Empleos actuales relacionados con Information Security Analyst - Bogotá - Rainforest Alliance Colombia
-
Information Security Analyst
hace 5 días
Bogotá, Colombia Scotiabank A tiempo completoInformation Security Associate, Privileged Access Management (PAM) Scotiabank’s Information Security & Control (IS&C)’s Global Identity and Access Management group is responsible for development, management and governance of logical access control to the bank’s information systems. Privileged Access Management (PAM) is a unit in the identity and access...
-
Information Security Analyst
hace 1 semana
Bogotá, Distrito Capital, Colombia Scotiabank A tiempo completoRequisition ID: Thanks for your interest in ScotiaTech, Scotiabank's new and innovative Technology hub in Bogota. Join a purpose driven winning team that promotes creativity and innovation in a fast-paced environment, where we’re always committed to results, in an inclusive, diverse, and high-performing culture. Information Security Associate, Privileged...
-
Information Security Analyst
hace 2 horas
Bogotá, Cundinamarca, Colombia Scotiabank A tiempo completoRequisition ID: 232261Thanks for your interest in ScotiaTech, Scotiabank's new and innovative Technology hub in Bogota.Join a purpose driven winning team that promotes creativity and innovation in a fast-paced environment, where we're always committed to results, in an inclusive, diverse, and high-performing culture.Information Security Associate, Privileged...
-
Information Security Analyst
hace 2 semanas
Bogotá, Cundinamarca, Colombia Rainforest Alliance A tiempo completoThe Opportunity: We are seeking an experienced and highly motivated Information Security Analyst to join our security team. This role will be critical in protecting our digital assets, detecting and responding to security incidents, and ensuring the continuous improvement of our security posture. You will work proactively to identify security risks,...
-
Information Security Operations Analyst
hace 1 semana
Bogotá, Colombia Mastercard A tiempo completo**Our Purpose** - Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation,...
-
Information Security Operations Analyst
hace 2 semanas
Bogotá, Bogotá D.E., Colombia Mastercard A tiempo completoOur PurposeMastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships...
-
Senior Information Security Analyst — Azure
hace 2 semanas
Bogotá, Colombia Rainforest Alliance, Incorporated A tiempo completoAn international conservation organization is looking for an experienced Information Security Analyst to enhance its security operations and protect digital assets. The successful candidate will be involved in incident response, security documentation, and vulnerability assessments. Azure security services expertise is crucial. Applicants must have a minimum...
-
Information Security Analyst
hace 2 semanas
Bogotá, Distrito Capital, Colombia Rainforest Alliance A tiempo completoOpportunity We are seeking an experienced and highly motivated Information Security Analyst to join our security team. This role will be critical in protecting our digital assets, detecting and responding to security incidents, and ensuring the continuous improvement of our security posture. You will work proactively to identify security risks, develop and...
-
Information Security Analyst
hace 2 semanas
Bogotá, Colombia Rainforest Alliance, Incorporated A tiempo completoThe Opportunity: We are seeking an experienced and highly motivated Information Security Analyst to join our security team. This role will be critical in protecting our digital assets, detecting and responding to security incidents, and ensuring the continuous improvement of our security posture. Key Responsibilities Security Operations & Incident Response:...
-
Information Security Operations Analyst
hace 2 semanas
Bogotá, Colombia Mastercard A tiempo completoOverview Identity Access Management teams are responsible for end to end providing services to support internal employees and external customers capabilities to retrieve physical and logical access to Mastercard systems and applications. The Employee Identity Access Management Program, within Corporate Security is laser focused on automating access using...
Information Security Analyst
hace 2 semanas
**The Opportunity**:
We are seeking an experienced and highly motivated Information Security Analyst to join our security team.
This role will be critical in protecting our digital assets, detecting and responding to security incidents, and ensuring the continuous improvement of our security posture.
You will work proactively to identify security risks, develop, and implement security frameworks, and ensure the integrity and confidentiality of our IT systems and data.
