Carlos Alexandre Menezes

Junior Cybersecurity Analyst

Sátão, Viseu, Portugal · cbittencourt1980@gmail.com · +351 915 739 684

GitHub: github.com/camenezesdev · LinkedIn: /carlos-alexandre-bittencourt-de-menezes-66a99165

🌐 See CV in Portuguese
⬇️ Curriculum Vitae (EN)

Profile

Professional in a consolidated transition into Software Development and Cybersecurity, with a focus on SOC, Blue Team operations, and incident response automation. Currently involved in the development of the Zoomie ecosystem (xMDR/SOAR), the administration of secure environments, and the integration between visibility, detection, and active containment. Combines analytical rigor, disciplined documentation, and technical skills in Python, C#, Java, Bash, Splunk, and Linux security to deliver solutions aligned with compliance and cyber resilience.

Interested in technology from an early age, with first contact through Pascal and BASIC. Recent hands-on experience with SIEM (Splunk), Linux hardening, LDAP, Webmin, IDS/IPS (Suricata/Snort), and development in Python, Java, and SQL.

Technical Skills

Security / Blue Team

  • SIEM & Threat Hunting: Strong working knowledge of Splunk (Universal Forwarder, ingestion of auth.log, syslog, UFW, Apache, MySQL). Creation of analytical dashboards, critical alerts, and event correlation using SPL for SOC-oriented operations.
  • Detection & Mitigation: Configuration and fine-tuning of IDS/IPS solutions (Suricata & Snort). Implementation of automated response workflows for threat containment.
  • Identity Engineering (IAM): Implementation of Zero Trust architectures with OpenLDAP, PAM/SSSD, and strict access control policies (RBAC).
  • Infrastructure Hardening: Linux system hardening (kernel sysctl, UFW, Fail2ban, GeoBlock). Advanced permission management and auditing of critical services.

Software Engineering & Automation

  • Multi-stack Development: Solid knowledge of Python for defense automation (SOAR), telemetry parsing, and security scripting. Structured development in Java (MVC/JDBC/CRUD), C# - structured and object-oriented programming (MVC/CRUD/SQL), C, and .NET.
  • Scripting & CLI Operations: Good command of the Linux terminal (Bash scripting, SSH, tmux) and data processing through stream tools (grep, awk, sed).
  • Databases & Persistence: Modeling, administration, and query optimization in MySQL and PostgreSQL, with a focus on data integrity and security.

Systems Administration

  • Server Management: Remote administration and monitoring via Webmin, CLI, and RDP. Implementation of backup routines, process management, and task automation through Cronjobs.
  • Monitoring & Telemetry: Implementation of continuous system visibility for performance and security diagnostics.

Languages & Soft Skills

Languages

  • Portuguese — native
  • English — fluent
  • Spanish — advanced

Soft Skills

  • Proactivity and autonomy
  • Emotional intelligence
  • Teamwork
  • Effective communication
  • Problem-solving

Education

Programming Technician Course — IEFP

Status: Completed

Technical training focused on software development, algorithms, databases, and programming best practices. Exposure to languages such as Java, C, C#, Python, and SQL, as well as software engineering fundamentals.

CompTIA Security+ Certification Course — Professor Messer IT Certification Training

Status: Completed

Technology education platform for IT certifications such as CompTIA A+, Network+, and Security+.

Cisco CCST Certification Course — Cisco Networking Academy

Status: In Progress

Technology education platform for CCST Cybersecurity and CCST Networking certifications.

Junior SOC Analyst HTB CDSA Certification Course — HackTheBox Academy

Status: Completed

Technology education platform focused on hands-on learning.

Law Degree — Universidade Estácio de Sá (Brazil)

Development of critical analysis, logical reasoning, structured argumentation, and the ability to interpret norms — transferable competencies for IT and cybersecurity (risk analysis, compliance, and security policies).

Professional Experience

Cybersecurity & Developer — Rootsystems · 2025 – Present

Development of the SOAR/xMDR ecosystem “Zoomie” for real-time threat mitigation across layers 4 and 5. Incident response automation and telemetry using Splunk, Bash, and dedicated forwarder components.

Administrative Assistant — CUF (Call Center) · 2022 – 2024

  • Customer service and administrative support.
  • Problem-solving, request handling, and proper escalation.
  • Use of internal systems and compliance with procedures.

Call Center Supervisor — INTELCIA · 2019 – 2022

  • Management of support teams, performance follow-up, and continuous feedback.
  • Training of new employees and support for operations in a high-demand environment.
  • Analysis of indicators (KPIs) and support for operational decision-making.

Administrative Assistant and Management Support — BeiraZoo Veterinary Hospital · 2017 – 2019

  • Administrative and financial support, organization of processes, and documentation.
  • Customer service and support for clinical teams.
  • Collaboration in the hospital’s daily management activities.

Personal Projects & Interests

Over the years, I have developed several projects related to technology and gaming culture, which helped consolidate my interest in systems, networks, and programming:

  • Development of Roguelike games (text-based RPG) and Sidescroller projects in C#/C++.
  • SysOp of a large BBS in Rio de Janeiro (1990s–2000), managing users, connections, and content.
  • Administrator of a LAN House with more than 100 computers.
  • Dedicated player of Final Fantasy XIV, Ragnarok Online, and Street Fighter VI.
  • Interest in TV series, films, and pop culture (Netflix series marathon runner).
Splunk Linux LDAP Webmin Suricata Snort Python Java SQL

Document inspired by the Europass format, adapted for a cybersecurity technical portfolio.