Staff Security Engineer
Fully remote work flexibility within Brazil.Full-TimeStaff
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Languages
- English
- Experience
- 6+ years
- Required Skills
- AWSPythonGCPKubernetesAzureGoCI/CDTerraform
Requirements
- 6+ years of experience in software engineering and information security, with a focus on platform or infrastructure security.
- Strong experience with cloud platforms such as AWS, GCP, or Azure and their security services.
- Proficiency in Python or Go for building automation, tooling, and security platforms (Java is a plus).
- Solid expertise in Infrastructure as Code (Terraform) and modern cloud infrastructure practices.
- Hands-on experience implementing DevSecOps practices and integrating security into CI/CD pipelines.
- Strong knowledge of container security and orchestration platforms such as Kubernetes.
- Ability to design and solve complex systemic security problems in distributed environments.
- Experience with security architecture, microservices, and API-based systems.
- Familiarity with compliance frameworks such as SOC 2, ISO 27001, and LGPD/GDPR is a plus.
- Knowledge of threat modeling methodologies such as MITRE ATT&CK is desirable.
- Strong communication skills, with the ability to influence technical and non-technical stakeholders.
- Advanced or fluent English proficiency.
Responsibilities
- Define and evolve the platform security strategy, aligning engineering practices with business and compliance requirements.
- Design and implement secure architectures for cloud-native systems, ensuring resilience, scalability, and strong security posture.
- Build security standards and guardrails as code, including Infrastructure as Code (Terraform), CI/CD pipelines, and containerized environments.
- Develop security automation tools, reusable frameworks, and internal platforms to embed security across engineering workflows.
- Implement and improve secure CI/CD pipelines, integrating security testing practices such as SAST, DAST, and SCA.
- Conduct threat modeling and security design reviews for critical systems, APIs, and platform features.
- Collaborate with engineering teams to integrate security into development lifecycles using shift-left and security-by-default principles.
- Participate in incident response processes and post-mortem analysis to strengthen system resilience.
- Partner with SRE, product, and engineering teams to balance security, performance, and usability in architectural decisions.
- Mentor engineers and act as a technical reference for secure development practices and DevSecOps adoption.
View Full Description & ApplyYou'll be redirected to the employer's site
