What's your job about?
As a member of the Cenitex Operational Security Systems team, I am responsible for the implementation, deployment, maintenance, and administration of our infrastructure’s hardware and software. This includes managing vulnerabilities, conducting assessments, and overseeing security operations such as threat monitoring for Cenitex and its clients.
My specific duties involve daily threat checks, threat hunting, intelligence gathering, responding to cyber incidents, and managing security operations. One of my weekly tasks is investigating and monitoring the Intrusion Prevention System (IPS) to analyse suspicious IP addresses on our network. To clarify, when I detect unusual activity, I assess several factors: Has this IP been seen before? What is its origin? Is it from a known source? What type of attack might it be attempting? What is the severity of this threat? Based on this investigation, I determine whether the activity is malicious and take appropriate remediation actions.
What's your background?
I was born and raised in Rio de Janeiro, Brazil. Thanks to a scholarship, I pursued a bachelor’s degree in computer science at Mars Hill University in the United States. After graduating, I relocated to Australia to complete a master’s in cyber security at Swinburne University of Technology in Melbourne. During the final year of my master’s program, I applied for and was accepted into the Cenitex Graduate Program. I graduated in November 2023 and began the program at the end of February 2024.
My first rotation was with the Operational Security Systems team, a field I have always been passionate about. To my delight, I found myself even more enthusiastic about the role than I anticipated. In July 2024, an opportunity arose within the team, and I applied for the position. After a successful interview, I was promoted to Cyber Security Associate Analyst, which is my current role. Despite having lived on three different continents, I haven’t meticulously planned my career path. Instead, I’ve embraced the opportunities that have come my way throughout my journey.
Could someone with a different background do your job?
Yes, but it depends on the background. Becoming a cyber security analyst requires a solid foundation in technology. You need to understand networks, hardware, and software to effectively handle daily tasks, in addition to having specialized knowledge in cyber security. Essential soft skills for my role include attention to detail, teamwork, and strong analytical skills.
What's the coolest thing about your job?
What I love most about my job is its dynamic nature. Working in the threat team, each investigation presents a unique challenge. While you might encounter similar threats or use comparable tools, the thought process and decision-making are always distinct. I also find the job fulfilling because you handle tasks and incidents daily. Although some issues may take more time, they’re not months-long projects. Instead, you continually start and complete tasks, which gives a sense of steady progress and achievement while performing outcomes that protect your organisation.
What are the limitations of your job?
As a Cybersecurity Analyst, it's crucial to be meticulous in your actions and interactions, given the sensitive information you handle. The job offers a flexible schedule, with no weekend work required, though our team rotates weekly for on-call duties. While the role isn't physically demanding, it is mentally intensive due to its constant decision-making requirements. One requirement which I personally find enjoyable, is the need for continuous learning. Cyber threats evolve rapidly, requiring ongoing certification, coursework, and staying updated with the latest developments to adapt and refine processes.
3 pieces of advice for yourself when you were a student...