Senior Security Analyst - SOC/CTI

<p>EBANX is one of the most successful fintechs to emerge from Latin America — and today, we are building a truly global payments company. Our mission has remained constant from day one: to unlock access and enable companies and consumers to participate in the digital economy, no matter where they are.<br><br>What started as a bold vision has grown into a platform that connects some of the world’s largest digital businesses with customers across 21 of the fastest-growing markets. We operate where complexity exists — turning local challenges into global opportunities, and building the infrastructure that allows payments to move further, faster, and smarter.<br><br>We are a team of builders and problem-solvers. We think globally, act with curiosity, and believe diversity of thought is a competitive advantage.</p> <p>As EBANX enters its next phase of hyper growth, we are looking for people who want to shape the future of payments, expand what’s possible, and help connect businesses and consumers across borders.<br>Let’s build what’s next — together.</p> <p>At EBANX’s IT team you don’t just manage systems and infrastructure. You ensure that our technology, which connects millions of people to global companies, runs flawlessly every day. Here, every solution you create has a direct impact on the revolution of digital payments, making our work truly <strong>Out Of The Ordinary</strong>.</p> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]"><strong>Mission</strong></p> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]">As a Senior SOC &amp; CTI Analyst, your mission is to proactively detect, investigate, and neutralize threats targeting EBANX's payment infrastructure, digital assets, and customer data. You will be at the intersection of real-time security operations and strategic threat intelligence, translating adversary knowledge into actionable defenses that protect EBANX's operations, reputation, and financial performance. By leading threat hunting initiatives, enriching detection capabilities with intelligence, and driving the maturity of SOC processes, you will help EBANX stay ahead of the evolving threat landscape while scaling securely.</p> <hr class="border-border-200 border-t-0.5 my-3 mx-1.5"> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]"><strong>What your day-to-day will look like</strong></p> <ul class="[li_&amp;]:mb-0 [li_&amp;]:mt-1 [li_&amp;]:gap-1 [&amp;:not(:last-child)_ul]:pb-1 [&amp;:not(:last-child)_ol]:pb-1 list-disc flex flex-col gap-1 pl-8 mb-3"> <li class="font-claude-response-body whitespace-normal break-words pl-2">Leading threat detection and incident response operations — monitoring, triaging, and investigating alerts across SIEM, EDR/XDR, and cloud-native security tools, managing incidents end-to-end to minimize operational and financial impact, and conducting forensic analysis on compromised assets;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Producing and operationalizing Cyber Threat Intelligence — collecting, analyzing, and disseminating finished intelligence on threat actors, TTPs, malware families, and campaigns targeting the fintech and payments sector, with a strong focus on MITRE ATT&amp;CK mapping and adversary profiling;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Leading proactive threat hunting initiatives — hypothesizing and investigating potential compromises across on-premises and cloud environments (AWS, Azure) before alerts fire, using intelligence-driven hypotheses and behavioral analytics;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Managing and enriching detection engineering — developing and tuning detection rules, correlation logic, and threat models based on intelligence findings and gap analysis, reducing dwell time and false positive rates;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Monitoring vulnerabilities with an intelligence lens — contextualizing CVEs and emerging threats against EBANX's attack surface, prioritizing remediation based on active exploitation evidence, and coordinating with IT and development teams;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Supporting compliance and security audits — ensuring alignment with PCI-DSS, ISO 27001, LGPD, and other applicable frameworks, collaborating with risk, legal, and compliance teams on evidence and control validation;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Producing intelligence and executive-level reporting — delivering tactical, operational, and strategic threat intelligence products for both technical teams and leadership stakeholders.