Brenno M.
// Offensive Security Analyst | Information Security Researcher
Hello! 👋
I'm a cybersecurity professional focused on offensive security, pentesting, and Red Team operations, obsessed with finding vulnerabilities and helping organizations strengthen their defenses. Outside of work, I'm passionate about classic literature, becoming an avid reader of Western works. My favorite books are: "The Death of Ivan Ilyich", "The Sorrows of Young Werther", "Family Happiness", and "Dom Casmurro".
Professional Experience
Cybersecurity Engineer
Serasa Experian, part of the global Experian group, is a credit bureau and datatech that
provides risk analysis, authentication, and fraud prevention solutions for businesses, as well
as consumer services like the Serasa Score and debt negotiation.
Key responsibilities:
• Automating IAM Assurance workflows to improve speed, reliability, and audit readiness
• Implementing and advocating for role-based access control (RBAC) in IAM processes
• Maintaining and enhancing Identity Governance & Administration (IGA) platforms like
SailPoint and Privileged Access Management (PAM) solutions like CyberArk
Lead Cybersecurity Researcher
LICS - UNICAMP Cybersecurity League is a student organization dedicated to studying and
promoting cybersecurity practices and technologies among students. Through events, workshops,
lectures, and articles, LICS aims to share knowledge about best practices in digital security
applied across various sectors.
Key responsibilities:
• Technical leadership in strategic decision-making
• Contributing to the development of events aimed at the academic community
• Developing a cybersecurity study roadmap, ensuring continuous and relevant learning for
members
• Creating theoretical and technical educational materials for cybersecurity training
• Planning and preparing Capture The Flag (CTF) challenges to enhance members' practical
skills
Cyber Defense Analyst | SOC
Darede is a consultancy company specializing in Information Technology (IT) services. As a
partner of Amazon Web Services and Microsoft Azure, Darede aims to bring innovation and
excellence by offering its customers the best services in the market.
Key responsibilities:
• Operating vulnerability management and SIEM systems, aiming for the shortest response time
to security incidents
• Working with identity management and access provisioning
• Executing playbooks and monitoring incident conditions
• Preparing reports and indicators of security threats and incidents
• Operating in clients' AWS infrastructure, working with services like CloudTrail, IAM, WAF,
GuardDuty, Inspector, and CloudWatch
Web3 Security Researcher
The LBU, also known as UNICAMP Blockchain League, is a student organization dedicated to
promoting the study and dissemination of blockchain technology among students. Through events,
workshops, lectures, and articles, LBU aims to share knowledge about the practical applications
of this technology across various sectors.
Key responsibilities:
• Creating theoretical and technical educational materials
• Generating content for articles
• Crafting informative newsletters
Education
Bachelor of Technology in Systems Analysis and Development
The Technology in Systems Analysis and Development (TADS) program is a UNICAMP course in the IT field. This course is designed for students interested in pursuing careers related to software analysis, design, development, testing, and maintenance.
Higher Interdisciplinary Training Program (ProFIS)
The Higher Interdisciplinary Training Program (ProFIS) is an exclusive undergraduate course offered by UNICAMP for students from public schools in Campinas. The program selects the top two students from each school based on their ENEM scores, and I had the honor of ranking first at my school.