Where you will work: Brazil or Guatemala/ Remote

We are looking for an experienced, Information Security Analyst to join our team. Analyst is responsible for monitoring, assessing, and remediating cybersecurity events to secure and protect proprietary, personal, and privileged electronic data. Utilize cybersecurity tools used to monitor and detect attacks and vulnerabilities in the GoTo network. Monitor SIEM alerts for evidence of compromise and report security incidents. Analyze/assess security incidents in the network to recommend solutions and best practices.

Your Day to Day:

• Identify security issues and risks associated with security events and manage the incident response process.

• Participate in the incident response and investigation process for identified security events.

• Support and implement new security initiatives within the cloud environment as the threat landscape changes.

• Periodic security assessments and configuration review of cloud environment.

• Understanding of the tactics, techniques and procedures of advanced attackers, to hunt for signs of APT activities.

• Direct and influence multi-disciplinary teams in implementing and operating cloud security controls.

• Sourcing and tracking of public vulnerability disclosure sources to assess the impact in our network/products and prioritize the patching efforts.

• Maintain and update the security operational workflow.

What We’re Looking for :

• 2 – 5 years of relevant experience in the Information Security domain.

• Solid foundation in networking fundamentals, with a deep understanding of TCP/IP and other core protocols.

• Experience in enterprise intrusion analysis, SIEM, and incident response.

• Understanding of Windows and Linux operating systems, and command-line tools.

• Identify security issues and risks associated with security events and manage the incident response process.

• The ability to analyze logs from various security devices and web servers.

• Experience doing packet captures and interpreting them (e.g., tcpdump, Wireshark).

• Familiarity with network architecture and security infrastructure placement.

• Knowledge of attack vectors, threat tactics, kill chain, Mitre framework and attacker techniques is a plus.

• Experience with Cloud incident response is a plus (e.g., AWS, Azure).

• Interpersonal skills sufficient to work with both technical and non-technical personnel at various levels in the organization.

• Ability to elicit and communicate technical and non-technical information clearly and concisely.

• An open mind, willingness to be challenged, and strong desire to learn.

• Should be flexible to work during different shifts and possibly weekends.

**Language requirements

Fluency in English is required for this position in order to communicate with colleagues, customers and partners globally.

You’ll be working towards a shared goal with an open-minded and cohesive team that is very much the sum of its parts. At GoTo, we’re passionate about growing a diverse and inclusive work ecosystem because unique takes make us a stronger company, and Stronger Together. We’re committed to creating an inclusive space for everyone, no matter what. That’s how we’ll Be Real, Think Big, Move Fast, and Keep Growing along the way. Learn more