**Key Responsibilities**:
**Security Operations & Incident Response**:
- Participate in security incident response activities, including investigation, containment, eradication, recovery, and post-incident analysis.
- Monitor security alerts from various sources (SIEM, EDR, cloud logs) and respond to security incidents in a timely manner.
- Develop and maintain security documentation, including procedures, runbooks, and incident response plans.
- Conduct vulnerability assessments and assist in penetration testing remediation efforts.
**Security Awareness & Training**:
- Contribute to the development and delivery of security awareness training for employees, acting as a domain authority for security best practices.
**Collaboration**:
- Through reporting, monitoring and alerting, find opportunities for automation and improvement of RA security posture, including exception handling of threat alerts, patches, system and software vulnerabilities.
**Reporting**:
- Creation of weekly and monthly reporting packs, demonstrating rolling position on vulnerabilities, threats, progress against plan on key security initiatives.
**Risk Management**:
- Conduct risk assessments and participate in security design reviews to ensure appropriate mitigations are in place for new services and system changes (shifting security left).
**Azure Security**:
- Administer and configure Azure security services (e.g., Azure Security Centre/Defender for Cloud, Defender for Endpoint, Azure Network Security Groups, Azure Key Vault, Azure Firewall etc).
- Monitor Azure environments for security threats, vulnerabilities, and misconfigurations.
- Implement and make sure security best practices within Azure IaaS and PaaS deployments, audit Azure resources for compliance.
**Entra ID (Azure AD) Security**:
- Lead and secure Entra ID (Azure Active Directory) including Conditional Access Policies, Multi-Factor Authentication (MFA), Identity Governance, and Privileged Identity Management (PIM).
- Monitor Entra ID for suspicious activity and unauthorised access attempts.
- Implement Zero Trust principles, ensuring least privilege access, secure authentication flows, and continuous risk-based conditional access.
**Microsoft 365 Administration & Security**:
- Secure Microsoft 365 services (Exchange Online, SharePoint Online, OneDrive, Teams, etc.), looking after user access, data governance, and threat protection within the Microsoft 365 ecosystem.
- Configure and optimise Microsoft 365 security features (e.g., Defender for Office 365, Data Loss Prevention (DLP), Microsoft Purview + compliance policies).
**Endpoint Hardening**:
- Develop, implement, and maintain security baselines and hardening standards for endpoints (Windows, macOS, Linux).
- Configure and handle Microsoft Entra Domain Services based Group Policies (GPOs) and equivalent Mobile Device Management (MDM) solutions for security settings.
- Ensure secure configuration and patch management across all endpoints.
- Report on exceptions to relevant Team Managers and ensure mitigation is undertaken, through regular engagement.
**XDR**:
- Administer, configure, and optimise RA’s XDR service, currently Crowdstrike Falcon but planned for migration to Microsoft Defender XDR.
- Monitor alerts and dashboards for endpoint security incidents and threats, perform threat hunting and incident response activities using CrowdStrike data.
- Develop and refine custom detections and response playbooks within CrowdStrike.
**Vulnerability Scanning**:
- Identify and prioritise remediation of CVE-aligned vulnerabilities
- Provide reporting to IT leadership on progress against remediation targets
- Notify IT teams of emerging high/critical vulnerabilities and coordinate remediation planning
- Devise reporting dashboards for senior IT leadership
**Required Qualifications**:
- Minimum of 3 years of hands-on experience in an information security role.
- Proven working experience and deep understanding of Azure security services and best practices.
- Extensive hands-on experience with Entra ID (Azure Active Directory) and Microsoft 365 security administration.
- Demonstrable experience with endpoint hardening methodologies and implementation.
- Hands-on administration and operational experience with CrowdStrike Falcon platform.
- Experience with security incident response and threat hunting.
- Solid understanding of networking concepts.
- Familiarity with security frameworks (e.g., Cyber Essentials, NIST, ISO 27001).
- Excellent a
