Gabriel Almeida

Operations Associate

Rio Grande do Sul, Brazil5 mos experience

Key Highlights

Focused on Offensive Security with practical experience in penetration testing.
eJPTv2 certified with strong foundations in exploitation fundamentals.
Proficient in vulnerability identification and remediation strategies.

Stackforce AI infers this person is a Cybersecurity Professional specializing in Offensive Security and Penetration Testing.

Contact

Skills

Core Skills

Identity And Access ManagementSecurity Operations

Other Skills

JumpCloud MDMGoogle WorkspaceIdentity ManagementAccess ControlWeb Application Security (OWASP Top 10)Reconnaissance & Attack Surface MappingPrivileged Access ManagementComputer Information SystemsUser Lifecycle Managementn8nMFA EnforcementRole-Based Access Control (RBAC)IT Security OperationsLeast PrivilegeVulnerability Management

About

Focused on Offensive Security (Penetration Testing), with emphasis on web applications. Documenting hands-on work through technical writeups on https://askiesec.blog, covering reconnaissance, vulnerability discovery, and exploitation fundamentals. Building practical experience in intrusion testing through controlled environments and technical labs. eJPTv2 certified, with solid grounding in exploitation fundamentals and offensive methodologies. Some practical experience includes: - Testing web applications, focusing on issues such as access control flaws, input validation, and business logic vulnerabilities - Performing reconnaissance and attack surface mapping in simulated environments - Exploiting common vulnerabilities with focus on impact understanding and remediation approaches Currently seeking opportunities in penetration testing and offensive security, aiming to apply practical knowledge in real-world scenarios, continue technical growth, and contribute to vulnerability identification and mitigation.

Experience

5 mos

Total Experience

5 mos

Average Tenure

5 mos

Current Experience

Azion

IT Analyst

Dec 2025 – Present · 5 mos · Greater Porto Alegre

IT Analyst on the Security Office team, handling identity, access management, and security operations support.
Manage identities and access in JumpCloud and Google Admin, handling the full user lifecycle: onboarding, offboarding, provisioning, and access revocation across systems, applications, and network resources, ensuring each account reflects the minimum access required for its role.
Apply RBAC, MFA, and least privilege as baseline controls, structuring User Groups and access policies aligned to each team's profile and operational requirements.
Conduct periodic access reviews to identify excessive permissions, orphaned accounts, and potential privilege escalation vectors, documenting and remediating identified cases.
Handle authentication and access control requests, classifying by criticality, assessing impact, and escalating cases that represent risk to the environment.
Support the security team in processing Tenable and Wazuh scan results, consolidating findings into spreadsheets to facilitate prioritization and remediation tracking.
Participate in defining access policies for new integrations and tools, ensuring security controls are applied from the start of adoption.

JumpCloud MDMGoogle WorkspaceIdentity ManagementAccess ControlSecurity OperationsIdentity and Access Management