Jarcy De Azevedo Junior, CISM, CISSP

Experience

• 

  Clavis Segurança da Informação

  Apr 2011 - Jul 2012

  Analista de Segurança

  Junior cyber security analyst focused on penetration testing and audits of network, systems and applications► Evaluation of new tools► Review of audit procedures and methods► Internal and external audits► Denial of service testsMonitor of the following distance learning courses:► Web Application Security Audit► Hardening Unix/Linux Servers► Computer Forensics Analysis► Network and Systems Penetration Test► Metasploit Framework► Network Perimeter Protection► Organization of II War Games SegInfo► Development of articles and security challenges 收起

• 

  TI Safe Segurança da Informação

  Aug 2012 - Jan 2014

  SCADA Security Analyst

  ► Vulnerability Assessment in automation networks► Risk Analysis in SCADA systems in several hydroelectric plants and energy companies► Perimeter security► Secure SCADA network architecture planning

• 

  Oi/Telemar

  Feb 2014 - May 2016

  Analista de Segurança Sênior

  ► Participated in 100+ projects understanding and giving Security Requirements for IT projects► Did several Penetration Tests for clients► Audited and contributed to certification of our SOC in SOX and ISO 27001► Delivered several trainings on secure development to development teams in order to improve cyber secrutiy awareness

• 

  Stone Pagamentos

  Sept 2016 - Sept 2017

  Cyber Security Specialist

  ► Identity management► Fraud and money laundering prevention

• 

  Claro Brasil

  Aug 2017 - Aug 2020

  Cyber Security Specialist

  ► Created the B2B Cyber Threat Intelligence Service increasing revenue for the Cyber Security Office►Developed tools to help brand protection and OSINT in Python►Investigated about Ransonware and data breaches►Incident response in telco and IT enviroments►Cyber crime Monitoring using social media

• 

  Zup Innovation

  Aug 2020 - Dec 2022

  Cyber Security Tech Lead

  ►Effectively managed and lead a Blue team consisting of 10 people to drive company security controls and incident response.►Implemented a Zero Trust solution for 3k employers, focusing on a better experience and security improvement for the developers►My team built self-service solutions, where developers receive security indicators and resources, without impacting their deliveries►Created several processes and routines as an incident response focusing on a higher quality and regularity of analysis, as well as continuous improvement►Focused on the personal development of team members, through technical mentorships and constant feedback 收起

• 

  Mercado Livre

  Dec 2022 - Jan 2024

  Cyber Security Project Leader

  Leadership & Management: Lead a skilled team of 10 professionals spread across multiple Latin American countries, fostering collaboration, effective communication, and professional growth.Objective: Work diligently to elevate the security maturity level of Mercado Livre by ensuring best practices, enabling the business to operate securely.Scope of Responsibilities: Oversee the maintenance and management of 60,000+ storages across AWS, GCP, Azure, and Oracle, ensuring uninterrupted operations, continuous process improvements, and safeguarding of critical data.Strategic Initiatives:Anomalies: Promptly identify and address any anomalies to ensure peak efficiency and minimize operational risks.Compliance: Ensure all storages, regardless of platform, strictly adhere to local and international standards and regulations, emphasizing protection against data breaches.Access Management: Implement robust access control strategies across all platforms to prevent unauthorized access and data leakage, safeguarding valuable and critical data. 收起

• 

  Google

  Jan 2024 - now

  Senior Strategic Consultant

  Part of the Strategic Consulting Team at Mandiant, providing consulting on the following services:►Security Program Assessment: Conduct in-depth analyses of client security programs, identifying strengths and vulnerabilities to offer actionable, data-driven recommendations for enhancing security posture.►Table top exercises: Design and facilitate simulated cyber incident exercises, testing and improving the security teams’ emergency preparedness and response capabilities.►Cyber Defense Assessment: Conduct comprehensive cyber defense assessments to gauge your organization's preparedness in detecting and responding to evolving cyber threats, including disruptive malware like ransomware.►Incident Response Readiness: Contribute to enhancing organizational resilience by developing strong incident response frameworks, rapidly addressing active security breaches, and strengthening security operations to proactively identify and neutralize cyber threats 收起