiar with the Incident Response procedures and implementations
  • Exceptional attention to detail and organization
  • Ability to comprehend, analyze and interpret complex documents
  • Possesses strong communication and problem solving skills
  • Strong English communication skill. Your day to day work will be working along with teams outside Brazil. The interview process will be also in English

Optional BUT highly desired Certifications and field knowledge

  • Relevant experience with information security, control standards, and frameworks such as ISO27001, SOC 1/2, GDPR and/or HIPPA
  • Certification(s) in information security or cybersecurity field
  • Knowledge of industry regulations, risk management methodologies, operations or auditing
  • Mentor and encourage the growth of other team members
  • Experience with cloud environments and containerization
Awesome, but what does Liferay offer for me?
  • Salary package w/ competitive benefits according to qualifications and experience;
  • Attractive benefits;
  • A place to be yourself, in which everyone can grow personally and professionally;
  • Flexible schedule;
  • A positive and collaborative work culture
  • Work in a fast-growing, successful company with incredible mission and values: https://www.liferay.com/company/our-story


Equal Opportunities Employer - Statement

Liferay is committed to the equal treatment of all candidates, customers and employees and to fostering a culture of dignity at work. Our operating procedure provides for equal opportunities in recruitment and employment with the aim to eliminate discrimination against any job applicant or employee on the basis of race, age, sexual orientation, gender or gender reassignment, religion or beliefs, marital or civil partnerships status, family or dependency status, disability, pregnancy and maternity or membership of a traveling community.