Information Security Analyst (LATAM)

May 2, 2026

Other Jobs To Apply

The Opportunity: We are seeking an experienced and highly motivated Information Security Analyst to join our security team. This role will be critical in protecting our digital assets, detecting and responding to security incidents, and ensuring the continuous improvement of our security posture. You will work proactively to identify security risks, develop, and implement security frameworks, and ensure the integrity and confidentiality of our IT systems and data. The successful candidate will be responsible for all KPIs related to cyber security. You will be expected to coordinate implementation of all information security related processes in conjunction with others at Rainforest Alliance. You will also be handling and coordinating task/activities by firms/individuals contracted to provide information security services, working to ensure peers, senior and junior colleagues deliver necessary environment improvements effectively and expediently. The ideal candidate will have a strong technical background and confirmed hands-on experience in securing Microsoft cloud environments (Azure, Entra ID, Microsoft 365, Purview, Defender Suite), implementing endpoint hardening strategies, and using advanced security tools. Key Responsibilities: Security Operations & Incident Response: <ul> <li>Participate in security incident response activities, including investigation, containment, eradication, recovery, and post-incident analysis.</li> <li>Monitor security alerts from various sources (SIEM, EDR, cloud logs) and respond to security incidents in a timely manner.</li> <li>Develop and maintain security documentation, including procedures, runbooks, and incident response plans.</li> <li>Conduct vulnerability assessments and assist in penetration testing remediation efforts.</li> </ul> Security Awareness & Training: <ul> <li>Contribute to the development and delivery of security awareness training for employees, acting as a domain authority for security best practices.</li> </ul> Collaboration: <ul> <li>Work closely with all IT teams, Enterprise Architecture, PMO and other stakeholders to ensure security is integrated into all aspects of our infrastructure and applications at the design and requirements stage.</li> <li>Through reporting, monitoring and alerting, find opportunities for automation and improvement of RA security posture, including exception handling of threat alerts, patches, system and software vulnerabilities.</li> </ul> Reporting: <ul> <li>Creation of weekly and monthly reporting packs, demonstrating rolling position on vulnerabilities, threats, progress against plan on key security initiatives.</li> </ul> Risk Management: <ul> <li>Conduct risk assessments and participate in security design reviews to ensure appropriate mitigations are in place for new services and system changes (shifting security left).</li> </ul> Azure Security: <ul> <li>Administer and configure Azure security services (e.g., Azure Security Centre/Defender for Cloud, Defender for Endpoint, Azure Network Security Groups, Azure Key Vault, Azure Firewall etc).</li> <li>Monitor Azure environments for security threats, vulnerabilities, and misconfigurations.</li> <li>Implement and make sure security best practices within Azure IaaS and PaaS deployments, audit Azure resources for compliance.</li> </ul> Entra ID (Azure AD) Security: <ul> <li>Lead and secure Entra ID (Azure Active Directory) including Conditional Access Policies, Multi-Factor Authentication (MFA), Identity Governance, and Privileged Identity Management (PIM).</li> <li>Monitor Entra ID for suspicious activity and unauthorised access attempts.</li> <li>Implement Zero Trust principles, ensuring least privilege access, secure authentication flows, and continuous risk-based conditional access.</li> </ul> Microsoft 365 Administration & Security: <ul> <li>Secure Microsoft 365 services (Exchange Online, SharePoint Online, OneDrive, Teams, etc.), looking after user access, data governance, and threat protection within the Microsoft 365 ecosystem.</li> <li>Configure and optimise Microsoft 365 security features (e.g., Defender for Office 365, Data Loss Prevention (DLP), Microsoft Purview + compliance policies).</li> </ul> Endpoint Hardening: <ul> <li>Develop, implement, and maintain security baselines and hardening standards for endpoints (Windows, macOS, Linux).</li> <li>Configure and handle Microsoft Entra Domain Services based Group Policies (GPOs) and equivalent Mobile Device Management (MDM) solutions for security settings.</li> <li>Ensure secure configuration and patch management across all endpoints.</li> <li>Report on exceptions to relevant Team Managers and ensure mitigation is undertaken, through regular engagement.</li> </ul> XDR: <ul> <li>Administer, configure, and optimise RA’s XDR service, currently Crowdstrike Falcon but planned for migration to Microsoft Defender XDR.</li> <li>Monitor alerts and dashboards for endpoint security incidents and threats, perform threat hunting and incident response activities using CrowdStrike data.</li> <li>Develop and refine custom detections and response playbooks within CrowdStrike.</li> </ul> Vulnerability Scanning: <ul> <li>Identify and prioritise remediation of CVE-aligned vulnerabilities</li> <li>Provide reporting to IT leadership on progress against remediation targets</li> <li>Notify IT teams of emerging high/critical vulnerabilities and coordinate remediation planning</li> <li>Devise reporting dashboards for senior IT leadership</li> </ul> Required Qualifications: <ul> <li>Minimum of 3 years of hands-on experience in an information security role.</li> <li>Proven working experience and deep understanding of Azure security services and best practices.</li> <li>Extensive hands-on experience with Entra ID (Azure Active Directory) and Microsoft 365 security administration.</li> <li>Demonstrable experience with endpoint hardening methodologies and implementation.</li> <li>Hands-on administration and operational experience with CrowdStrike Falcon platform.</li> <li>Experience with security incident response and threat hunting.</li> <li>Solid understanding of networking concepts.</li> <li>Familiarity with security frameworks (e.g., Cyber Essentials, NIST, ISO 27001).</li> <li>Excellent analytical, problem-solving, and communication skills.</li> <li>Ability to work independently and as part of a team in a fast-paced environment. </li> </ul> Preferred Qualifications: <ul> <li>Relevant security certifications (e.g., AZ-500 Microsoft Certified: Azure Security Engineer Associate, SC-200 Microsoft Certified: Security Operations Analyst Associate, CompTIA Security+, CISSP, GIAC certifications).</li> <li>Experience with scripting languages (e.g., PowerShell, Python) for automation and security tasks.</li> <li>Knowledge of cloud security posture management (CSPM) tools.</li> <li>Demonstrable experience with other EDR/XDR solutions.</li> <li>Understanding of regulatory and technical compliance requirements (e.g., GDPR, HIPAA, PCI DSS, CIS, NIST, ISO27001).</li> </ul> Deadline: 01 May 2026 Salary: Commensurate with experience Notes: Only candidates legally authorized to work in either Costa Rica, Colombia, Peru, Guatemala, Mexico or Brazil will be considered. If you have any questions about the job vacancy, please contact the HR department: <a href="mailto:recruitment@ra.org" target="_blank" rel="noopener">recruitment@ra.org</a> The Rainforest Alliance encourages diversity and inclusion across the global organization. With this commitment to diversity, we are proud to be an equal opportunity employer and do not discriminate on the basis of gender, race, color, ethnicity, religion, sexual orientation, gender identity, ages, disability and any other protected group.

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...

DISCLAIMER