FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Tech Stack
Tools & technologiesAWSCloudVault
About the role
Key responsibilities & impact- Assess risks in systems, cloud environments, internal processes and new projects;
- Conduct continuous security assessments of infrastructure and applications;
- Propose and follow up on action plans to improve security maturity;
- Ensure compliance with LGPD, ISO/IEC 27001 and other applicable frameworks;
- Develop and maintain Information Security policies, standards and procedures;
- Support business continuity and disaster recovery initiatives;
- Prepare reports and provide evidence for audits and compliance assessments;
- Support the implementation and evolution of security tools such as SIEM, WAF, IDS/IPS, EDR, DLP and vulnerability management solutions;
- Establish monitoring, detection and incident response processes;
- Coordinate security investigations and simulation exercises;
- Ensure security best practices in cloud environments (AWS and OCI), including access management, encryption, backups and automations;
- Collaborate with Engineering and DevOps teams to implement DevSecOps practices and security in CI/CD pipelines;
- Define security and privacy-by-design standards for products and infrastructure;
- Manage IAM-related controls, including MFA, SSO, RBAC and periodic access reviews;
- Ensure traceability, segregation of duties and privileged access governance;
- Support the adoption and governance of PAM/password vault solutions;
- Participate in defining security requirements for SaaS/PaaS products;
- Perform application vulnerability analysis using SAST, DAST and interpret pentest results;
- Promote secure development practices and share references such as the OWASP Top 10 with technical teams;
- Conduct security training and awareness initiatives;
- Act as a technical authority for different areas of the company;
- Define a security roadmap aligned with business strategy;
- Support architecture decisions, risk prioritization and security investments;
- Serve as the technical focal point for audits, RFPs and security questionnaires;
- Support commercial, customer service and pre-sales teams in communicating the company’s security practices.
Requirements
What you’ll need- Bachelor's degree in Computer Science, Computer Engineering or related fields;
- Solid experience in Information Security, preferably in SaaS, PaaS or cloud environments;
- Knowledge of frameworks and standards such as ISO/IEC 27001, NIST, LGPD, SOC 2 and OWASP;
- Experience with cloud environments (AWS and/or OCI), CI/CD, DevSecOps and IAM;
- Hands-on experience with SIEM, WAF, EDR, vulnerability management and PAM tools;
- Experience with external audits and meeting customer security requirements;
- Good communication skills with both technical and non-technical audiences;
- Analytical, organized and continuously improvement-oriented profile.
Benefits
Comp & perks- Meal allowance;
- Food allowance;
- SulAmérica health insurance;
- Care Plus dental coverage;
- Wellhub;
- Psicologia Viva;
- Conexa Saúde;
- Birthday day off;
- Home office allowance;
- Partnership with SESC;
- Life insurance.
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Information Securitycloud environmentsDevSecOpsCI/CDIAMvulnerability managementapplication vulnerability analysisSASTDASTsecurity assessments
Soft Skills
communication skillsanalyticalorganizedcontinuous improvementcollaborationleadershiptrainingincident responserisk prioritizationtechnical authority
Certifications
Bachelor's degree in Computer ScienceBachelor's degree in Computer EngineeringISO/IEC 27001NISTLGPDSOC 2OWASP