</li> </ul> <hr class="border-border-200 border-t-0.5 my-3 mx-1.5"> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]"><strong>What you need to shine in this role</strong></p> <ul class="[li_&amp;]:mb-0 [li_&amp;]:mt-1 [li_&amp;]:gap-1 [&amp;:not(:last-child)_ul]:pb-1 [&amp;:not(:last-child)_ol]:pb-1 list-disc flex flex-col gap-1 pl-8 mb-3"> <li class="font-claude-response-body whitespace-normal break-words pl-2">Solid hands-on experience in SOC operations, including L2/L3 incident handling, threat detection, and security monitoring across on-premises and cloud environments;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Proven experience in Cyber Threat Intelligence — producing intelligence reports, tracking threat actor groups, analyzing malware and campaigns, and converting raw data into actionable intelligence products;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Deep knowledge of the MITRE ATT&amp;CK framework — proficiency in adversary profiling, TTP mapping, threat modeling, and using ATT&amp;CK Navigator for gap analysis and detection coverage;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Experience with threat hunting — developing and executing structured hunting missions using intelligence-driven hypotheses, behavioral analytics, and custom queries (e.g., KQL, SPL, or similar);</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Strong proficiency with SOC tooling — SIEM platforms, EDR/XDR solutions, threat intelligence platforms (TIPs), sandbox environments, and cloud-native security tools;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Familiarity with fintech or payments threat landscape — understanding of fraud patterns, adversary motivations, and threat vectors specific to payment infrastructure is a strong advantage;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Experience in environments governed by PCI-DSS, ISO 27001, and SOC2 frameworks;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Strong technical leadership — ability to mentor peers, lead complex investigations, drive detection improvement initiatives, and coordinate with cross-functional teams;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Strong ownership mindset — autonomy, accountability, and proactive problem-solving with a bias for action;</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Advanced English — ability to produce and present intelligence products for both technical and executive audiences.</li> </ul> <hr class="border-border-200 border-t-0.5 my-3 mx-1.5"> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]"><strong>Required Certifications</strong> <em>(at least one required; others are a strong plus)</em></p> <ul class="[li_&amp;]:mb-0 [li_&amp;]:mt-1 [li_&amp;]:gap-1 [&amp;:not(:last-child)_ul]:pb-1 [&amp;:not(:last-child)_ol]:pb-1 list-disc flex flex-col gap-1 pl-8 mb-3"> <li class="font-claude-response-body whitespace-normal break-words pl-2">GIAC GCTI – Cyber Threat Intelligence</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">GIAC GCIH – Incident Handler</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">GIAC GCIA – Intrusion Analyst</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">CompTIA CySA+</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">eCTHP – eLearnSecurity Certified Threat Hunting Professional</li> </ul> <hr class="border-border-200 border-t-0.5 my-3 mx-1.5"> <p class="font-claude-response-body break-words whitespace-normal leading-[1.7]"><strong>Bonus points if you have</strong></p> <ul class="[li_&amp;]:mb-0 [li_&amp;]:mt-1 [li_&amp;]:gap-1 [&amp;:not(:last-child)_ul]:pb-1 [&amp;:not(:last-child)_ol]:pb-1 list-disc flex flex-col gap-1 pl-8 mb-3"> <li class="font-claude-response-body whitespace-normal break-words pl-2">GIAC GCED – Enterprise Defender</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">CHFI – Computer Hacking Forensic Investigator</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">eCDFP – eLearnSecurity Certified DFIR Professional</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Blue Team Level 2 (BTL2)</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">AWS Certified Security – Specialty or Azure Security Engineer Associate</li> <li class="font-claude-response-body whitespace-normal break-words pl-2">Experience with open-source CTI tooling (MISP, OpenCTI, YARA, Sigma rules)</li> </ul> <h3><strong>EBANX offers:</strong></h3> <ul> <li><strong>Performance Bonus: </strong>Annual bonus program based on company results.</li> <li><strong>Meal Allowance: </strong>Monthly allowance to support your meals.</li> <li><strong>EBANX Education:</strong> Financial assistance for undergraduate, graduate, and MBA programs to support your professional growth.</li> <li><strong>EBANX Skills:</strong> Dedicated budget for courses, certifications, and workshops to encourage continuous learning.</li> <li><strong>Language Classes:</strong> Language classes to support your personal and professional development.</li> <li><strong>Health &amp; Well-being: </strong>Medical and dental plans with extensive coverage, including support for dependents and wellness programs.<br><strong>Flexible Work Culture:</strong> Semi-flexible hours, additional day off on your birthday, and year-end break to support work-life balance.</li> <li><strong>Well-being Program: </strong>Access to activities and resources that promote physical and mental health.</li> </ul> <p>&nbsp;</p> <p>Learn more about our <strong>#ebanxlife</strong> on&nbsp;<a href="https://www.linkedin.com/company/ebanx/mycompany/?viewAsMember=true">LinkedIn</a> and <a href="https://www.instagram.com/ebanxlife/">Instagram</a>, and see what it’s like to be part of a global team that breaks barriers, creates opportunities, and celebrates every achievement together.</p> <p>✨ An <strong>Out Of The Ordinary</strong> career is waiting for you here!</p>