Analista Blue Team – IBM QRadar
This position is posted by Jobgether on behalf of a partner company. We are currently looking for an Analista Blue Team – IBM QRadar in Brazil.
This is an excellent opportunity for cybersecurity professionals who want to work in highly critical and technically advanced security operations environments. In this role, you will be directly involved in SOC operations, focusing on continuous monitoring, incident investigation, and threat analysis using IBM QRadar. You will contribute to strengthening corporate security operations by identifying threats, reducing false positives, and supporting incident response activities. The environment is dynamic, collaborative, and strongly focused on operational maturity and continuous improvement. You will work alongside experienced cybersecurity specialists while gaining exposure to real-world enterprise security scenarios. This position is ideal for professionals with an investigative mindset who are passionate about Blue Team operations and cybersecurity defense strategies.
Accountabilities:
- Perform daily SOC operations activities at N1 and/or N2 levels, ensuring continuous monitoring and threat detection.
- Monitor, analyze, and investigate security events and offenses using IBM QRadar.
- Conduct alert triage and validation to identify legitimate security incidents.
- Reduce false positives through detailed event correlation and log analysis.
- Investigate cybersecurity incidents and support initial containment and remediation actions.
- Document incidents, findings, and evidence in a clear and structured manner.
- Contribute to the continuous improvement of monitoring rules, detection strategies, and SOC maturity processes.
- Collaborate with technical teams and clients when necessary to support investigations and operational activities.
- Assist in strengthening security visibility and incident response effectiveness across corporate environments.
- Previous experience working in SOC operations at N1 and/or N2 levels.
- Hands-on experience with IBM QRadar.
- Strong knowledge of security incident analysis and investigation methodologies.
- Ability to interpret, correlate, and analyze logs and security events.
- Understanding of networking concepts, security fundamentals, and common protocols.
- Strong analytical thinking and organized documentation practices.
- Experience working in medium or large corporate environments is considered a plus.
- Familiarity with frameworks such as MITRE ATT&CK is desirable.
- Experience with EDR, SOAR, or additional cybersecurity solutions is an advantage.
- Relevant certifications such as CompTIA Security+, CompTIA CySA+, CEH, ISO 27001 Foundation, or Blue Team Level 1 (BTL1) are considered differential qualifications.
- Strong attention to detail, investigative mindset, proactivity, communication skills, and ability to work under pressure.
- 100% remote work model
- PJ contract model
- Immediate start opportunity
- Structured career development plan with semiannual and/or annual reviews
- Incentives for technical courses and cybersecurity certifications
- 100% online healthcare assistance, including telemedicine, specialists, nutrition, and psychology services
- Life insurance
- Accounting support for MEI professionals
- Birthday day off
- Collaborative and technically specialized cybersecurity environment
- Continuous professional development opportunities in Blue Team and SOC operations.