Network & Security Operations Analyst

1. Design, implement, and manage network segmentation between IT and OT domains, ensuring compliance with zero-trust and defense-in-depth principles.

2. Configure and maintain high-availability firewalls, redundant paths, and routing failover policies across data centers and remote sites.

3. Lead root-cause analysis (RCA) for major network or or security incidents and produce corrective-action plans.

4. Develop and maintain network addressing plans, DHCP scopes, NAT rules, and routing policies to guarantee scalability and consistency.

5. Oversee vulnerability remediation activities and validate the effectiveness of penetration-test mitigation actions.

6. Integrate security device logs into SIEM, coordinate with SOC for event correlation and incident escalation.

7. Perform periodic configuration audits and enforce change-management best practices (RFC approval, rollback validation, and documentation).

8. Define and maintain technical standards for VLAN naming, access control, and monitoring configurations.

9. Mentor junior and mid-level analysts, conducting knowledge-transfer sessions and technical training workshops.

10. Coordinate network readiness activities for plant expansions, data-center upgrades, and cloud integrations.

11. Prepare and present monthly KPI and performance dashboards, highlighting trends in latency, availability, and incident rates.

12. Represent the Network Operations function during internal and external audits, ensuring evidence of compliance with ISO 27001 controls.

13. Participate in policy reviews and contribute to global infrastructure standardization with BYD Global IT.

14. Conduct disaster-recovery testing and validate failover mechanisms to ensure business continuity.

1. Bachelor’s or master’s degree in Networks, Information Security, or Telecommunications.

2. Minimum of 6 years of experience in enterprise network design, administration, or security operations.

3. Advanced knowledge of routing, switching, VPN, and firewall management across multi-vendor environments.

4. Proven experience with segmentation projects separating OT and IT environments.

5. Hands‑on expertise with firewalls, IDS / IPS, NAC, and SIEM platforms (Fortinet, Cisco, or Palo Alto).

6. Deep understanding of network availability, latency, and performance metrics (MTTD / MTTR).

7. Proficiency in network troubleshooting using packet‑capture and analysis tools (Wireshark, NetFlow).

8. Strong ability to manage incident response, root‑cause analysis, and postmortem reporting.

9. Familiarity with ISO 2701, NIST, and LGPD security controls applied to network operations.

10. Fluent English for documentation, reporting, and technical meetings;

11. Excellent leadership and mentoring skills to guide junior and mid-level analysts.

12. Certifications preferred : Cisco CCNP, Fortinet NSE6, or equivalent professional‑level credentials.

13. Solid understanding of EHS and NR compliance, ensuring safe interventions in critical environments.

14. Strong analytical thinking and ability to standardize processes across multiple sites.

15. Availability for travel and participation in corporate audits and cross‑site projects.

Mandarin is an advantage.